$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ofGl2s6p4lznA2CfKFsPcmeQ3fg.roa File: ofGl2s6p4lznA2CfKFsPcmeQ3fg.roa (raw, json) Hash identifier: hBP5e4zr8mjG3rJ6JulR3KwH0C2D97G7C85pGWCM3OU= Subject key identifier: A1:F1:A5:DA:CE:A9:E2:5C:E7:03:60:9F:28:5B:0F:72:67:90:DD:F8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E1D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ofGl2s6p4lznA2CfKFsPcmeQ3fg.roa Signing time: Fri 01 Sep 2023 10:15:41 +0000 ROA not before: Fri 01 Sep 2023 10:15:41 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.158.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7709 (0x1e1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:41 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A1F1A5DACEA9E25CE703609F285B0F726790DDF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:14:15:cb:19:03:f0:43:7e:e8:68:ab:44:86: bd:4e:13:23:58:81:0e:b8:70:48:1f:fb:99:f0:73: e3:4b:07:a5:df:9e:1b:ff:09:dc:70:2a:fe:e6:80: 90:9c:e0:04:40:6d:c8:5d:0a:8c:fb:ea:bd:f8:f9: 8d:73:13:69:2e:ff:d3:c6:12:e6:d4:16:e6:be:d7: 18:dd:6a:5c:f7:e7:0a:44:2e:0a:9e:98:60:e0:27: b7:37:f1:8a:47:1e:2e:30:87:b3:81:03:fa:1a:c1: bf:77:15:18:59:3f:62:e3:04:b3:c8:66:6d:9b:ad: 88:b9:41:00:a1:f4:85:41:dd:cc:04:38:46:e6:4c: c2:6b:4f:15:17:c1:28:b9:df:23:c4:4a:ae:28:3d: ca:26:70:64:d7:b8:a3:b8:06:74:1e:d8:5a:a7:63: b8:05:a2:ad:65:b4:f2:52:8d:35:0b:0e:2a:ef:e4: 3b:e3:d2:45:e5:a5:96:aa:82:63:d6:a7:c3:3a:f4: 9c:b5:17:b1:8d:4d:72:65:81:ad:82:98:f1:74:07: a8:2e:2c:6b:35:e6:0c:71:29:85:22:e4:22:08:65: 9f:57:b9:3b:a7:67:0e:7e:18:1e:00:37:a7:7c:e0: 53:25:73:09:1a:ac:49:cd:ed:38:dd:07:7e:81:a1: d3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F1:A5:DA:CE:A9:E2:5C:E7:03:60:9F:28:5B:0F:72:67:90:DD:F8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ofGl2s6p4lznA2CfKFsPcmeQ3fg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.124.0/22 Signature Algorithm: sha256WithRSAEncryption 33:f7:0a:43:0e:10:7f:af:62:1d:60:2c:e0:d2:5b:7f:06:6f: 22:04:85:06:f8:22:ee:1c:f3:8c:69:9b:80:75:aa:f5:9b:95: b1:e3:8e:11:b1:48:7e:14:6e:96:ad:85:85:a0:4c:8c:a7:5e: c0:4f:48:7c:1a:1c:2b:b7:57:16:f9:87:1f:07:07:16:23:dd: c0:22:89:00:ca:c9:a1:5d:9a:aa:2e:d6:fa:35:30:58:4d:cc: 23:44:b6:df:ad:ea:47:85:af:ad:09:bd:26:48:00:b8:2c:ff: 21:e6:60:25:9f:09:b7:ca:3e:dd:51:14:b3:6f:e2:44:12:8e: ad:30:c8:27:29:4d:a3:78:2e:08:80:d5:44:4a:7a:ba:4b:4e: c6:d8:68:87:9b:d9:1c:23:72:86:e9:47:4b:14:eb:ae:57:f0: bf:f6:ab:12:0b:a3:c3:f6:33:73:1a:b2:4e:d6:f9:9b:df:ad: 41:b6:5e:5a:5d:12:5a:2b:ee:a4:14:22:0f:2a:38:ec:8a:f6: 89:42:d6:7c:3f:ae:2d:e0:93:e3:11:15:83:cb:4d:50:ab:3b: 98:89:f8:20:fd:b6:1d:b3:e8:92:24:60:3f:51:fe:d8:42:9b: c8:dc:40:25:87:9d:1c:35:50:a7:3a:59:12:6c:8b:5d:07:27: ac:75:7e:22 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHh0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEExRjFBNURBQ0VBOUUy NUNFNzAzNjA5RjI4NUIwRjcyNjc5MERERjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxFBXLGQPwQ37oaKtEhr1OEyNYgQ64cEgf+5nwc+NLB6Xfnhv/ CdxwKv7mgJCc4ARAbchdCoz76r34+Y1zE2ku/9PGEubUFua+1xjdalz35wpELgqe mGDgJ7c38YpHHi4wh7OBA/oawb93FRhZP2LjBLPIZm2brYi5QQCh9IVB3cwEOEbm TMJrTxUXwSi53yPESq4oPcomcGTXuKO4BnQe2FqnY7gFoq1ltPJSjTULDirv5Dvj 0kXlpZaqgmPWp8M69Jy1F7GNTXJlga2CmPF0B6guLGs15gxxKYUi5CIIZZ9XuTun Zw5+GB4AN6d84FMlcwkarEnN7TjdB36BodONAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUofGl2s6p4lznA2CfKFsPcmeQ3fgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL29mR2wyczZwNGx6bkEyQ2ZL RnNQY21lUTNmZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nnwwDQYJKoZIhvcNAQELBQADggEBADP3CkMOEH+vYh1gLODSW38GbyIEhQb4Iu4c 84xpm4B1qvWblbHjjhGxSH4UbpathYWgTIynXsBPSHwaHCu3Vxb5hx8HBxYj3cAi iQDKyaFdmqou1vo1MFhNzCNEtt+t6keFr60JvSZIALgs/yHmYCWfCbfKPt1RFLNv 4kQSjq0wyCcpTaN4LgiA1URKerpLTsbYaIeb2RwjcobpR0sU665X8L/2qxILo8P2 M3Mask7W+ZvfrUG2XlpdElor7qQUIg8qOOyK9olC1nw/ri3gk+MRFYPLTVCrO5iJ +CD9th2z6JIkYD9R/thCm8jcQCWHnRw1UKc6WRJsi10HJ6x1fiI= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:08 2024 by rpki-client on console-fra.rpki-client.org