$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XloLrV2YBi6LavTa2RnaPs6T6xc.roa File: XloLrV2YBi6LavTa2RnaPs6T6xc.roa (raw, json) Hash identifier: cNiko/BXHhZO3ea/TvP1jBbMPs3f8/cOUq7vkU0pZn8= Subject key identifier: 5E:5A:0B:AD:5D:98:06:2E:8B:6A:F4:DA:D9:19:DA:3E:CE:93:EB:17 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DE7 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XloLrV2YBi6LavTa2RnaPs6T6xc.roa Signing time: Fri 01 Sep 2023 10:15:26 +0000 ROA not before: Fri 01 Sep 2023 10:15:26 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24165 IP address blocks: 49.159.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7655 (0x1de7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:26 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5E5A0BAD5D98062E8B6AF4DAD919DA3ECE93EB17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ff:9f:5e:c0:ca:88:35:ae:0c:9a:76:8b:e2: 2f:28:25:03:45:61:a0:48:36:64:64:a8:f7:98:e8: 17:bb:99:75:46:83:d6:d6:fe:63:bb:15:ee:72:ba: 26:89:da:7f:3f:de:9e:31:27:b8:8b:07:00:46:13: 12:c5:50:0b:8c:70:fc:2f:85:a8:7f:29:f7:ac:73: 92:f7:84:94:43:b4:32:c6:72:10:04:a5:38:69:51: fd:e2:ca:a1:19:f0:6b:c0:f1:8c:0a:b3:96:c6:4c: 0a:be:ed:10:ae:84:a9:62:f8:9d:b0:ab:d1:2b:fb: 5c:d2:5b:18:d9:1d:46:d4:89:13:bc:ce:d9:87:e2: b1:52:ca:2e:2c:47:9c:cc:69:c4:e2:67:03:0e:cf: 79:c4:6f:d6:3e:4f:98:d9:4c:15:42:2c:8b:b9:5b: db:53:6b:9d:c4:07:1b:57:76:51:09:ef:6e:c1:bc: c7:45:ba:1c:78:a0:3f:cc:e1:b5:85:b0:92:87:2d: 72:ea:cf:bd:f6:ab:09:88:ca:30:99:34:d2:32:2b: d3:1b:77:03:f2:5c:80:8f:d6:ce:9c:38:0d:2c:f3: db:60:99:dc:d2:06:fe:1b:2f:ee:52:03:c2:f1:85: 48:aa:ec:95:5a:91:b2:72:5e:e7:be:1e:e9:3a:a1: e0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:5A:0B:AD:5D:98:06:2E:8B:6A:F4:DA:D9:19:DA:3E:CE:93:EB:17 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XloLrV2YBi6LavTa2RnaPs6T6xc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.72.0/22 Signature Algorithm: sha256WithRSAEncryption 13:19:b0:85:7f:cc:c0:ec:db:30:6e:88:82:ef:45:6a:e2:e7: 99:f8:de:9d:09:23:23:63:3a:05:8e:34:6a:04:8e:b1:64:62: 0a:ca:b3:91:fb:a7:5f:91:e0:02:3f:5c:f3:db:d2:ec:c1:6f: 12:89:0e:6a:a5:38:7b:02:b4:51:cb:9b:20:37:3e:a5:9f:b4: d9:c5:d3:66:18:24:27:df:c4:94:77:e3:b4:93:2e:31:2f:59: 6d:11:d2:00:61:8e:91:30:f0:a3:de:fc:a9:be:45:52:15:c0: 5b:e2:e3:59:73:d0:8e:bd:47:70:04:a9:60:21:68:24:e4:e6: 19:c0:f2:c2:11:c7:91:74:99:7f:5f:d3:56:80:de:81:fc:f6: 09:60:53:a6:4c:17:40:86:aa:a5:19:5d:74:8c:82:aa:57:d4: bd:94:a4:e8:d8:48:32:82:60:10:01:06:f9:18:92:81:6e:29: b3:0e:8c:5e:7f:3c:24:f7:dc:07:da:55:ad:62:fa:36:94:8f: 8c:41:e9:b0:58:38:ac:cc:31:1d:b9:69:55:3e:98:26:b2:10: 5e:7a:87:52:0e:e7:41:db:79:3d:f3:bb:90:a0:e1:c2:38:9f: bf:16:a5:ef:ac:d8:15:3a:b3:5e:3f:43:5d:ca:4f:c4:c1:54: 56:e8:39:61 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVFNUEwQkFENUQ5ODA2 MkU4QjZBRjREQUQ5MTlEQTNFQ0U5M0VCMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDU/59ewMqINa4MmnaL4i8oJQNFYaBINmRkqPeY6Be7mXVGg9bW /mO7Fe5yuiaJ2n8/3p4xJ7iLBwBGExLFUAuMcPwvhah/Kfesc5L3hJRDtDLGchAE pThpUf3iyqEZ8GvA8YwKs5bGTAq+7RCuhKli+J2wq9Er+1zSWxjZHUbUiRO8ztmH 4rFSyi4sR5zMacTiZwMOz3nEb9Y+T5jZTBVCLIu5W9tTa53EBxtXdlEJ727BvMdF uhx4oD/M4bWFsJKHLXLqz732qwmIyjCZNNIyK9MbdwPyXICP1s6cOA0s89tgmdzS Bv4bL+5SA8LxhUiq7JVakbJyXue+Huk6oeARAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXloLrV2YBi6LavTa2RnaPs6T6xcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1hsb0xyVjJZQmk2TGF2VGEy Um5hUHM2VDZ4Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n0gwDQYJKoZIhvcNAQELBQADggEBABMZsIV/zMDs2zBuiILvRWri55n43p0JIyNj OgWONGoEjrFkYgrKs5H7p1+R4AI/XPPb0uzBbxKJDmqlOHsCtFHLmyA3PqWftNnF 02YYJCffxJR347STLjEvWW0R0gBhjpEw8KPe/Km+RVIVwFvi41lz0I69R3AEqWAh aCTk5hnA8sIRx5F0mX9f01aA3oH89glgU6ZMF0CGqqUZXXSMgqpX1L2UpOjYSDKC YBABBvkYkoFuKbMOjF5/PCT33AfaVa1i+jaUj4xB6bBYOKzMMR25aVU+mCayEF56 h1IO50HbeT3zu5Cg4cI4n78Wpe+s2BU6s14/Q13KT8TBVFboOWE= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:03 2024 by rpki-client on console-ams.rpki-client.org