$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y-t3Hr_NYQBEvCVe8ImpHzCBePE.roa File: Y-t3Hr_NYQBEvCVe8ImpHzCBePE.roa (raw, json) Hash identifier: mlUxbFNBG7ztGVNlSR4tWoe45h2nsQrdhF4kNzSLlc8= Subject key identifier: 63:EB:77:1E:BF:CD:61:00:44:BC:25:5E:F0:89:A9:1F:30:81:78:F1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E99 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y-t3Hr_NYQBEvCVe8ImpHzCBePE.roa Signing time: Fri 01 Sep 2023 10:16:14 +0000 ROA not before: Fri 01 Sep 2023 10:16:14 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.159.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7833 (0x1e99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:14 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=63EB771EBFCD610044BC255EF089A91F308178F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d5:89:f7:2f:70:41:7b:89:1a:07:9c:51:ef: b2:fe:46:2f:86:53:20:51:08:42:9f:14:69:e0:c8: 5e:3c:24:0f:c2:8b:93:f7:9c:fb:7b:da:f0:fe:db: d3:53:68:71:9e:50:b7:57:d0:22:a8:d6:4d:13:8f: d8:a6:d3:bf:e3:90:50:62:56:81:d5:0a:91:82:7b: 44:46:e1:54:c5:e4:31:53:0f:5d:6c:7c:8e:b0:89: ac:61:ea:4a:c6:4a:ea:7f:83:75:38:37:6e:6c:53: dc:ac:cd:c4:d6:b7:2f:d6:08:d6:9d:f3:bc:58:ee: b1:0b:07:d3:48:7a:9a:e7:3d:98:64:16:3d:52:c1: d0:87:60:29:9c:a8:98:7d:92:ae:49:cc:3d:d2:62: 51:42:c3:2c:2e:d9:cb:e0:c8:13:a4:5a:9e:97:96: 75:32:6f:a6:65:3a:6f:d4:77:f1:ab:f1:5f:5d:2c: df:ad:95:fd:af:84:3d:32:94:ae:a1:3d:16:b9:ea: d4:2b:b9:17:05:9a:7b:ff:96:42:b3:3a:40:80:76: 1c:b5:29:c2:d7:21:9e:23:d6:42:a7:1f:f7:d1:9a: 8b:80:1a:f8:fd:34:0f:a5:8c:82:9d:84:86:50:18: 4c:12:42:8f:02:42:7c:56:33:cb:33:0b:cb:19:00: 2c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EB:77:1E:BF:CD:61:00:44:BC:25:5E:F0:89:A9:1F:30:81:78:F1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y-t3Hr_NYQBEvCVe8ImpHzCBePE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.32.0/19 Signature Algorithm: sha256WithRSAEncryption 1c:ac:fe:18:34:4c:5a:b4:9a:45:b1:e6:23:1e:0e:71:2e:84: 75:cc:b8:93:ce:63:03:d0:fe:61:85:a5:97:1a:65:3e:17:c4: 00:c2:86:ec:74:7c:bd:5a:86:22:b9:65:3d:1e:b6:68:a3:db: 34:e2:5e:ce:68:00:a4:2e:e3:7c:c8:0c:5e:96:9b:dc:ea:ee: a2:df:9a:38:68:5f:97:3d:2c:95:5f:06:81:2a:ba:b3:99:7d: d3:93:5f:57:f8:e4:21:bc:98:5a:18:c6:79:4c:13:4c:89:13: 73:86:15:21:7b:67:96:7c:6a:92:5d:22:ab:03:78:cc:dc:94: b6:de:24:20:b3:5f:e8:84:91:65:ba:e9:94:d6:d9:1f:ab:7b: 09:55:7f:45:12:bd:76:20:3d:7a:28:11:02:15:6f:5a:cb:5a: ac:00:db:3e:bf:04:dc:24:66:a6:40:9d:95:04:5f:47:2c:38: f0:c4:34:2d:80:6a:b0:32:4c:a5:ce:06:ce:a7:a4:66:27:1a: 60:1d:eb:50:53:11:75:e2:08:20:64:14:5a:2d:1c:81:99:4e: a7:05:a3:35:a3:0c:98:6c:9b:21:e9:de:65:19:45:a9:a3:6e: dc:d4:d3:29:ee:a3:6f:13:a5:f3:9a:f9:ad:48:62:ca:60:f4: 97:15:ba:0c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHpkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYzRUI3NzFFQkZDRDYx MDA0NEJDMjU1RUYwODlBOTFGMzA4MTc4RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY1Yn3L3BBe4kaB5xR77L+Ri+GUyBRCEKfFGngyF48JA/Ci5P3 nPt72vD+29NTaHGeULdX0CKo1k0Tj9im07/jkFBiVoHVCpGCe0RG4VTF5DFTD11s fI6wiaxh6krGSup/g3U4N25sU9yszcTWty/WCNad87xY7rELB9NIeprnPZhkFj1S wdCHYCmcqJh9kq5JzD3SYlFCwywu2cvgyBOkWp6XlnUyb6ZlOm/Ud/Gr8V9dLN+t lf2vhD0ylK6hPRa56tQruRcFmnv/lkKzOkCAdhy1KcLXIZ4j1kKnH/fRmouAGvj9 NA+ljIKdhIZQGEwSQo8CQnxWM8szC8sZACxpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUY+t3Hr/NYQBEvCVe8ImpHzCBePEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1ktdDNIcl9OWVFCRXZDVmU4 SW1wSHpDQmVQRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUx nyAwDQYJKoZIhvcNAQELBQADggEBABys/hg0TFq0mkWx5iMeDnEuhHXMuJPOYwPQ /mGFpZcaZT4XxADChux0fL1ahiK5ZT0etmij2zTiXs5oAKQu43zIDF6Wm9zq7qLf mjhoX5c9LJVfBoEqurOZfdOTX1f45CG8mFoYxnlME0yJE3OGFSF7Z5Z8apJdIqsD eMzclLbeJCCzX+iEkWW66ZTW2R+rewlVf0USvXYgPXooEQIVb1rLWqwA2z6/BNwk ZqZAnZUEX0csOPDENC2AarAyTKXOBs6npGYnGmAd61BTEXXiCCBkFFotHIGZTqcF ozWjDJhsmyHp3mUZRamjbtzU0ynuo28TpfOa+a1IYspg9JcVugw= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:03 2024 by rpki-client on console-ams.rpki-client.org