$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_BKaApOfThqpDGAf7ykld5-DfH4.roa File: _BKaApOfThqpDGAf7ykld5-DfH4.roa (raw, json) Hash identifier: Q/zs2Hv9pJh7oPnFVeZfHdap9QU4Ipn1g2Wu+9JHYoA= Subject key identifier: FC:12:9A:02:93:9F:4E:1A:A9:0C:60:1F:EF:29:25:77:9F:83:7C:7E Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E7B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_BKaApOfThqpDGAf7ykld5-DfH4.roa Signing time: Fri 01 Sep 2023 10:16:06 +0000 ROA not before: Fri 01 Sep 2023 10:16:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.159.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7803 (0x1e7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FC129A02939F4E1AA90C601FEF2925779F837C7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:15:52:03:6d:28:32:8d:fe:54:59:ff:ca:9b: 46:3f:6d:74:bb:4d:7a:f1:66:de:c8:b8:1e:02:64: 1a:7e:d1:0c:4d:f4:44:5c:39:63:e1:84:05:b6:c8: 96:13:62:1f:82:0f:b2:91:4b:d1:8c:5d:e7:3a:5d: 95:e3:a0:a9:21:55:2a:63:fa:aa:4a:38:6f:09:9e: 56:f1:a0:2c:29:63:5a:ec:a2:1b:8a:4b:3e:37:39: b6:9f:2c:de:e0:16:61:82:12:e4:e5:e7:0b:eb:0f: 53:67:b2:42:c2:de:2e:75:a8:33:5e:51:7b:f0:9b: db:44:e9:a5:cd:42:4b:52:7b:bb:7c:a5:4c:a1:93: b5:d0:6b:1c:8e:3b:a0:5a:8b:f1:1a:82:97:20:02: 74:69:04:39:97:eb:fc:89:22:58:dc:0d:3d:01:ca: db:a1:d7:5c:91:c2:a1:54:2a:48:c5:1f:63:2f:5f: dc:43:13:69:d0:01:d6:a6:e1:ee:b6:2a:50:44:31: 81:70:a3:89:ff:87:ab:df:04:56:0d:82:1c:5b:43: b3:ef:c2:4c:08:dd:14:df:aa:36:25:74:70:b4:86: c4:f8:c9:32:4b:36:ec:28:4d:8a:2e:86:a6:b1:4b: c7:c3:30:98:66:29:bf:2f:a4:e0:36:61:9c:b4:04: c6:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:12:9A:02:93:9F:4E:1A:A9:0C:60:1F:EF:29:25:77:9F:83:7C:7E X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_BKaApOfThqpDGAf7ykld5-DfH4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.120.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:a3:3a:f2:7f:9b:46:70:49:84:77:71:aa:7b:29:84:9f:fa: 51:4f:6e:64:bc:96:02:06:89:93:be:c0:25:c4:88:d6:9e:3d: 26:db:9c:4f:4c:5b:5e:b6:47:61:22:ad:2a:26:c8:6e:5e:08: bb:fd:85:be:1b:de:9e:d0:d3:7c:cd:28:32:01:b5:5e:d9:47: 20:19:e5:d3:d3:6e:e9:6e:9a:3a:ce:9b:ea:cf:54:7f:77:8e: 38:ac:08:03:29:06:75:be:2c:e3:2d:3f:17:33:3b:88:15:3d: d1:8e:28:1f:c0:93:8b:cb:84:92:d0:31:df:c2:7b:84:6f:89: 91:f4:47:0b:c5:89:60:00:f2:df:05:33:53:c5:8c:10:d7:24: 53:fa:82:ac:34:cd:9d:c3:33:d5:b7:f6:77:56:22:05:96:80: 5c:6f:dd:62:93:d2:83:73:6e:21:f9:5f:ea:2a:30:28:65:1f: 85:73:27:b6:60:b9:26:c7:46:cc:45:80:b6:af:f6:4d:01:d1: 0d:d7:cf:f9:35:2e:96:13:09:b1:11:7e:95:99:4a:cb:0d:e0: 48:ff:66:2c:7d:9c:c5:2f:33:68:c9:0f:a4:fb:a6:89:c6:70: 61:1b:51:00:3d:fa:d9:6b:4d:ff:f0:f9:84:b2:a5:3a:99:42: 5a:a2:be:9f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHnswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZDMTI5QTAyOTM5RjRF MUFBOTBDNjAxRkVGMjkyNTc3OUY4MzdDN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDFVIDbSgyjf5UWf/Km0Y/bXS7TXrxZt7IuB4CZBp+0QxN9ERc OWPhhAW2yJYTYh+CD7KRS9GMXec6XZXjoKkhVSpj+qpKOG8JnlbxoCwpY1rsohuK Sz43ObafLN7gFmGCEuTl5wvrD1NnskLC3i51qDNeUXvwm9tE6aXNQktSe7t8pUyh k7XQaxyOO6Bai/EagpcgAnRpBDmX6/yJIljcDT0Bytuh11yRwqFUKkjFH2MvX9xD E2nQAdam4e62KlBEMYFwo4n/h6vfBFYNghxbQ7PvwkwI3RTfqjYldHC0hsT4yTJL NuwoTYouhqaxS8fDMJhmKb8vpOA2YZy0BMaTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/BKaApOfThqpDGAf7ykld5+DfH4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL19CS2FBcE9mVGhxcERHQWY3 eWtsZDUtRGZINC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n3gwDQYJKoZIhvcNAQELBQADggEBAHqjOvJ/m0ZwSYR3cap7KYSf+lFPbmS8lgIG iZO+wCXEiNaePSbbnE9MW162R2EirSomyG5eCLv9hb4b3p7Q03zNKDIBtV7ZRyAZ 5dPTbulumjrOm+rPVH93jjisCAMpBnW+LOMtPxczO4gVPdGOKB/Ak4vLhJLQMd/C e4RviZH0RwvFiWAA8t8FM1PFjBDXJFP6gqw0zZ3DM9W39ndWIgWWgFxv3WKT0oNz biH5X+oqMChlH4VzJ7ZguSbHRsxFgLav9k0B0Q3Xz/k1LpYTCbERfpWZSssN4Ej/ Zix9nMUvM2jJD6T7ponGcGEbUQA9+tlrTf/w+YSypTqZQlqivp8= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:03 2024 by rpki-client on console-ams.rpki-client.org