$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/UJvy_vfUTtDg943N80OKttZQbqs.roa File: UJvy_vfUTtDg943N80OKttZQbqs.roa (raw, json) Hash identifier: /TlF7qSyl34B0gPmXaV8tkzYOCDI41VLDq5aSRIXzSU= Subject key identifier: 50:9B:F2:FE:F7:D4:4E:D0:E0:F7:8D:CD:F3:43:8A:B6:D6:50:6E:AB Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1731 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UJvy_vfUTtDg943N80OKttZQbqs.roa Signing time: Wed 12 Feb 2025 01:36:29 +0000 ROA not before: Wed 12 Feb 2025 01:36:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9680 IP address blocks: 2001:b000:90::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5937 (0x1731) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=509BF2FEF7D44ED0E0F78DCDF3438AB6D6506EAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ea:91:b2:65:84:10:fa:a3:c8:49:08:92:4e: 0b:29:54:84:56:b3:b0:cc:14:d6:d0:19:1d:ac:ab: fa:08:c5:8c:04:0d:17:66:e2:52:9d:61:bd:e4:67: 60:dd:92:d7:cc:3e:12:00:39:6d:6a:29:54:bd:4f: 36:39:06:c5:7d:a1:76:4e:f4:02:46:7f:0c:3b:3f: 5a:20:73:6e:96:6b:70:6e:46:5d:36:e4:e6:27:16: bf:77:57:28:7e:cf:64:18:a3:87:33:74:26:dd:22: ad:65:f3:c5:79:6e:b1:73:db:70:1a:c0:e0:8e:56: 9c:53:cf:a9:c5:eb:f7:ee:b2:cc:c9:99:a4:9b:b0: f3:08:fa:63:b6:f9:22:a6:0c:cc:b9:ca:fa:9d:2f: 00:94:24:66:0c:f6:5b:1f:52:9b:0e:41:4c:87:62: 77:88:27:30:b7:e8:25:39:bb:d7:c4:8f:90:46:26: 87:b9:e6:3b:37:78:a4:d9:9b:d9:fe:62:78:42:e1: e5:01:c4:a8:4b:66:4c:8c:3d:4d:90:63:f3:a2:47: 6e:e4:0d:b6:39:a4:79:0b:1b:8d:e5:c6:8d:57:c8: c8:71:ac:ae:d1:5f:de:73:ea:6d:8a:31:b7:2f:7c: 47:04:e8:f9:45:aa:02:15:83:20:05:4b:fb:89:bf: 3f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:9B:F2:FE:F7:D4:4E:D0:E0:F7:8D:CD:F3:43:8A:B6:D6:50:6E:AB X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UJvy_vfUTtDg943N80OKttZQbqs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:90::/48 Signature Algorithm: sha256WithRSAEncryption b2:df:ae:ee:13:1f:8c:f2:be:1a:ea:08:f7:5d:12:73:75:b1: 99:4f:71:f7:41:f5:ee:4e:fa:8b:1e:fb:52:52:b0:f1:e9:a0: f0:97:7f:62:96:c9:ef:3d:e2:16:9d:69:ac:2a:8a:95:4b:20: 14:fa:d3:8e:61:53:cd:f9:ae:4e:c5:12:e8:1b:3a:5b:ca:cc: 1e:de:bc:91:b4:22:e5:e4:84:72:7f:d8:e0:7f:e1:11:2e:f7: fe:b1:57:e7:ab:74:da:3d:41:c7:c4:9a:c4:80:de:2f:11:17: 7c:05:ef:37:c0:c0:8c:8f:4d:50:20:49:66:ac:f5:3c:76:b5: b0:7c:3d:4e:6d:1b:6b:8a:2b:0f:ab:1d:e5:ec:62:89:20:37: 1e:dc:33:b5:76:48:b7:b9:55:77:2a:66:06:45:27:16:af:8a: 80:59:a2:46:15:d2:c7:98:90:d4:b6:cd:a5:91:2c:e8:15:b9: 0b:6d:db:83:c3:05:c7:d4:12:9f:f6:d0:69:90:79:b9:ae:23: f2:25:e2:62:85:08:64:c7:61:f3:92:26:9b:3d:81:1e:03:e5: 0c:92:f5:11:37:97:42:d6:76:56:b0:84:0a:2d:d7:b3:d3:d8: 10:ae:38:ff:0e:c9:58:5c:ce:0e:56:80:70:e9:93:f9:d5:48: c6:76:4e:01 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICFzEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwOUJGMkZFRjdENDRF RDBFMEY3OERDREYzNDM4QUI2RDY1MDZFQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCl6pGyZYQQ+qPISQiSTgspVIRWs7DMFNbQGR2sq/oIxYwEDRdm 4lKdYb3kZ2DdktfMPhIAOW1qKVS9TzY5BsV9oXZO9AJGfww7P1ogc26Wa3BuRl02 5OYnFr93Vyh+z2QYo4czdCbdIq1l88V5brFz23AawOCOVpxTz6nF6/fusszJmaSb sPMI+mO2+SKmDMy5yvqdLwCUJGYM9lsfUpsOQUyHYneIJzC36CU5u9fEj5BGJoe5 5js3eKTZm9n+YnhC4eUBxKhLZkyMPU2QY/OiR27kDbY5pHkLG43lxo1XyMhxrK7R X95z6m2KMbcvfEcE6PlFqgIVgyAFS/uJvz+fAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUUJvy/vfUTtDg943N80OKttZQbqswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9VSnZ5X3ZmVVR0RGc5NDNOODBP S3R0WlFicXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw AACQMA0GCSqGSIb3DQEBCwUAA4IBAQCy367uEx+M8r4a6gj3XRJzdbGZT3H3QfXu TvqLHvtSUrDx6aDwl39ilsnvPeIWnWmsKoqVSyAU+tOOYVPN+a5OxRLoGzpbyswe 3ryRtCLl5IRyf9jgf+ERLvf+sVfnq3TaPUHHxJrEgN4vERd8Be83wMCMj01QIElm rPU8drWwfD1ObRtriisPqx3l7GKJIDce3DO1dki3uVV3KmYGRScWr4qAWaJGFdLH mJDUts2lkSzoFbkLbduDwwXH1BKf9tBpkHm5riPyJeJihQhkx2HzkiabPYEeA+UM kvURN5dC1nZWsIQKLdez09gQrjj/DslYXM4OVoBw6ZP51UjGdk4B -----END CERTIFICATE-----Generated at Mon Apr 7 17:47:58 2025 by rpki-client