$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YFl6f6z4E908pIhm3qZEfGAieTk.roa File: YFl6f6z4E908pIhm3qZEfGAieTk.roa (raw, json) Hash identifier: b/lDEA/fdAl7salLylZ9riYQzYNNPd1MNYL3HaVQm3I= Subject key identifier: 60:59:7A:7F:AC:F8:13:DD:3C:A4:88:66:DE:A6:44:7C:60:22:79:39 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DAE Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YFl6f6z4E908pIhm3qZEfGAieTk.roa Signing time: Fri 01 Sep 2023 10:15:09 +0000 ROA not before: Fri 01 Sep 2023 10:15:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 2407:4b00:ff01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7598 (0x1dae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=60597A7FACF813DD3CA48866DEA6447C60227939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f7:00:65:2d:da:cd:f5:f1:38:a4:6b:0f:52: 9c:c9:16:d2:74:c7:9e:ca:27:b3:57:a7:6b:3c:83: 7f:22:cd:95:9e:b7:cb:1a:2b:12:c2:29:3f:48:bb: 1a:69:14:92:12:df:8e:09:c2:de:bb:2b:b5:e8:1e: da:81:9f:87:b9:6f:95:f8:ae:63:75:4c:4e:2e:2b: 06:1b:dd:1c:ca:18:85:cd:38:ed:f1:b1:ec:5f:ab: f9:50:2b:9c:11:c2:c6:25:b3:b7:f6:da:90:af:b0: b3:7b:c2:8c:33:f5:7f:da:df:d0:ee:8a:60:9f:8f: 61:3c:fc:5c:d7:28:0b:ed:be:9a:40:12:fa:58:52: 76:6d:6b:a4:f6:1c:9f:af:c1:ba:ce:ee:28:e0:ca: fd:37:5c:ac:ee:cd:aa:11:ed:57:f7:01:92:16:d3: 55:9f:63:23:56:4a:9e:a4:19:5c:36:2c:c1:46:be: a0:bf:75:44:dc:e4:ca:7e:f4:de:45:9a:8f:4f:47: b0:b2:06:d8:26:4d:c1:4b:d3:8d:45:68:98:e5:d8: 86:31:37:82:3c:51:25:54:ce:04:26:da:69:29:21: 42:9b:a0:47:39:45:46:79:d6:14:53:a8:91:8c:08: c3:c3:ae:98:cb:58:ae:47:ac:4d:1c:8d:78:ed:62: 20:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:59:7A:7F:AC:F8:13:DD:3C:A4:88:66:DE:A6:44:7C:60:22:79:39 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YFl6f6z4E908pIhm3qZEfGAieTk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4b00:ff01::/48 Signature Algorithm: sha256WithRSAEncryption 77:ab:05:ad:a8:44:5d:41:2b:9e:70:7c:f1:3d:c5:5c:63:97: 49:97:aa:a9:9a:d9:4b:e1:39:cc:a3:c9:9e:d4:d0:51:84:ac: af:27:42:12:4e:26:2c:54:cc:e3:60:0f:3e:d7:05:48:2c:36: b3:26:97:75:61:b7:52:6b:93:a8:20:7b:3c:be:5a:54:d1:d2: 7a:c3:79:b4:15:a7:62:52:58:d8:39:68:34:97:99:be:d1:23: 04:11:21:c9:1b:44:09:dd:55:e5:5a:8e:98:d0:ce:eb:32:27: b6:9e:8a:c1:12:68:42:e4:4d:4e:4b:4c:f9:d8:e1:3f:bf:f3: d9:98:bf:6a:86:ca:ee:26:a1:a8:7b:54:9d:68:ba:a8:be:c3: 6e:a7:15:b2:25:1e:fe:4f:5a:1d:ca:4e:59:83:19:2d:11:97: 24:2a:85:62:44:9c:ef:14:a7:7b:e9:b3:38:a3:28:ee:e5:6a: f5:4e:4d:40:a4:d4:72:77:ed:fa:14:8b:77:fc:9b:71:b7:f1: f4:aa:7c:53:e3:7a:7d:a5:95:8d:d4:ea:c1:1b:f1:de:6e:dc: 60:be:a2:ce:c0:1b:e4:a4:f6:14:87:79:84:2a:4d:f3:a6:ab: fd:f3:a0:6c:0e:94:6e:e7:ab:3e:88:aa:a9:f0:18:8e:ba:f4: 52:fe:b9:c1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYwNTk3QTdGQUNGODEz REQzQ0E0ODg2NkRFQTY0NDdDNjAyMjc5MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDf9wBlLdrN9fE4pGsPUpzJFtJ0x57KJ7NXp2s8g38izZWet8sa KxLCKT9IuxppFJIS344Jwt67K7XoHtqBn4e5b5X4rmN1TE4uKwYb3RzKGIXNOO3x sexfq/lQK5wRwsYls7f22pCvsLN7wowz9X/a39DuimCfj2E8/FzXKAvtvppAEvpY UnZta6T2HJ+vwbrO7ijgyv03XKzuzaoR7Vf3AZIW01WfYyNWSp6kGVw2LMFGvqC/ dUTc5Mp+9N5Fmo9PR7CyBtgmTcFL041FaJjl2IYxN4I8USVUzgQm2mkpIUKboEc5 RUZ51hRTqJGMCMPDrpjLWK5HrE0cjXjtYiCfAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUYFl6f6z4E908pIhm3qZEfGAieTkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1lGbDZmNno0RTkwOHBJaG0z cVpFZkdBaWVUay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B0sA/wEwDQYJKoZIhvcNAQELBQADggEBAHerBa2oRF1BK55wfPE9xVxjl0mXqqma 2UvhOcyjyZ7U0FGErK8nQhJOJixUzONgDz7XBUgsNrMml3Vht1Jrk6ggezy+WlTR 0nrDebQVp2JSWNg5aDSXmb7RIwQRIckbRAndVeVajpjQzusyJ7aeisESaELkTU5L TPnY4T+/89mYv2qGyu4moah7VJ1ouqi+w26nFbIlHv5PWh3KTlmDGS0RlyQqhWJE nO8Up3vpszijKO7lavVOTUCk1HJ37foUi3f8m3G38fSqfFPjen2llY3U6sEb8d5u 3GC+os7AG+Sk9hSHeYQqTfOmq/3zoGwOlG7nqz6IqqnwGI669FL+ucE= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:03 2024 by rpki-client on console-ams.rpki-client.org