$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ou3jM0WAJux3cvrwiwJzH16oTlU.roa File: ou3jM0WAJux3cvrwiwJzH16oTlU.roa (raw, json) Hash identifier: z1BskmJK72AaWm5iX0B6gw64is9TkWYlsQJZtEygYhY= Subject key identifier: A2:ED:E3:33:45:80:26:EC:77:72:FA:F0:8B:02:73:1F:5E:A8:4E:55 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1F45 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ou3jM0WAJux3cvrwiwJzH16oTlU.roa Signing time: Tue 30 Jan 2024 09:04:05 +0000 ROA not before: Tue 30 Jan 2024 09:04:05 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 61.64.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8005 (0x1f45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Jan 30 09:04:05 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A2EDE333458026EC7772FAF08B02731F5EA84E55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4c:93:54:38:fa:a1:c5:54:4a:f1:69:53:cb: 9b:ca:14:4e:a2:70:ae:f5:2f:a1:ec:76:d1:af:1d: ae:3e:4e:8d:d5:11:a0:2d:91:49:ee:41:b0:df:d1: 6a:9d:8c:21:b6:2b:2d:67:eb:75:be:8d:a5:43:59: 92:8f:2f:13:c4:36:78:27:e6:0b:59:f8:5e:83:7c: 1d:a5:8c:bc:3a:3a:d5:bd:5d:1a:93:fd:7d:35:f2: c0:8a:1f:d6:40:66:9c:5d:88:27:d6:6d:74:9f:53: d4:96:d1:de:2b:22:61:66:42:d0:fe:3b:62:db:ce: 57:b4:56:9f:78:de:c7:04:0c:8f:ac:67:18:cc:e1: c1:31:bd:97:14:6d:04:50:d7:00:aa:ee:16:aa:73: d4:6c:a6:c0:33:76:34:e5:be:ba:80:0b:85:f7:08: 44:92:fe:57:ec:39:7e:c3:3f:03:9e:85:83:75:b1: cc:ce:27:cd:41:60:5a:bb:ad:21:91:c6:27:46:c1: 9d:6f:bb:e9:c6:7e:40:8e:88:b1:9b:7c:4b:12:df: f1:bc:8e:d5:55:60:3f:df:9e:64:4d:a4:77:63:7c: 06:34:c3:b8:ef:41:ba:de:f8:58:fd:74:b5:5a:66: 09:4d:47:b7:49:d9:b4:bf:f8:3a:4d:3e:da:9a:1b: f7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:ED:E3:33:45:80:26:EC:77:72:FA:F0:8B:02:73:1F:5E:A8:4E:55 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ou3jM0WAJux3cvrwiwJzH16oTlU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.0.0/19 Signature Algorithm: sha256WithRSAEncryption 10:0f:f6:7b:5e:23:e0:33:e2:5f:2f:f9:27:c0:93:1f:e8:c9: 70:a3:74:11:cf:f2:5c:57:08:b5:d8:48:1c:45:90:31:ef:00: 50:19:fe:89:48:70:78:2f:ed:24:44:33:84:aa:8e:24:45:14: 84:40:d2:17:58:0a:a1:a5:b7:c2:27:ff:bb:cc:4c:85:18:95: 06:1c:e6:b3:55:57:ec:3d:a7:22:7b:4b:81:b9:f8:35:b0:12: eb:0d:f2:99:93:e2:fb:c9:4f:13:6a:13:b1:f3:8f:e5:23:30: b2:f6:50:66:a0:29:a2:11:b0:30:34:89:dd:73:1e:5a:b8:39: 15:09:9e:aa:3d:38:0e:6f:bc:31:2c:8e:99:60:05:63:e1:46: ec:a0:74:18:28:95:2f:bb:c2:c3:01:ac:bd:9d:1a:e2:71:ce: 75:96:12:76:6f:89:68:65:73:47:ab:05:e5:a9:97:fe:81:58: 8d:a6:4a:3d:51:73:57:cd:bb:1e:a9:a9:b6:9e:24:1a:a9:7b: 17:2f:c7:5b:a4:00:7c:b8:56:8c:57:9a:ec:43:5d:a3:c6:d0: 0b:e0:06:5f:0b:0e:e9:85:d9:53:e6:a0:06:b7:a8:4b:0a:bb: 7a:54:c1:ed:cf:85:4f:1c:ad:f6:f0:d0:10:44:35:6f:21:41: e6:2d:83:39 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICH0UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDAxMzAw OTA0MDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEEyRURFMzMzNDU4MDI2 RUM3NzcyRkFGMDhCMDI3MzFGNUVBODRFNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmTJNUOPqhxVRK8WlTy5vKFE6icK71L6HsdtGvHa4+To3VEaAt kUnuQbDf0WqdjCG2Ky1n63W+jaVDWZKPLxPENngn5gtZ+F6DfB2ljLw6OtW9XRqT /X018sCKH9ZAZpxdiCfWbXSfU9SW0d4rImFmQtD+O2Lbzle0Vp943scEDI+sZxjM 4cExvZcUbQRQ1wCq7haqc9RspsAzdjTlvrqAC4X3CESS/lfsOX7DPwOehYN1sczO J81BYFq7rSGRxidGwZ1vu+nGfkCOiLGbfEsS3/G8jtVVYD/fnmRNpHdjfAY0w7jv Qbre+Fj9dLVaZglNR7dJ2bS/+DpNPtqaG/eJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUou3jM0WAJux3cvrwiwJzH16oTlUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL291M2pNMFdBSnV4M2N2cndp d0p6SDE2b1RsVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU9 QAAwDQYJKoZIhvcNAQELBQADggEBABAP9nteI+Az4l8v+SfAkx/oyXCjdBHP8lxX CLXYSBxFkDHvAFAZ/olIcHgv7SREM4SqjiRFFIRA0hdYCqGlt8In/7vMTIUYlQYc 5rNVV+w9pyJ7S4G5+DWwEusN8pmT4vvJTxNqE7Hzj+UjMLL2UGagKaIRsDA0id1z Hlq4ORUJnqo9OA5vvDEsjplgBWPhRuygdBgolS+7wsMBrL2dGuJxznWWEnZviWhl c0erBeWpl/6BWI2mSj1Rc1fNux6pqbaeJBqpexcvx1ukAHy4VoxXmuxDXaPG0Avg Bl8LDumF2VPmoAa3qEsKu3pUwe3PhU8crfbw0BBENW8hQeYtgzk= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:08 2024 by rpki-client on console-fra.rpki-client.org