$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tkPqIg--oqdTrkN-o9mi5gGeadE.roa File: tkPqIg--oqdTrkN-o9mi5gGeadE.roa (raw, json) Hash identifier: TBK6ItJuaJ+qmRdiEVdsGHU+thLR2743y5jHRzbTcqA= Subject key identifier: B6:43:EA:22:0F:BE:A2:A7:53:AE:43:7E:A3:D9:A2:E6:01:9E:69:D1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DF5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tkPqIg--oqdTrkN-o9mi5gGeadE.roa Signing time: Fri 01 Sep 2023 10:15:30 +0000 ROA not before: Fri 01 Sep 2023 10:15:30 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.159.80.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7669 (0x1df5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:30 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B643EA220FBEA2A753AE437EA3D9A2E6019E69D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:69:b7:30:7e:d2:17:e7:be:89:28:26:65:4e: f6:20:d1:57:12:ff:d0:04:16:4b:42:37:75:ee:4c: 3c:cd:35:7b:d5:ea:04:99:20:b9:1d:68:1c:39:77: e0:01:af:cc:f0:27:09:87:c5:bf:9b:f0:d1:2f:ec: fc:c3:51:71:4d:00:9b:c1:70:60:75:7e:0b:02:37: ef:3b:4a:e5:f0:59:eb:0c:63:73:b7:1e:ee:51:bb: e4:94:55:47:c0:bb:e0:87:ed:bd:54:d8:63:ca:f5: ee:3f:d5:29:0b:95:34:67:8d:aa:5f:16:e2:14:61: c3:13:cf:32:e8:97:52:ff:86:96:3c:5b:72:83:1f: 61:2e:d9:c7:c0:20:86:7d:85:5d:ec:74:58:06:e5: 39:2c:42:ac:49:59:83:6c:ac:57:72:80:e1:c1:4f: 21:4e:ad:e7:cb:12:44:ea:43:7e:b5:a3:f5:80:fd: d8:9d:8b:99:a4:1c:cf:57:e8:d6:74:82:9b:d3:55: 1d:8d:1b:ad:78:17:76:40:40:dd:92:98:52:2f:a2: 60:94:63:39:40:80:1a:d9:86:dd:7f:4a:b3:b1:e5: fc:27:50:31:3f:a9:47:2e:da:d1:5f:98:c3:21:bf: 82:e8:91:84:b2:ee:cb:d0:45:9f:ce:ca:82:98:90: da:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:43:EA:22:0F:BE:A2:A7:53:AE:43:7E:A3:D9:A2:E6:01:9E:69:D1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tkPqIg--oqdTrkN-o9mi5gGeadE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.80.0/20 Signature Algorithm: sha256WithRSAEncryption 3c:88:7d:5f:76:79:e5:8c:68:8f:e7:a1:9e:8b:73:a0:68:ae: 12:58:cc:ea:9b:c7:87:a0:e4:1d:36:8a:79:0d:29:1c:02:29: 49:a8:9b:fd:0b:da:6d:4a:37:7a:95:8e:75:17:a8:13:8e:2d: 18:7d:d5:43:46:57:75:dc:89:46:98:9a:b7:09:a1:d3:df:a2: 8d:83:03:df:27:d2:c8:ff:ff:51:ea:31:20:e1:80:d9:e0:e5: 10:3c:f0:58:d1:8b:d2:79:d8:fe:27:d1:e9:ef:b6:45:63:9e: c6:1d:94:60:71:69:1b:d2:30:73:8f:62:ef:5b:a2:01:81:23: 39:e1:9c:c7:fb:d0:2d:a4:0a:ee:f9:36:df:7f:ff:3c:09:31: b2:82:aa:c7:7f:e8:f3:e3:3f:08:cc:19:95:42:69:05:13:a9: 24:a2:b2:95:ce:a8:3b:a7:d2:ec:8a:9e:31:61:80:d9:72:b2: 3b:f1:c8:4b:5d:0d:f0:f2:a2:15:98:b6:53:6f:f3:68:ef:65: f2:5f:a2:ef:20:08:21:61:18:41:30:4f:4c:98:78:0e:c2:49: a9:0e:ba:5d:9b:75:56:87:c4:b4:ec:83:54:1e:6b:dd:61:43: 92:a7:b3:a6:89:dc:6a:54:e1:7b:d4:d3:7d:08:be:da:72:b0: 09:66:47:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHfUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MzBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI2NDNFQTIyMEZCRUEy QTc1M0FFNDM3RUEzRDlBMkU2MDE5RTY5RDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClabcwftIX576JKCZlTvYg0VcS/9AEFktCN3XuTDzNNXvV6gSZ ILkdaBw5d+ABr8zwJwmHxb+b8NEv7PzDUXFNAJvBcGB1fgsCN+87SuXwWesMY3O3 Hu5Ru+SUVUfAu+CH7b1U2GPK9e4/1SkLlTRnjapfFuIUYcMTzzLol1L/hpY8W3KD H2Eu2cfAIIZ9hV3sdFgG5TksQqxJWYNsrFdygOHBTyFOrefLEkTqQ361o/WA/did i5mkHM9X6NZ0gpvTVR2NG614F3ZAQN2SmFIvomCUYzlAgBrZht1/SrOx5fwnUDE/ qUcu2tFfmMMhv4LokYSy7svQRZ/OyoKYkNpPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtkPqIg++oqdTrkN+o9mi5gGeadEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3RrUHFJZy0tb3FkVHJrTi1v OW1pNWdHZWFkRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx n1AwDQYJKoZIhvcNAQELBQADggEBADyIfV92eeWMaI/noZ6Lc6BorhJYzOqbx4eg 5B02inkNKRwCKUmom/0L2m1KN3qVjnUXqBOOLRh91UNGV3XciUaYmrcJodPfoo2D A98n0sj//1HqMSDhgNng5RA88FjRi9J52P4n0envtkVjnsYdlGBxaRvSMHOPYu9b ogGBIznhnMf70C2kCu75Nt9//zwJMbKCqsd/6PPjPwjMGZVCaQUTqSSispXOqDun 0uyKnjFhgNlysjvxyEtdDfDyohWYtlNv82jvZfJfou8gCCFhGEEwT0yYeA7CSakO ul2bdVaHxLTsg1Qea91hQ5Kns6aJ3GpU4XvU030IvtpysAlmR0g= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:04 2024 by rpki-client on console-ams.rpki-client.org