$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jECRM3gNg41zSDAuiytUSMqZlcg.roa File: jECRM3gNg41zSDAuiytUSMqZlcg.roa (raw, json) Hash identifier: 3a2nLULayTj6pdQ57xdCTBZgJdoukXgjzxI4uHmoPxo= Subject key identifier: 8C:40:91:33:78:0D:83:8D:73:48:30:2E:8B:2B:54:48:CA:99:95:C8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E74 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jECRM3gNg41zSDAuiytUSMqZlcg.roa Signing time: Fri 01 Sep 2023 10:16:04 +0000 ROA not before: Fri 01 Sep 2023 10:16:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 180.218.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7796 (0x1e74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8C409133780D838D7348302E8B2B5448CA9995C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:61:f4:8e:f2:97:88:d4:52:e5:a0:8c:7a:17: 86:ff:27:d0:2e:af:cd:dc:0d:e5:79:b2:00:c9:41: 78:c8:ef:9f:7a:38:a9:7a:07:bd:c3:d8:c7:5c:cc: 14:4a:c2:ca:ef:4a:c2:c1:97:7a:e3:b2:87:41:60: 46:31:51:5b:fa:88:05:a9:cc:72:4b:aa:df:a1:5d: c6:51:4e:14:f4:cd:25:ae:cd:4f:c1:d6:5b:91:bb: 0d:a1:c2:43:5c:3c:a5:d2:45:c9:5e:f9:08:e0:49: bd:83:71:a7:bd:c7:c2:b0:97:23:ca:fd:8b:94:00: 78:b7:f3:60:75:e7:03:5c:52:11:e4:bb:62:90:72: 85:1f:85:9d:e8:98:cf:e7:f5:2e:23:84:45:13:ab: bc:05:3e:cc:0a:35:1c:18:89:c0:2e:23:de:61:7d: 61:70:b2:48:e1:4d:1c:5b:2c:ee:b3:f7:0f:72:ed: d0:6c:32:51:0f:3e:e5:55:45:8d:5b:b0:ab:cb:0b: 4a:97:48:ae:d7:b7:66:60:cc:95:9c:66:66:d2:4f: 0b:dd:6c:11:d2:f0:b7:f4:ff:3b:3b:42:4f:80:c8: 19:e8:0f:8e:65:04:18:7b:d3:a9:dd:81:14:3b:29: fe:bb:fe:d4:66:b1:99:53:c3:e0:0e:bf:1f:43:ac: 8f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:40:91:33:78:0D:83:8D:73:48:30:2E:8B:2B:54:48:CA:99:95:C8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jECRM3gNg41zSDAuiytUSMqZlcg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.216.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:52:bf:2b:15:31:26:7b:df:77:01:87:5d:dd:f4:56:82:af: 43:75:db:4f:80:87:46:27:86:32:5d:ac:4a:1c:ea:06:9d:be: 7e:9e:42:12:c5:55:d4:8f:04:7c:4c:d6:51:36:0c:64:87:3c: 8e:bb:ce:02:b8:24:7c:38:48:e1:1d:2d:87:8d:43:c4:b1:16: 79:bf:4b:ea:32:d4:b0:e9:b9:fc:47:e4:31:17:4b:51:62:a8: 41:1e:61:45:f6:f3:72:e6:ad:d7:47:f6:b0:7e:02:c2:34:53: 5c:e0:4c:78:42:7e:bf:a3:9a:65:61:b7:7a:76:9e:2a:b5:d3: d7:24:62:1a:49:34:79:7a:76:f7:a8:aa:8b:ea:8f:7f:1e:38: 67:3e:21:2a:0f:b0:78:95:6f:93:42:0d:85:db:be:5e:e4:10: 52:ed:ff:20:16:b1:51:7e:50:50:fd:74:2a:43:2e:bf:6b:41: 50:e6:32:77:2b:a4:4e:e7:2b:1a:a0:f1:79:8f:5c:c5:b4:7f: fa:54:26:ec:93:2e:2f:5e:2e:c4:03:37:c7:d7:e0:ff:5b:cb: 0e:6f:96:0b:72:ba:9b:ee:f1:6d:1e:6a:79:d5:d4:3a:0d:9d: d8:27:07:f0:91:96:e1:ee:7a:a1:38:a5:0b:1e:0c:66:1c:7b: b4:6a:26:7b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHnQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhDNDA5MTMzNzgwRDgz OEQ3MzQ4MzAyRThCMkI1NDQ4Q0E5OTk1QzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCYfSO8peI1FLloIx6F4b/J9Aur83cDeV5sgDJQXjI7596OKl6 B73D2MdczBRKwsrvSsLBl3rjsodBYEYxUVv6iAWpzHJLqt+hXcZRThT0zSWuzU/B 1luRuw2hwkNcPKXSRcle+QjgSb2Dcae9x8KwlyPK/YuUAHi382B15wNcUhHku2KQ coUfhZ3omM/n9S4jhEUTq7wFPswKNRwYicAuI95hfWFwskjhTRxbLO6z9w9y7dBs MlEPPuVVRY1bsKvLC0qXSK7Xt2ZgzJWcZmbSTwvdbBHS8Lf0/zs7Qk+AyBnoD45l BBh706ndgRQ7Kf67/tRmsZlTw+AOvx9DrI8VAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjECRM3gNg41zSDAuiytUSMqZlcgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2pFQ1JNM2dOZzQxelNEQXVp eXRVU01xWmxjZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2tgwDQYJKoZIhvcNAQELBQADggEBABxSvysVMSZ733cBh13d9FaCr0N120+Ah0Yn hjJdrEoc6gadvn6eQhLFVdSPBHxM1lE2DGSHPI67zgK4JHw4SOEdLYeNQ8SxFnm/ S+oy1LDpufxH5DEXS1FiqEEeYUX283LmrddH9rB+AsI0U1zgTHhCfr+jmmVht3p2 niq109ckYhpJNHl6dveoqovqj38eOGc+ISoPsHiVb5NCDYXbvl7kEFLt/yAWsVF+ UFD9dCpDLr9rQVDmMncrpE7nKxqg8XmPXMW0f/pUJuyTLi9eLsQDN8fX4P9byw5v lgtyupvu8W0eannV1DoNndgnB/CRluHueqE4pQseDGYce7RqJns= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:03 2024 by rpki-client on console-ams.rpki-client.org