$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nTuqjQnxP5B2L_9xKxJM4G5UwOU.roa File: nTuqjQnxP5B2L_9xKxJM4G5UwOU.roa (raw, json) Hash identifier: SYRlZfwRNMClnkAj9smjQZUgM+tsGwQHaukwJvLvWyY= Subject key identifier: 9D:3B:AA:8D:09:F1:3F:90:76:2F:FF:71:2B:12:4C:E0:6E:54:C0:E5 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E9A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nTuqjQnxP5B2L_9xKxJM4G5UwOU.roa Signing time: Fri 01 Sep 2023 10:16:15 +0000 ROA not before: Fri 01 Sep 2023 10:16:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24165 IP address blocks: 122.254.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7834 (0x1e9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9D3BAA8D09F13F90762FFF712B124CE06E54C0E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2d:32:1c:de:2e:e7:43:42:e5:40:e4:fa:8b: b3:30:9b:8b:ec:78:8d:69:dd:83:b0:eb:43:e9:8e: f3:d0:7a:66:40:c3:6c:e1:7e:8b:3c:42:f6:af:53: ee:a5:9e:3e:f5:52:eb:5c:e2:54:47:e3:b0:23:22: 4c:af:2e:51:fd:05:8a:31:95:20:04:71:4a:5f:f1: 03:8f:37:6c:eb:2e:d4:d2:e2:97:75:81:bf:d0:84: 41:73:6b:75:4d:eb:5d:9f:d8:2b:39:cc:57:9e:3d: bb:2e:f7:1f:f3:e2:80:b4:bf:3f:db:b6:4a:a0:e4: c6:1c:8a:5d:aa:1c:40:a8:7b:6f:4d:5a:72:d8:f4: 15:31:b4:5c:09:0b:e0:ef:5c:ea:fb:cf:15:56:ab: 20:ac:22:e5:8a:c1:e1:23:20:b8:e0:0c:a8:a0:6b: 30:45:59:34:1c:09:94:e6:44:16:b0:98:a9:3b:78: 03:08:13:f9:f3:62:da:7e:0c:1f:04:bc:58:e3:bc: 97:66:d2:f1:82:d0:2a:1e:2b:34:ba:95:24:66:7c: 9b:eb:49:fa:fb:10:49:78:09:81:9f:22:94:1c:44: 99:02:07:5c:16:9e:0b:66:61:d6:75:93:ee:b2:bd: cc:90:fd:99:39:a3:65:57:00:96:59:89:b9:a5:56: e3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:3B:AA:8D:09:F1:3F:90:76:2F:FF:71:2B:12:4C:E0:6E:54:C0:E5 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nTuqjQnxP5B2L_9xKxJM4G5UwOU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.0.0/21 Signature Algorithm: sha256WithRSAEncryption 78:4c:a7:68:d4:6e:51:a2:4e:62:e2:6d:0b:75:20:cf:b3:01: ba:95:b9:a8:c4:23:8d:55:da:d8:36:1e:05:2d:0e:f4:7c:22: 97:3e:d3:a9:89:e9:0c:d5:2b:e1:b8:dc:bf:95:2e:fa:ee:dc: 71:d8:3d:d5:59:58:d6:4d:48:d6:80:44:02:28:a7:c1:3d:f9: 6a:a1:54:0f:8d:15:19:73:5c:5b:e9:0c:a6:c6:da:bf:e4:75: 4c:18:9c:23:e7:0e:30:f9:68:2d:23:52:49:d1:e8:b2:c5:28: d5:55:c2:4b:5e:1a:24:88:2a:3b:8d:45:dd:f6:4c:a5:d4:8a: 7c:a5:70:5a:f9:f5:5c:ed:90:10:1d:16:78:54:93:b5:6f:0f: 3a:e8:5b:75:44:ba:77:2b:46:6e:6c:f4:69:df:8c:5f:6d:38: b6:65:97:5c:fd:e0:27:d6:6a:3c:f1:91:a0:0a:3a:20:75:10: dd:25:1c:e3:ba:6b:80:b0:dd:d1:32:73:c4:5b:c5:69:4a:e0: bf:d6:68:cf:f9:3e:15:cc:9a:03:bd:d7:53:27:20:f2:4d:53: a9:ca:06:5d:34:e8:45:c9:9b:05:10:a8:36:e9:ff:66:45:d5: d5:d3:88:b6:01:72:24:73:1e:0f:2e:8c:43:44:04:1b:54:8e: 09:44:e1:ce -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHpowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlEM0JBQThEMDlGMTNG OTA3NjJGRkY3MTJCMTI0Q0UwNkU1NEMwRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsLTIc3i7nQ0LlQOT6i7Mwm4vseI1p3YOw60PpjvPQemZAw2zh fos8QvavU+6lnj71Uutc4lRH47AjIkyvLlH9BYoxlSAEcUpf8QOPN2zrLtTS4pd1 gb/QhEFza3VN612f2Cs5zFeePbsu9x/z4oC0vz/btkqg5MYcil2qHECoe29NWnLY 9BUxtFwJC+DvXOr7zxVWqyCsIuWKweEjILjgDKigazBFWTQcCZTmRBawmKk7eAMI E/nzYtp+DB8EvFjjvJdm0vGC0CoeKzS6lSRmfJvrSfr7EEl4CYGfIpQcRJkCB1wW ngtmYdZ1k+6yvcyQ/Zk5o2VXAJZZibmlVuOXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUnTuqjQnxP5B2L/9xKxJM4G5UwOUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL25UdXFqUW54UDVCMkxfOXhL eEpNNEc1VXdPVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 /gAwDQYJKoZIhvcNAQELBQADggEBAHhMp2jUblGiTmLibQt1IM+zAbqVuajEI41V 2tg2HgUtDvR8Ipc+06mJ6QzVK+G43L+VLvru3HHYPdVZWNZNSNaARAIop8E9+Wqh VA+NFRlzXFvpDKbG2r/kdUwYnCPnDjD5aC0jUknR6LLFKNVVwkteGiSIKjuNRd32 TKXUinylcFr59VztkBAdFnhUk7VvDzroW3VEuncrRm5s9GnfjF9tOLZll1z94CfW ajzxkaAKOiB1EN0lHOO6a4Cw3dEyc8RbxWlK4L/WaM/5PhXMmgO911MnIPJNU6nK Bl006EXJmwUQqDbp/2ZF1dXTiLYBciRzHg8ujENEBBtUjglE4c4= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:04 2024 by rpki-client on console-ams.rpki-client.org