$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TOnZ4Ws-TOs6SHZNYjtAEmPqKC8.roa File: TOnZ4Ws-TOs6SHZNYjtAEmPqKC8.roa (raw, json) Hash identifier: iJcdO7YGU/YwK+lVzR1d5LRZfMjJ9CQXpEwxW5J4l/w= Subject key identifier: 4C:E9:D9:E1:6B:3E:4C:EB:3A:48:76:4D:62:3B:40:12:63:EA:28:2F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DEC Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TOnZ4Ws-TOs6SHZNYjtAEmPqKC8.roa Signing time: Fri 01 Sep 2023 10:15:27 +0000 ROA not before: Fri 01 Sep 2023 10:15:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24163 IP address blocks: 180.218.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7660 (0x1dec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:27 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4CE9D9E16B3E4CEB3A48764D623B401263EA282F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cd:fa:a5:72:e0:e2:43:6e:61:f7:5b:cd:b0: 93:32:3e:5d:7a:64:30:83:bc:f6:fe:d9:ea:60:72: c8:44:99:fa:32:03:c2:06:2f:9d:16:99:3e:e7:94: 4a:91:c5:23:f2:b8:d5:2d:eb:84:77:63:e0:7e:87: 3d:bd:87:cc:03:0b:5b:f2:e2:19:e4:a8:0b:ea:1b: 0c:1c:99:c2:4c:c6:09:2b:a9:41:bc:7f:cf:f6:8c: 7c:40:28:ed:bc:e9:02:94:0b:28:2e:e5:44:cd:df: 21:03:21:94:04:cf:59:f2:6c:bd:48:1e:84:80:dd: 06:60:80:d6:f7:54:cb:44:73:65:81:6e:c5:73:bd: 7e:e2:c0:c8:6a:be:f1:db:f9:8f:1d:96:a0:9a:81: bc:35:49:8f:8a:e7:2f:a8:ef:97:07:f1:a1:36:8b: d3:97:1e:4b:2b:2f:1b:8c:92:29:8b:b8:e9:60:21: 22:e7:cd:37:86:d9:21:96:6b:60:8c:21:ba:3a:15: 81:2a:72:7f:d3:30:62:44:0f:ad:92:c6:60:b0:b2: 6c:03:61:3a:b2:98:80:f6:5e:7c:e8:7d:73:04:b2: 36:6c:ae:95:f1:a0:68:2d:47:00:ba:07:f6:2f:25: 35:d9:81:6c:a3:8b:39:9a:5d:d6:33:67:5e:1d:43: 64:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E9:D9:E1:6B:3E:4C:EB:3A:48:76:4D:62:3B:40:12:63:EA:28:2F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TOnZ4Ws-TOs6SHZNYjtAEmPqKC8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.232.0/21 Signature Algorithm: sha256WithRSAEncryption 89:af:6e:2e:15:12:f2:8b:70:de:8d:76:d2:64:c9:bb:b6:91: 46:68:9c:32:6a:ec:e5:62:15:43:81:8d:1a:f9:a6:43:c9:f4: 02:07:00:35:80:bd:24:52:7a:06:42:b5:11:f1:7a:8d:c7:45: 58:ee:bf:cb:00:ec:b1:90:bc:36:58:d5:e4:93:ae:80:32:ee: 14:1f:2c:74:f5:f0:b5:89:21:af:b7:fe:bf:a9:8e:9e:2b:df: 12:71:7c:c5:ba:28:3b:5e:8c:9f:f9:93:46:ce:8a:16:b6:ae: 60:5b:ae:83:b6:26:da:a5:9c:4b:ca:8d:bf:a7:1b:fd:30:94: 1f:e1:c7:d3:d5:b0:4a:bb:74:f7:47:27:0d:eb:9f:80:81:c9: 1d:25:ae:ce:82:6c:67:a1:e0:6f:eb:ef:8b:28:a2:37:3a:9a: 05:db:2d:ab:17:3d:00:4c:7c:95:69:99:c6:6c:0b:25:d0:53: ff:d2:4d:c2:6d:43:1b:b3:02:ee:b2:1e:dc:d2:43:68:53:b5: 4a:b2:22:a7:23:b8:98:26:ff:8c:90:43:e5:f7:90:00:6f:8e: 17:e7:07:2e:42:23:03:51:c5:9a:b2:df:b1:9e:5a:33:81:77: d2:97:5a:c6:65:41:a3:b5:1e:d6:b8:0a:cd:c9:4f:ce:82:c4: b7:e7:61:bf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRDRTlEOUUxNkIzRTRD RUIzQTQ4NzY0RDYyM0I0MDEyNjNFQTI4MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuzfqlcuDiQ25h91vNsJMyPl16ZDCDvPb+2epgcshEmfoyA8IG L50WmT7nlEqRxSPyuNUt64R3Y+B+hz29h8wDC1vy4hnkqAvqGwwcmcJMxgkrqUG8 f8/2jHxAKO286QKUCygu5UTN3yEDIZQEz1nybL1IHoSA3QZggNb3VMtEc2WBbsVz vX7iwMhqvvHb+Y8dlqCagbw1SY+K5y+o75cH8aE2i9OXHksrLxuMkimLuOlgISLn zTeG2SGWa2CMIbo6FYEqcn/TMGJED62SxmCwsmwDYTqymID2XnzofXMEsjZsrpXx oGgtRwC6B/YvJTXZgWyjizmaXdYzZ14dQ2QVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUTOnZ4Ws+TOs6SHZNYjtAEmPqKC8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1RPblo0V3MtVE9zNlNIWk5Z anRBRW1QcUtDOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2ugwDQYJKoZIhvcNAQELBQADggEBAImvbi4VEvKLcN6NdtJkybu2kUZonDJq7OVi FUOBjRr5pkPJ9AIHADWAvSRSegZCtRHxeo3HRVjuv8sA7LGQvDZY1eSTroAy7hQf LHT18LWJIa+3/r+pjp4r3xJxfMW6KDtejJ/5k0bOiha2rmBbroO2JtqlnEvKjb+n G/0wlB/hx9PVsEq7dPdHJw3rn4CByR0lrs6CbGeh4G/r74soojc6mgXbLasXPQBM fJVpmcZsCyXQU//STcJtQxuzAu6yHtzSQ2hTtUqyIqcjuJgm/4yQQ+X3kABvjhfn By5CIwNRxZqy37GeWjOBd9KXWsZlQaO1Hta4Cs3JT86CxLfnYb8= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:03 2024 by rpki-client on console-ams.rpki-client.org