$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZN1_8ZBWQWnEceM7qaTBmgGHc78.roa File: ZN1_8ZBWQWnEceM7qaTBmgGHc78.roa (raw, json) Hash identifier: HH6tYnr81Sz3/TilIeRltaUaxMrM3a1ZsZypvm8Itn8= Subject key identifier: 64:DD:7F:F1:90:56:41:69:C4:71:E3:3B:A9:A4:C1:9A:01:87:73:BF Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DF1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZN1_8ZBWQWnEceM7qaTBmgGHc78.roa Signing time: Fri 01 Sep 2023 10:15:29 +0000 ROA not before: Fri 01 Sep 2023 10:15:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.159.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7665 (0x1df1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=64DD7FF190564169C471E33BA9A4C19A018773BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c6:42:14:94:b7:4f:18:26:cf:9d:81:ff:fa: ca:7a:96:21:41:fc:47:64:2c:21:1b:34:df:7c:96: c0:31:69:07:aa:37:c5:d7:47:a2:58:d1:d3:d1:78: 0a:32:5c:59:b4:ee:ea:7a:f0:16:9e:12:a1:62:f8: 2a:eb:66:ee:cc:43:40:a5:dc:b8:3b:ff:1f:06:12: c6:6f:74:5f:eb:65:5f:74:63:f8:ca:26:62:cb:d9: 84:14:f7:68:8f:fb:1c:cd:13:8e:db:99:b7:7a:f9: e9:be:d2:98:10:05:29:6f:2f:c9:31:f3:8e:31:c5: 77:4a:6e:93:c7:03:78:de:e2:75:58:49:95:0d:59: d9:25:c9:ce:4a:eb:eb:ba:c8:47:5b:32:23:1b:f1: 04:6d:a9:db:b7:61:20:98:f4:86:1d:ad:04:ba:e9: 5f:1d:19:77:1b:83:b0:1e:b4:8a:53:69:6f:6e:4d: 90:50:af:7e:57:a0:e9:38:ac:4c:d7:4b:48:e3:aa: 24:eb:3d:c8:e4:23:ce:1e:5f:ff:8a:2c:de:81:ac: db:7a:22:cd:bd:55:17:f9:ab:24:42:14:7d:69:60: 89:47:12:ee:c7:61:07:7d:a0:85:f0:25:3d:67:6e: c3:79:92:b8:bb:8f:1c:09:9b:7f:a9:d4:3a:89:c7: 67:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:DD:7F:F1:90:56:41:69:C4:71:E3:3B:A9:A4:C1:9A:01:87:73:BF X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZN1_8ZBWQWnEceM7qaTBmgGHc78.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.24.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:ce:ab:0c:17:62:53:84:1f:68:85:d0:4a:60:33:8e:32:0e: c2:37:0b:7d:79:55:1c:22:fe:0a:e0:d4:0b:d9:35:c2:97:ab: 0c:f5:f9:c7:96:ed:1a:4c:07:91:32:f4:84:bf:f0:9f:b0:0e: 4c:77:c0:9b:38:40:52:df:4b:f4:fd:56:01:77:25:44:74:e2: 23:b9:91:f7:f6:0c:e9:7f:cd:67:5d:c9:71:a6:c6:e5:9a:fd: 44:dc:13:1c:a0:83:fc:38:30:1b:52:2d:d3:a5:da:0f:c3:a0: 48:64:ae:de:a9:a3:7c:21:16:e2:89:b8:80:28:19:8a:43:fb: dd:99:af:78:d1:75:8a:5b:e7:05:f0:dc:39:78:bf:69:af:52: f5:c6:7c:cb:f8:e2:f5:2f:20:9d:af:81:49:72:a9:4f:89:c7: cc:24:dd:88:18:57:47:c3:8b:1d:4f:31:85:a8:f6:70:c7:4b: 12:c8:c9:60:3e:b7:ab:28:d9:c5:2b:0f:48:25:ed:eb:bf:b6: 33:c0:52:93:3a:58:c0:1d:3e:51:0f:6f:5d:70:02:09:1d:1c: 2b:37:e1:c8:70:ec:60:81:d3:40:11:97:63:8b:80:55:c5:26: 73:ac:1e:9e:b9:5b:21:85:6f:40:9f:c1:a7:43:ee:d0:59:b8: 3d:a0:a3:24 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHfEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY0REQ3RkYxOTA1NjQx NjlDNDcxRTMzQkE5QTRDMTlBMDE4NzczQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrxkIUlLdPGCbPnYH/+sp6liFB/EdkLCEbNN98lsAxaQeqN8XX R6JY0dPReAoyXFm07up68BaeEqFi+CrrZu7MQ0Cl3Lg7/x8GEsZvdF/rZV90Y/jK JmLL2YQU92iP+xzNE47bmbd6+em+0pgQBSlvL8kx844xxXdKbpPHA3je4nVYSZUN Wdklyc5K6+u6yEdbMiMb8QRtqdu3YSCY9IYdrQS66V8dGXcbg7AetIpTaW9uTZBQ r35XoOk4rEzXS0jjqiTrPcjkI84eX/+KLN6BrNt6Is29VRf5qyRCFH1pYIlHEu7H YQd9oIXwJT1nbsN5kri7jxwJm3+p1DqJx2d3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZN1/8ZBWQWnEceM7qaTBmgGHc78wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1pOMV84WkJXUVduRWNlTTdx YVRCbWdHSGM3OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nxgwDQYJKoZIhvcNAQELBQADggEBAI7OqwwXYlOEH2iF0EpgM44yDsI3C315VRwi /grg1AvZNcKXqwz1+ceW7RpMB5Ey9IS/8J+wDkx3wJs4QFLfS/T9VgF3JUR04iO5 kff2DOl/zWddyXGmxuWa/UTcExygg/w4MBtSLdOl2g/DoEhkrt6po3whFuKJuIAo GYpD+92Zr3jRdYpb5wXw3Dl4v2mvUvXGfMv44vUvIJ2vgUlyqU+Jx8wk3YgYV0fD ix1PMYWo9nDHSxLIyWA+t6so2cUrD0gl7eu/tjPAUpM6WMAdPlEPb11wAgkdHCs3 4chw7GCB00ARl2OLgFXFJnOsHp65WyGFb0CfwadD7tBZuD2goyQ= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:03 2024 by rpki-client on console-ams.rpki-client.org