$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tNtiD4jf_QS-48J5GRD7_EHrjAY.roa File: tNtiD4jf_QS-48J5GRD7_EHrjAY.roa (raw, json) Hash identifier: CRy2prg2TZNmaAG1AQ4sPIbTDCKLc/5nanad7mOMlr8= Subject key identifier: B4:DB:62:0F:88:DF:FD:04:BE:E3:C2:79:19:10:FB:FC:41:EB:8C:06 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DA1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tNtiD4jf_QS-48J5GRD7_EHrjAY.roa Signing time: Fri 01 Sep 2023 10:15:05 +0000 ROA not before: Fri 01 Sep 2023 10:15:05 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.159.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7585 (0x1da1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:05 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B4DB620F88DFFD04BEE3C2791910FBFC41EB8C06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4e:f9:0e:27:a7:17:62:a3:a1:61:89:c5:d9: 3a:76:18:d8:43:58:b5:3c:59:32:d0:8f:70:1f:b1: 7c:ea:ab:38:d6:96:31:6f:ea:85:f2:95:19:fc:d6: 49:72:89:b7:c3:3d:46:8f:c6:8f:25:10:47:a6:4c: 0b:e9:69:d4:e3:03:b6:10:40:71:40:1a:63:da:19: 18:39:4d:54:1a:fa:d6:df:2a:10:67:6d:09:db:9f: 57:cd:7c:9b:c7:ee:20:9b:38:d6:ec:4a:22:7d:bc: fa:37:3e:9c:aa:2c:f1:1c:2b:cb:79:f3:ba:f0:74: 4a:65:f3:e5:99:cd:a7:2a:4a:56:9c:7c:74:ba:67: f7:c5:89:de:ee:28:1f:86:b2:17:69:5a:a5:1e:af: 4b:d6:9e:76:a6:57:9b:c5:be:e3:9b:9d:e0:06:74: 9a:e1:6e:21:09:7d:bf:39:c5:d8:b8:a2:db:35:0f: 27:82:54:33:33:45:c6:59:fc:c4:0f:37:36:98:f2: 42:a5:1e:5a:95:a0:2e:04:5f:cf:e1:99:3e:a8:70: 46:3b:d1:a4:03:d9:05:3b:6d:9a:80:dc:c5:fe:94: a4:14:8d:63:b6:bd:ca:b1:55:26:a6:4d:29:62:e2: 6e:d0:c7:c5:a5:bd:7b:18:f4:65:4e:ea:c1:1c:05: 51:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:DB:62:0F:88:DF:FD:04:BE:E3:C2:79:19:10:FB:FC:41:EB:8C:06 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tNtiD4jf_QS-48J5GRD7_EHrjAY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.48.0/21 Signature Algorithm: sha256WithRSAEncryption 50:12:a7:5f:29:c0:8d:fa:da:22:09:18:cb:e8:c6:c7:21:57: 54:cc:ad:4a:13:eb:2a:c3:dd:e9:b2:08:59:4e:c5:29:25:b2: a0:89:82:3f:14:6a:c9:3a:71:56:bb:0d:0e:99:1a:f4:ff:9d: 7a:4a:0a:46:f1:d1:35:c4:09:9d:79:fb:49:fd:68:56:ea:39: c0:d1:77:bc:b7:69:f0:6a:a5:8b:bb:5b:e8:2c:97:3f:1b:b5: 62:a7:cd:b7:e8:24:19:4f:86:83:0c:9b:82:13:37:6d:2d:bf: 79:40:bc:b9:fa:b4:62:f7:d9:c7:0b:a0:5a:27:4c:d0:2d:cc: 5b:ac:37:81:9b:3f:9e:34:28:0f:74:8c:4a:3f:a8:7d:5b:60: 1a:a7:a8:55:34:9e:90:5e:2a:0e:d2:6f:8e:8e:5f:64:20:57: 6c:3a:80:45:7b:9d:9a:4f:54:ad:02:6f:56:ff:66:d7:1f:b2: fa:bc:27:bf:f7:0d:21:70:4c:c7:28:a8:b8:6c:1a:f2:a6:94: 9f:84:f4:f3:ad:75:5c:c7:a0:f3:5c:05:c0:4f:c4:92:5d:cc: cb:24:79:91:72:2f:aa:89:8e:71:bc:9e:77:ee:46:11:89:39: 5a:c0:ac:ec:0f:b1:90:91:af:fa:c1:db:75:05:6e:69:ef:da: da:e7:83:03 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHaEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI0REI2MjBGODhERkZE MDRCRUUzQzI3OTE5MTBGQkZDNDFFQjhDMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5TvkOJ6cXYqOhYYnF2Tp2GNhDWLU8WTLQj3AfsXzqqzjWljFv 6oXylRn81klyibfDPUaPxo8lEEemTAvpadTjA7YQQHFAGmPaGRg5TVQa+tbfKhBn bQnbn1fNfJvH7iCbONbsSiJ9vPo3PpyqLPEcK8t587rwdEpl8+WZzacqSlacfHS6 Z/fFid7uKB+GshdpWqUer0vWnnamV5vFvuObneAGdJrhbiEJfb85xdi4ots1DyeC VDMzRcZZ/MQPNzaY8kKlHlqVoC4EX8/hmT6ocEY70aQD2QU7bZqA3MX+lKQUjWO2 vcqxVSamTSli4m7Qx8WlvXsY9GVO6sEcBVEfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtNtiD4jf/QS+48J5GRD7/EHrjAYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3ROdGlENGpmX1FTLTQ4SjVH UkQ3X0VIcmpBWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nzAwDQYJKoZIhvcNAQELBQADggEBAFASp18pwI362iIJGMvoxschV1TMrUoT6yrD 3emyCFlOxSklsqCJgj8Uask6cVa7DQ6ZGvT/nXpKCkbx0TXECZ15+0n9aFbqOcDR d7y3afBqpYu7W+gslz8btWKnzbfoJBlPhoMMm4ITN20tv3lAvLn6tGL32ccLoFon TNAtzFusN4GbP540KA90jEo/qH1bYBqnqFU0npBeKg7Sb46OX2QgV2w6gEV7nZpP VK0Cb1b/Ztcfsvq8J7/3DSFwTMcoqLhsGvKmlJ+E9POtdVzHoPNcBcBPxJJdzMsk eZFyL6qJjnG8nnfuRhGJOVrArOwPsZCRr/rB23UFbmnv2trngwM= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:08 2024 by rpki-client on console-fra.rpki-client.org