$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jkhLqNMOMQ1X_kdvtRXmXikRDUY.roa File: jkhLqNMOMQ1X_kdvtRXmXikRDUY.roa (raw, json) Hash identifier: 85r5ByrfGV/s70sqzYnr+p418sLuatU5HhMeQ3QSKMw= Subject key identifier: 8E:48:4B:A8:D3:0E:31:0D:57:FE:47:6F:B5:15:E6:5E:29:11:0D:46 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1EAF Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jkhLqNMOMQ1X_kdvtRXmXikRDUY.roa Signing time: Fri 01 Sep 2023 10:16:20 +0000 ROA not before: Fri 01 Sep 2023 10:16:20 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24163 IP address blocks: 122.100.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7855 (0x1eaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:20 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8E484BA8D30E310D57FE476FB515E65E29110D46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:b6:7d:28:6d:c9:a4:f6:67:e7:08:00:3b:92: 99:9a:6b:16:22:f5:78:87:79:d0:dc:18:a0:5d:96: 0f:7e:2b:41:4d:04:0f:c0:2a:de:b3:2f:4c:b1:50: 5f:38:54:5f:a4:ca:a8:2c:cc:93:74:4c:43:b1:74: 17:cb:9a:50:e9:52:72:a9:54:3d:e8:c7:51:b7:11: 6a:a8:7e:a9:0e:c9:43:48:fb:fe:fc:67:cc:8a:f6: 02:0b:b3:86:d4:c2:cd:51:7b:44:a0:8a:9b:69:be: 54:81:d5:27:b1:a2:32:91:06:fe:f9:d3:82:e2:ef: 6a:17:b9:20:54:ce:f6:09:13:42:4f:73:74:8d:31: 8e:f2:1f:c4:3e:e9:5c:29:a3:ad:9a:88:7b:11:57: 0b:f1:7a:87:0d:eb:ec:a1:c7:ed:fd:c7:de:8a:e3: 1a:7c:05:7b:9d:9a:2f:d7:a7:76:1b:e7:1f:7c:37: 5a:c7:36:9f:63:82:41:e7:07:67:49:31:99:bd:60: a4:0c:ce:13:c4:97:83:bd:32:63:1d:69:29:37:f4: dd:83:d1:4a:c5:84:13:28:93:00:ce:71:f0:7a:0e: f2:fb:08:85:bd:8c:53:9a:5b:01:6b:9f:dd:33:ad: 1d:d0:78:d5:e1:d2:b7:82:c4:83:a4:21:45:95:ba: 2e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:48:4B:A8:D3:0E:31:0D:57:FE:47:6F:B5:15:E6:5E:29:11:0D:46 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jkhLqNMOMQ1X_kdvtRXmXikRDUY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.120.0/22 Signature Algorithm: sha256WithRSAEncryption 35:9d:61:b2:7e:7e:16:32:f1:81:94:57:e1:8d:7a:b0:e8:c5: 5f:2d:74:7a:42:09:96:23:7e:dd:89:86:79:23:97:df:f3:29: 8e:c2:7d:d1:a6:5a:40:ee:ac:54:88:31:7d:85:01:ed:5f:0d: 09:10:a9:c4:2e:21:54:14:07:90:36:78:67:3d:c4:60:78:ca: ea:22:6a:0d:a9:98:81:ab:38:cc:41:a2:3b:f4:3b:20:55:78: 5f:0e:44:c2:48:12:fd:d4:a2:a6:87:0e:62:00:ab:a2:5f:44: 17:34:4f:f0:d0:8d:68:60:f0:75:4a:64:5b:15:a7:a2:44:f5: 6d:02:e9:3a:94:1c:80:d7:6a:c3:54:5a:b3:c0:2f:db:67:2d: 70:c1:0f:86:f3:63:fb:b2:fd:4d:de:71:27:d0:fe:39:62:c7: 1a:41:a5:3c:86:8d:98:ff:30:49:16:16:2f:e4:53:d7:b1:6b: 0f:e4:eb:11:4b:23:b8:a1:3f:a0:29:33:9e:8d:b2:07:c2:91: b8:cc:ea:81:6b:55:e5:ca:6f:ac:2c:75:91:fc:ac:3f:c8:ac: 34:23:06:7d:4b:ca:c8:c9:53:2a:91:27:e1:37:81:2b:17:ec: f8:f6:e9:ed:ca:38:05:ac:66:4b:41:1d:a2:e6:84:03:ae:94: 8a:1b:47:5a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHq8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MjBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhFNDg0QkE4RDMwRTMx MEQ1N0ZFNDc2RkI1MTVFNjVFMjkxMTBENDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD5tn0obcmk9mfnCAA7kpmaaxYi9XiHedDcGKBdlg9+K0FNBA/A Kt6zL0yxUF84VF+kyqgszJN0TEOxdBfLmlDpUnKpVD3ox1G3EWqofqkOyUNI+/78 Z8yK9gILs4bUws1Re0SgiptpvlSB1SexojKRBv7504Li72oXuSBUzvYJE0JPc3SN MY7yH8Q+6Vwpo62aiHsRVwvxeocN6+yhx+39x96K4xp8BXudmi/Xp3Yb5x98N1rH Np9jgkHnB2dJMZm9YKQMzhPEl4O9MmMdaSk39N2D0UrFhBMokwDOcfB6DvL7CIW9 jFOaWwFrn90zrR3QeNXh0reCxIOkIUWVui6rAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjkhLqNMOMQ1X/kdvtRXmXikRDUYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2praExxTk1PTVExWF9rZHZ0 UlhtWGlrUkRVWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ6 ZHgwDQYJKoZIhvcNAQELBQADggEBADWdYbJ+fhYy8YGUV+GNerDoxV8tdHpCCZYj ft2Jhnkjl9/zKY7CfdGmWkDurFSIMX2FAe1fDQkQqcQuIVQUB5A2eGc9xGB4yuoi ag2pmIGrOMxBojv0OyBVeF8ORMJIEv3UoqaHDmIAq6JfRBc0T/DQjWhg8HVKZFsV p6JE9W0C6TqUHIDXasNUWrPAL9tnLXDBD4bzY/uy/U3ecSfQ/jlixxpBpTyGjZj/ MEkWFi/kU9exaw/k6xFLI7ihP6ApM56NsgfCkbjM6oFrVeXKb6wsdZH8rD/IrDQj Bn1LysjJUyqRJ+E3gSsX7Pj26e3KOAWsZktBHaLmhAOulIobR1o= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:03 2024 by rpki-client on console-ams.rpki-client.org