$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bh1gn6dASjRZR8LdaadBF32k-GA.roa File: bh1gn6dASjRZR8LdaadBF32k-GA.roa (raw, json) Hash identifier: xjeCpEjWTtFCGCVL+56f5raTzlFs6NVhcTo0jV2Wrts= Subject key identifier: 6E:1D:60:9F:A7:40:4A:34:59:47:C2:DD:69:A7:41:17:7D:A4:F8:60 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D67 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bh1gn6dASjRZR8LdaadBF32k-GA.roa Signing time: Fri 01 Sep 2023 10:14:46 +0000 ROA not before: Fri 01 Sep 2023 10:14:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24165 IP address blocks: 49.158.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7527 (0x1d67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:14:46 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6E1D609FA7404A345947C2DD69A741177DA4F860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cc:ae:49:98:f6:4d:86:f3:f2:63:79:9b:4a: 0d:14:38:7f:dd:e4:b1:b2:1a:65:00:72:51:8d:1d: 5f:b2:a1:dd:96:b6:49:1f:31:34:cd:0b:1b:84:49: 4a:89:91:94:4b:ab:58:21:ab:bc:8c:b2:02:87:fc: c5:41:19:36:7c:cb:f9:fa:f2:cc:ae:2c:e0:1f:08: fb:3b:48:82:a1:0c:98:d1:2d:12:04:57:59:82:9d: 02:b3:78:c7:48:5e:07:41:d1:a4:90:c8:d6:1f:1f: 2f:8b:e2:20:ef:4b:72:25:4d:98:9e:7f:5d:67:17: 0a:b7:1a:c5:71:8e:1b:42:95:91:d9:e8:4a:a2:64: 5d:a1:0c:09:d0:58:1c:59:11:ff:bb:c9:8a:8d:49: 10:59:a3:a0:c8:6a:54:1f:63:ed:3c:ec:e5:ce:b5: a1:2e:06:d1:04:3c:d9:95:b4:51:95:6e:68:e4:f6: 97:57:6c:1b:3f:d1:2a:eb:a2:06:53:c4:ed:32:ee: 0b:7e:7d:54:30:7f:9d:f3:47:b2:38:03:2e:bd:ae: 49:4e:bf:de:10:e4:27:78:98:d6:ee:ca:7a:25:44: 56:ce:10:0d:f2:c7:b6:1e:39:1b:f5:0d:d4:29:03: 7b:2a:a7:bc:69:9b:62:d5:26:0c:c5:a5:c3:8b:d4: 99:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1D:60:9F:A7:40:4A:34:59:47:C2:DD:69:A7:41:17:7D:A4:F8:60 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bh1gn6dASjRZR8LdaadBF32k-GA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.128.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:6d:25:94:c9:d6:8f:c3:47:6a:da:d6:50:9d:ba:ad:e7:f7: 65:3e:1f:4e:c5:5a:8c:3f:4a:7d:54:29:cd:3a:69:c1:20:3c: ae:28:77:de:97:86:3a:c3:50:0f:08:c6:76:38:a0:89:31:0d: a1:37:ab:54:da:ef:b8:5d:c0:4a:c7:ac:6f:76:65:48:91:7e: e2:36:19:a2:02:4a:79:52:4c:00:f4:20:a9:f7:68:a7:fc:9c: c7:4b:4e:f1:0d:60:ee:30:6d:d4:a3:0f:c4:3c:15:51:ad:d0: de:de:00:48:12:88:47:29:35:40:64:16:f3:c3:b4:03:ef:8a: 84:01:c4:47:ad:74:ce:34:0f:59:64:64:9f:6c:d3:7d:7d:3d: 64:3c:38:7a:c0:4b:e3:c2:84:24:ab:de:9c:01:fe:54:c0:13: 10:87:eb:d6:f9:74:14:54:4d:7b:36:2b:55:b3:f2:6f:99:83: eb:07:cc:35:69:f2:6c:95:ac:93:32:d1:49:f8:fc:c5:f2:a2: 0d:dd:36:9f:58:9f:86:69:7d:6b:c4:b7:5d:6f:40:24:3b:0a: d5:05:78:7f:46:20:e5:f0:df:ce:46:81:89:2a:a7:10:be:7d: b0:02:c6:36:65:82:5e:39:b4:70:fc:8d:ce:e0:28:44:3f:70: 0e:36:39:9a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHWcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE0NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZFMUQ2MDlGQTc0MDRB MzQ1OTQ3QzJERDY5QTc0MTE3N0RBNEY4NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChzK5JmPZNhvPyY3mbSg0UOH/d5LGyGmUAclGNHV+yod2Wtkkf MTTNCxuESUqJkZRLq1ghq7yMsgKH/MVBGTZ8y/n68syuLOAfCPs7SIKhDJjRLRIE V1mCnQKzeMdIXgdB0aSQyNYfHy+L4iDvS3IlTZief11nFwq3GsVxjhtClZHZ6Eqi ZF2hDAnQWBxZEf+7yYqNSRBZo6DIalQfY+087OXOtaEuBtEEPNmVtFGVbmjk9pdX bBs/0SrrogZTxO0y7gt+fVQwf53zR7I4Ay69rklOv94Q5Cd4mNbuynolRFbOEA3y x7YeORv1DdQpA3sqp7xpm2LVJgzFpcOL1JkhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbh1gn6dASjRZR8LdaadBF32k+GAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2JoMWduNmRBU2pSWlI4TGRh YWRCRjMyay1HQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx noAwDQYJKoZIhvcNAQELBQADggEBAExtJZTJ1o/DR2ra1lCduq3n92U+H07FWow/ Sn1UKc06acEgPK4od96XhjrDUA8IxnY4oIkxDaE3q1Ta77hdwErHrG92ZUiRfuI2 GaICSnlSTAD0IKn3aKf8nMdLTvENYO4wbdSjD8Q8FVGt0N7eAEgSiEcpNUBkFvPD tAPvioQBxEetdM40D1lkZJ9s0319PWQ8OHrAS+PChCSr3pwB/lTAExCH69b5dBRU TXs2K1Wz8m+Zg+sHzDVp8myVrJMy0Un4/MXyog3dNp9Yn4ZpfWvEt11vQCQ7CtUF eH9GIOXw385GgYkqpxC+fbACxjZlgl45tHD8jc7gKEQ/cA42OZo= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:08 2024 by rpki-client on console-fra.rpki-client.org