$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lcmzuMRlNQi3iHWDdUjq2DwR-YU.roa File: lcmzuMRlNQi3iHWDdUjq2DwR-YU.roa (raw, json) Hash identifier: v+HSQTXQ2NrSQr5YO2NRvCDoMM4sgkjxq05mknvh2Rc= Subject key identifier: 95:C9:B3:B8:C4:65:35:08:B7:88:75:83:75:48:EA:D8:3C:11:F9:85 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D7B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lcmzuMRlNQi3iHWDdUjq2DwR-YU.roa Signing time: Fri 01 Sep 2023 10:14:53 +0000 ROA not before: Fri 01 Sep 2023 10:14:53 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.158.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7547 (0x1d7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:14:53 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=95C9B3B8C4653508B78875837548EAD83C11F985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:bb:3f:68:18:92:03:bd:56:4a:a1:86:d3: 40:2a:42:8b:6f:e6:2c:f3:d4:06:48:cd:eb:b8:da: 2c:21:63:bf:52:82:88:d1:1d:08:71:c8:73:14:00: a6:9b:22:8c:a5:b5:1a:a5:3b:e8:4f:f0:5e:8e:a8: 99:6e:54:dd:3a:2f:31:45:94:a7:04:74:0c:78:73: d5:cf:c1:f4:55:0d:e7:40:85:f9:cf:38:f7:9a:4b: c8:cb:75:a2:ff:b0:28:cf:a9:bd:6e:7a:20:b4:ae: b6:b9:72:00:83:d9:76:4c:cc:ab:33:1f:d9:c2:f3: 01:ba:6b:d5:6c:cf:ec:f8:ed:5a:04:ee:f4:2d:da: 64:45:98:d0:ca:1d:e5:38:06:6f:74:33:6a:09:06: 5c:3c:75:8e:0e:b5:21:8d:59:91:8e:f5:04:14:8f: 5f:54:33:dc:7a:cd:8c:90:de:3d:80:86:93:9c:b1: 56:3a:7e:ba:d2:ac:98:67:d6:c9:f5:7d:36:6d:58: b0:3f:a5:85:14:cc:ed:aa:23:17:10:ab:21:03:d6: 7c:38:94:16:40:80:9c:ac:1b:fd:8c:ab:ae:c3:80: f6:e4:2f:10:de:1b:da:51:1f:7e:2c:d1:99:86:17: 92:66:da:5f:0d:27:7f:53:20:3a:fe:41:24:e9:d0: c0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C9:B3:B8:C4:65:35:08:B7:88:75:83:75:48:EA:D8:3C:11:F9:85 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lcmzuMRlNQi3iHWDdUjq2DwR-YU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.145.0/24 Signature Algorithm: sha256WithRSAEncryption 26:d5:a8:b7:e0:c4:31:89:ad:a8:e5:14:0a:91:b4:16:eb:9c: 77:5d:a1:99:9d:27:3d:7a:f8:26:c3:c6:f8:4f:81:a9:e6:83: 9a:82:b6:ba:ce:1e:45:5d:5e:e8:c8:1e:84:da:af:c1:e7:7e: b7:87:26:43:b6:e1:bb:60:d7:89:f2:f0:a8:83:79:75:de:03: 98:8a:9f:ad:d4:0a:29:96:40:ae:ea:88:1e:23:a1:f4:a9:dc: cc:b3:74:3d:8a:28:23:7b:6c:76:2c:37:00:52:6a:e5:05:7a: 3d:ba:47:1b:ad:28:cd:de:af:32:ac:b9:bb:4a:5f:30:1c:00: b4:82:f7:ad:5d:7d:c2:b8:13:a0:ad:18:dc:fd:b0:92:51:46: 8d:bb:c9:2a:cc:61:7a:5e:36:0f:10:8b:9b:ed:a9:5f:54:af: 1e:db:63:f5:3c:67:40:49:29:ea:9b:51:7f:30:47:5c:f8:a8: c3:d6:ed:3b:6f:c3:de:26:ce:5a:9d:d8:06:9f:f9:13:b2:72: 7d:6f:ab:b0:f5:60:4b:ba:a6:95:22:b7:9c:17:40:0a:c7:29: 58:d6:c7:a0:b1:d6:89:d3:73:c5:52:5b:8f:a5:a3:94:68:8f: db:ec:72:09:5a:e4:4d:4b:29:2d:bf:cc:ad:74:8b:09:5c:be: 57:e8:45:73 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHXswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE0NTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk1QzlCM0I4QzQ2NTM1 MDhCNzg4NzU4Mzc1NDhFQUQ4M0MxMUY5ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDVLs/aBiSA71WSqGG00AqQotv5izz1AZIzeu42iwhY79SgojR HQhxyHMUAKabIoyltRqlO+hP8F6OqJluVN06LzFFlKcEdAx4c9XPwfRVDedAhfnP OPeaS8jLdaL/sCjPqb1ueiC0rra5cgCD2XZMzKszH9nC8wG6a9Vsz+z47VoE7vQt 2mRFmNDKHeU4Bm90M2oJBlw8dY4OtSGNWZGO9QQUj19UM9x6zYyQ3j2AhpOcsVY6 frrSrJhn1sn1fTZtWLA/pYUUzO2qIxcQqyED1nw4lBZAgJysG/2Mq67DgPbkLxDe G9pRH34s0ZmGF5Jm2l8NJ39TIDr+QSTp0MDVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlcmzuMRlNQi3iHWDdUjq2DwR+YUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2xjbXp1TVJsTlFpM2lIV0Rk VWpxMkR3Ui1ZVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAx npEwDQYJKoZIhvcNAQELBQADggEBACbVqLfgxDGJrajlFAqRtBbrnHddoZmdJz16 +CbDxvhPganmg5qCtrrOHkVdXujIHoTar8HnfreHJkO24btg14ny8KiDeXXeA5iK n63UCimWQK7qiB4jofSp3MyzdD2KKCN7bHYsNwBSauUFej26RxutKM3erzKsubtK XzAcALSC961dfcK4E6CtGNz9sJJRRo27ySrMYXpeNg8Qi5vtqV9Urx7bY/U8Z0BJ KeqbUX8wR1z4qMPW7Ttvw94mzlqd2Aaf+ROycn1vq7D1YEu6ppUit5wXQArHKVjW x6Cx1onTc8VSW4+lo5Roj9vscgla5E1LKS2/zK10iwlcvlfoRXM= -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:49 2024 by rpki-client on console-fra.rpki-client.org