$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kZ5hVMzCBAduVcBtLYC0PwIeixY.roa File: kZ5hVMzCBAduVcBtLYC0PwIeixY.roa (raw, json) Hash identifier: f/9JCkfZig0L0rc3bisLoiuUkeLB0GmT8JhO5wucBJo= Subject key identifier: 91:9E:61:54:CC:C2:04:07:6E:55:C0:6D:2D:80:B4:3F:02:1E:8B:16 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E6F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kZ5hVMzCBAduVcBtLYC0PwIeixY.roa Signing time: Fri 01 Sep 2023 10:16:02 +0000 ROA not before: Fri 01 Sep 2023 10:16:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 123.0.40.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7791 (0x1e6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:02 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=919E6154CCC204076E55C06D2D80B43F021E8B16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8d:43:2c:c9:93:f9:57:b1:0a:dd:8d:76:ce: 49:8c:98:94:ae:39:13:db:4a:ce:66:ae:3a:25:3f: 30:c4:63:1f:84:d6:c8:0a:2f:a6:fa:61:44:ac:a6: 7c:2e:1f:57:fb:25:c9:a8:2a:ea:ca:31:27:31:2e: 63:6c:0b:5d:1c:a2:76:c7:45:f6:d5:bf:de:f6:be: b1:20:eb:6f:8b:e1:4f:07:67:7a:df:e0:01:09:1b: 94:78:8c:8c:36:7c:e4:bc:f7:4c:c0:fc:e9:1b:5c: 37:73:09:22:81:c8:03:ad:1d:7c:f7:ec:2d:ea:3d: ec:0f:f1:68:55:57:31:f2:a1:d8:ab:87:75:fa:cc: 7f:78:d2:78:b5:ed:24:ae:cf:80:00:db:c4:36:77: b4:7c:38:94:25:0c:c1:8a:2f:81:08:12:37:58:50: 57:db:e0:2e:aa:49:6a:4b:bb:a6:c4:62:e1:d0:84: 49:c9:53:88:ac:c7:0b:5a:04:e8:a1:07:3e:88:ea: 02:d0:a1:b1:32:dd:5e:e1:1b:c6:72:35:07:e3:fd: de:12:e8:b6:76:d5:c1:3a:e4:c6:74:c0:19:3d:28: 6d:92:e1:4b:45:ce:8c:d0:ec:20:a1:73:f5:6b:21: 08:b5:1e:b1:d8:22:d0:8b:11:49:b7:45:08:1b:1c: 4d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9E:61:54:CC:C2:04:07:6E:55:C0:6D:2D:80:B4:3F:02:1E:8B:16 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kZ5hVMzCBAduVcBtLYC0PwIeixY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.40.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:4a:15:8c:54:30:6d:f4:4f:25:fd:ae:3e:db:23:76:0a:7a: 19:05:77:5a:7e:19:a9:9e:14:8b:e1:a6:36:fc:09:80:27:ad: 33:a1:fb:01:4e:e9:3e:13:bb:61:38:63:1a:12:9f:e6:64:b3: 08:02:c5:02:57:7f:e2:ed:f2:bc:44:35:80:14:ec:72:d1:66: e0:ad:98:9c:c1:b5:18:81:ec:ea:68:79:dc:dc:88:88:84:eb: 12:f5:a9:2a:7e:08:8e:19:1e:df:be:bf:63:04:a0:e8:fe:85: 31:1e:41:aa:c5:aa:e5:ce:e7:d2:84:16:b7:25:a5:79:d2:90: 3c:60:55:f4:75:2a:11:83:a9:42:89:ff:d0:f6:79:f9:f4:4f: b3:38:82:74:5a:03:10:c3:96:f8:39:ee:08:86:20:5e:d2:4d: 8c:94:39:51:d2:50:e6:9e:df:6c:86:04:d6:63:66:0f:07:bf: 40:dc:07:1a:b0:b6:9a:77:f0:a4:8a:50:72:83:c7:78:bb:15: 13:ea:b5:15:99:6f:ff:5b:67:9b:58:09:79:c7:e2:49:ab:27: 57:7f:ae:2b:d7:64:af:37:d6:b7:f2:2f:0d:6f:c2:52:23:d3: d2:e4:39:4f:ae:1a:1a:18:67:92:fc:97:51:53:92:e9:02:5c: 33:07:b6:d6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHm8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkxOUU2MTU0Q0NDMjA0 MDc2RTU1QzA2RDJEODBCNDNGMDIxRThCMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbjUMsyZP5V7EK3Y12zkmMmJSuORPbSs5mrjolPzDEYx+E1sgK L6b6YUSspnwuH1f7JcmoKurKMScxLmNsC10conbHRfbVv972vrEg62+L4U8HZ3rf 4AEJG5R4jIw2fOS890zA/OkbXDdzCSKByAOtHXz37C3qPewP8WhVVzHyodirh3X6 zH940ni17SSuz4AA28Q2d7R8OJQlDMGKL4EIEjdYUFfb4C6qSWpLu6bEYuHQhEnJ U4isxwtaBOihBz6I6gLQobEy3V7hG8ZyNQfj/d4S6LZ21cE65MZ0wBk9KG2S4UtF zozQ7CChc/VrIQi1HrHYItCLEUm3RQgbHE25AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUkZ5hVMzCBAduVcBtLYC0PwIeixYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2taNWhWTXpDQkFkdVZjQnRM WUMwUHdJZWl4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7 ACgwDQYJKoZIhvcNAQELBQADggEBACtKFYxUMG30TyX9rj7bI3YKehkFd1p+Game FIvhpjb8CYAnrTOh+wFO6T4Tu2E4YxoSn+ZkswgCxQJXf+Lt8rxENYAU7HLRZuCt mJzBtRiB7OpoedzciIiE6xL1qSp+CI4ZHt++v2MEoOj+hTEeQarFquXO59KEFrcl pXnSkDxgVfR1KhGDqUKJ/9D2efn0T7M4gnRaAxDDlvg57giGIF7STYyUOVHSUOae 32yGBNZjZg8Hv0DcBxqwtpp38KSKUHKDx3i7FRPqtRWZb/9bZ5tYCXnH4kmrJ1d/ rivXZK831rfyLw1vwlIj09LkOU+uGhoYZ5L8l1FTkukCXDMHttY= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:08 2024 by rpki-client on console-fra.rpki-client.org