$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oyBkE5w8baO9nC2YQ8eadEuUJi8.roa File: oyBkE5w8baO9nC2YQ8eadEuUJi8.roa (raw, json) Hash identifier: 84Ijnul4xxAFPub6XEiWn6k4lNaj93lwKIAOXOh1m5c= Subject key identifier: A3:20:64:13:9C:3C:6D:A3:BD:9C:2D:98:43:C7:9A:74:4B:94:26:2F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E67 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oyBkE5w8baO9nC2YQ8eadEuUJi8.roa Signing time: Fri 01 Sep 2023 10:16:00 +0000 ROA not before: Fri 01 Sep 2023 10:16:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 180.218.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7783 (0x1e67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:00 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A32064139C3C6DA3BD9C2D9843C79A744B94262F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f9:45:36:eb:a0:ec:4c:a3:e4:e8:d8:0a:e7: 0f:50:2c:8c:e6:a3:b8:c5:65:97:07:ff:9a:b6:b4: 72:90:cc:09:55:6d:5c:d6:68:12:35:c5:0c:e3:2d: 6c:d2:2f:d8:ab:11:3b:31:31:74:2f:7b:66:e5:cc: 36:44:c8:f0:07:a6:73:ed:c6:e9:89:5b:6f:9b:d8: 3f:64:b3:16:e7:23:b5:00:ef:03:a4:1c:08:8f:ef: 92:00:c3:1b:d5:39:62:8a:07:f1:9f:2a:46:cf:e7: d3:de:65:c1:02:7a:de:aa:6d:81:51:20:53:64:9e: 7e:27:8a:c2:71:9e:90:95:82:90:ef:6e:49:89:9b: ec:39:be:db:bb:2d:33:95:bc:6a:1a:c6:c3:f2:b3: c1:e5:92:b1:24:65:c7:80:08:eb:a0:78:4f:25:4d: 75:9a:e6:54:54:7a:5a:df:2c:82:5c:3d:f1:8b:81: d4:53:5e:5e:a6:62:06:f4:1b:e3:b3:4f:ec:68:6a: 01:e2:9d:b9:4b:2d:38:fb:b1:02:61:d7:d3:66:1a: e9:f1:3a:f8:6c:22:c6:72:84:bd:09:26:84:bf:ca: e1:89:a9:fc:1e:8a:99:04:f1:f2:00:4b:33:16:13: df:ac:9a:bd:25:0f:a6:32:2d:74:8b:a7:1b:33:bc: b7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:20:64:13:9C:3C:6D:A3:BD:9C:2D:98:43:C7:9A:74:4B:94:26:2F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oyBkE5w8baO9nC2YQ8eadEuUJi8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.64.0/21 Signature Algorithm: sha256WithRSAEncryption 62:b8:66:f8:49:00:24:ad:c8:1f:a1:20:79:2a:4e:37:9c:8e: 1e:63:ac:55:3d:d7:88:72:ed:38:47:01:0b:d7:0a:65:55:7d: a4:15:b0:e2:28:b6:dc:20:30:4d:7d:20:4a:d9:5f:85:10:24: 3e:b0:4e:5e:9d:4c:f2:32:5b:df:a2:f6:3d:aa:92:66:c1:c6: 17:9c:b9:57:7e:3c:48:69:53:33:d1:a1:2f:63:85:23:7d:d3: 9f:bc:0b:9b:9b:99:f3:5b:f7:cf:d1:8a:e9:27:f5:85:d8:00: 17:6f:a0:41:46:d4:47:91:d2:92:ce:79:8d:8f:bf:ba:27:84: df:e0:19:98:dc:0c:09:0d:6f:03:38:7b:a9:70:3a:6a:cf:10: 2f:38:7b:b5:2f:f4:56:47:68:6e:2b:53:96:39:72:e9:da:34: 5c:fd:45:cf:61:9f:47:fc:07:95:d4:fb:b5:58:4c:e9:e0:14: 87:f7:4a:c5:04:e9:5f:46:28:88:53:ce:88:16:eb:10:3d:eb: 06:b2:f9:51:0f:b2:6e:f8:f3:6b:99:21:be:b0:96:9c:f8:09: 54:a9:9e:e5:42:1d:e1:93:18:44:cb:0d:e5:98:62:90:15:ac: f0:d9:36:2e:4c:55:77:4c:0a:a1:04:b7:74:75:f0:86:56:48: e3:6c:67:11 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHmcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEEzMjA2NDEzOUMzQzZE QTNCRDlDMkQ5ODQzQzc5QTc0NEI5NDI2MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0+UU266DsTKPk6NgK5w9QLIzmo7jFZZcH/5q2tHKQzAlVbVzW aBI1xQzjLWzSL9irETsxMXQve2blzDZEyPAHpnPtxumJW2+b2D9ksxbnI7UA7wOk HAiP75IAwxvVOWKKB/GfKkbP59PeZcECet6qbYFRIFNknn4nisJxnpCVgpDvbkmJ m+w5vtu7LTOVvGoaxsPys8HlkrEkZceACOugeE8lTXWa5lRUelrfLIJcPfGLgdRT Xl6mYgb0G+OzT+xoagHinblLLTj7sQJh19NmGunxOvhsIsZyhL0JJoS/yuGJqfwe ipkE8fIASzMWE9+smr0lD6YyLXSLpxszvLcfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUoyBkE5w8baO9nC2YQ8eadEuUJi8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL295QmtFNXc4YmFPOW5DMllR OGVhZEV1VUppOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2kAwDQYJKoZIhvcNAQELBQADggEBAGK4ZvhJACStyB+hIHkqTjecjh5jrFU914hy 7ThHAQvXCmVVfaQVsOIottwgME19IErZX4UQJD6wTl6dTPIyW9+i9j2qkmbBxhec uVd+PEhpUzPRoS9jhSN905+8C5ubmfNb98/Riukn9YXYABdvoEFG1EeR0pLOeY2P v7onhN/gGZjcDAkNbwM4e6lwOmrPEC84e7Uv9FZHaG4rU5Y5cunaNFz9Rc9hn0f8 B5XU+7VYTOngFIf3SsUE6V9GKIhTzogW6xA96way+VEPsm7482uZIb6wlpz4CVSp nuVCHeGTGETLDeWYYpAVrPDZNi5MVXdMCqEEt3R18IZWSONsZxE= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:04 2024 by rpki-client on console-ams.rpki-client.org