$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/riprpMlDkyONhGwCvMMLVE_h5Bw.roa File: riprpMlDkyONhGwCvMMLVE_h5Bw.roa (raw, json) Hash identifier: OrKgCLbmzxbQiGQvx3falFvRxagS+pVECB8ofxx0Z6Q= Subject key identifier: AE:2A:6B:A4:C9:43:93:23:8D:84:6C:02:BC:C3:0B:54:4F:E1:E4:1C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DEA Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/riprpMlDkyONhGwCvMMLVE_h5Bw.roa Signing time: Fri 01 Sep 2023 10:15:27 +0000 ROA not before: Fri 01 Sep 2023 10:15:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4662 IP address blocks: 61.60.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7658 (0x1dea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:27 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AE2A6BA4C94393238D846C02BCC30B544FE1E41C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5e:29:6a:46:ba:53:29:c5:41:ed:dd:fd:e8: 84:29:7a:99:5a:b4:99:cc:de:a5:da:6d:7b:f8:b4: c3:4a:6f:1a:90:14:e4:a8:4e:55:24:f2:91:54:e4: 8c:0b:99:e5:f8:2d:3a:22:28:45:31:43:b8:98:ef: fe:95:ab:c1:89:f9:39:8d:d7:1b:9d:84:6c:2d:2f: 0c:b4:b5:90:46:20:72:ca:51:4b:d6:ad:a7:d4:d0: 18:bf:10:b8:c0:dd:50:03:5d:b9:6d:8f:a1:d9:9b: ec:c8:96:85:93:af:09:d0:6f:f5:2b:3f:5f:fa:e7: 75:e1:98:90:26:7d:e5:88:3f:a6:a4:f2:c8:02:3b: 0a:52:54:63:21:eb:2b:57:82:18:3b:d2:bc:60:7c: 28:71:6a:3c:a4:01:0e:29:c4:60:6f:84:f9:1e:65: 6a:54:e6:21:21:18:3c:3a:35:27:25:18:be:8d:8e: 60:e5:8b:1a:c7:24:53:4f:66:34:6d:49:20:40:a7: 6c:41:4a:41:e8:fc:44:5c:84:e7:f6:01:52:62:85: 53:fa:c5:55:a1:87:c8:4d:82:9d:8d:e7:c0:39:22: 72:b4:f0:09:d7:3a:12:e4:ea:69:0e:06:55:18:2f: 69:2f:34:dc:c9:80:8d:f3:f1:bd:b7:50:cd:23:06: 93:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:2A:6B:A4:C9:43:93:23:8D:84:6C:02:BC:C3:0B:54:4F:E1:E4:1C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/riprpMlDkyONhGwCvMMLVE_h5Bw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.208.0/20 Signature Algorithm: sha256WithRSAEncryption 51:1a:d2:fd:e7:76:7d:13:02:e2:6e:e4:17:f1:80:0a:ca:5e: ec:3f:94:a4:64:ee:a2:69:f1:13:b5:d6:ed:fb:64:c1:a4:66: 9e:31:b3:02:39:8d:98:5d:ea:87:cc:61:81:52:6d:2f:33:ec: 76:ad:dc:2b:1b:19:80:7a:c1:cc:d9:d8:e3:ba:8c:e6:0d:28: 65:d2:9f:be:b3:9a:c7:c8:0c:e0:25:58:7f:aa:6c:39:7c:b4: 27:b6:44:0e:1e:b6:c0:ac:dc:ae:84:e3:e5:ba:15:7c:e8:dc: aa:44:cd:47:b9:3c:33:86:c9:bd:18:b2:a5:78:b8:06:18:a1: 48:1f:b4:5c:97:cc:8b:b8:0f:f9:8d:4d:ca:3f:cd:7a:f2:77: 94:de:e1:4d:31:fb:4a:73:28:bf:a4:67:dc:c9:71:67:2d:0f: 40:41:90:76:76:00:23:f2:73:c0:41:d5:92:47:6a:ab:ca:f8: 53:76:b8:64:91:dd:b6:86:55:b5:bd:ac:41:d1:51:30:c9:18: ab:c5:07:46:e4:4e:dd:32:e0:f1:cd:e3:cc:18:f4:87:6d:4a: a9:af:42:3f:cc:6b:8e:29:97:10:60:14:55:e8:6f:f1:34:b6: da:0c:ed:e8:2c:f8:4a:af:63:57:f8:c2:70:eb:96:70:3e:ea: f8:da:a7:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHeowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFFMkE2QkE0Qzk0Mzkz MjM4RDg0NkMwMkJDQzMwQjU0NEZFMUU0MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwXilqRrpTKcVB7d396IQpeplatJnM3qXabXv4tMNKbxqQFOSo TlUk8pFU5IwLmeX4LToiKEUxQ7iY7/6Vq8GJ+TmN1xudhGwtLwy0tZBGIHLKUUvW rafU0Bi/ELjA3VADXbltj6HZm+zIloWTrwnQb/UrP1/653XhmJAmfeWIP6ak8sgC OwpSVGMh6ytXghg70rxgfChxajykAQ4pxGBvhPkeZWpU5iEhGDw6NSclGL6NjmDl ixrHJFNPZjRtSSBAp2xBSkHo/ERchOf2AVJihVP6xVWhh8hNgp2N58A5InK08AnX OhLk6mkOBlUYL2kvNNzJgI3z8b23UM0jBpM1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUriprpMlDkyONhGwCvMMLVE/h5BwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3JpcHJwTWxEa3lPTmhHd0N2 TU1MVkVfaDVCdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 PNAwDQYJKoZIhvcNAQELBQADggEBAFEa0v3ndn0TAuJu5BfxgArKXuw/lKRk7qJp 8RO11u37ZMGkZp4xswI5jZhd6ofMYYFSbS8z7Hat3CsbGYB6wczZ2OO6jOYNKGXS n76zmsfIDOAlWH+qbDl8tCe2RA4etsCs3K6E4+W6FXzo3KpEzUe5PDOGyb0YsqV4 uAYYoUgftFyXzIu4D/mNTco/zXryd5Te4U0x+0pzKL+kZ9zJcWctD0BBkHZ2ACPy c8BB1ZJHaqvK+FN2uGSR3baGVbW9rEHRUTDJGKvFB0bkTt0y4PHN48wY9IdtSqmv Qj/Ma44plxBgFFXob/E0ttoM7egs+EqvY1f4wnDrlnA+6vjap5Y= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:04 2024 by rpki-client on console-ams.rpki-client.org