$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-0KH2ky6i8UZqepRH5C_KbIn57E.roa File: -0KH2ky6i8UZqepRH5C_KbIn57E.roa (raw, json) Hash identifier: 9W8CQKFQWO0MFtalotYJP2UDJ3nPUWGsn3sFYe9w5RY= Subject key identifier: FB:42:87:DA:4C:BA:8B:C5:19:A9:EA:51:1F:90:BF:29:B2:27:E7:B1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24C5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-0KH2ky6i8UZqepRH5C_KbIn57E.roa Signing time: Mon 10 Feb 2025 14:18:59 +0000 ROA not before: Mon 10 Feb 2025 14:18:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9413 (0x24c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:59 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FB4287DA4CBA8BC519A9EA511F90BF29B227E7B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:51:0c:17:01:a0:35:00:a9:e7:14:90:d6:09: 13:85:cb:dd:ae:46:08:95:62:18:d7:1f:c9:c3:ca: 9f:cf:db:52:2f:14:a2:cb:6e:32:90:9e:46:a3:51: 26:c9:37:fe:d3:30:c4:40:21:d9:ee:18:65:4f:af: 1c:7b:75:a0:4e:58:dd:95:72:87:13:2d:40:65:f4: 36:fe:aa:66:70:30:97:4a:dc:22:7a:d2:6d:79:51: ac:04:61:a9:c5:47:b3:5e:6e:3c:7d:25:17:5c:77: 94:db:49:16:a0:74:b9:bb:ba:6d:3a:a0:c1:5a:96: 8c:11:a6:77:63:bc:89:5e:7c:7a:f5:45:97:b7:42: 69:fc:fc:d4:97:91:3e:1b:d3:d3:da:29:d9:2c:80: f4:f3:a1:76:fa:1e:b5:a1:1e:21:75:4a:0f:d1:34: e4:c8:09:1a:91:b7:77:32:0b:95:ec:1d:d9:45:4d: a1:57:45:a1:58:96:e4:53:3a:a6:7f:be:cc:25:cc: 8b:80:68:94:44:18:28:d3:07:bb:ee:26:91:e4:53: 0e:36:db:31:8b:cf:44:c1:51:99:94:3f:79:be:76: f3:3d:f3:0d:72:db:21:0d:ad:c5:14:9b:79:ea:e0: 6e:8b:47:c9:d3:cf:41:66:36:f4:a9:63:98:4a:c8: 4e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:42:87:DA:4C:BA:8B:C5:19:A9:EA:51:1F:90:BF:29:B2:27:E7:B1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-0KH2ky6i8UZqepRH5C_KbIn57E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.0.0/20 Signature Algorithm: sha256WithRSAEncryption 00:71:57:41:57:95:f2:a8:41:13:7b:5b:ce:7d:78:e1:1c:46: 59:04:05:14:79:40:31:76:ac:86:58:0b:9b:bd:52:db:c5:f5: e6:7d:01:eb:b3:a6:2d:43:d9:b9:44:9b:24:d8:b8:76:27:6f: 8b:46:23:69:fe:8d:e1:98:22:99:11:a9:12:17:09:d4:15:6c: 43:6b:7d:69:1b:d8:69:76:bc:39:12:7c:49:22:36:92:f7:1a: 71:0e:d5:de:d2:6b:61:3b:e7:2f:e9:ba:00:3e:62:19:c0:b2: 66:c4:b7:d7:20:5f:0f:69:f7:c4:f0:3d:6a:02:6b:4d:dc:7e: 5b:98:c1:70:c3:e6:59:d8:a7:32:05:69:2a:de:e5:e0:16:66: b4:ad:40:aa:79:48:ea:eb:77:0f:f6:1b:7f:2d:04:1e:cd:47: 44:8f:d8:e7:79:de:44:ca:f0:57:b9:de:6e:ca:b6:c2:14:08: f7:bf:bc:fd:9d:41:7f:33:e5:13:07:be:1f:7f:4c:d6:ae:35: 98:50:32:62:f0:be:a5:fe:84:5a:dc:90:47:85:a8:81:11:d4: 96:75:74:73:13:b8:dc:da:fd:03:7d:c1:eb:18:b8:1c:fe:4d: b6:e1:02:a0:02:fd:88:b4:f7:ac:c7:1e:6b:b3:92:dc:28:56: 77:05:90:9c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJMUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZCNDI4N0RBNENCQThC QzUxOUE5RUE1MTFGOTBCRjI5QjIyN0U3QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAUQwXAaA1AKnnFJDWCROFy92uRgiVYhjXH8nDyp/P21IvFKLL bjKQnkajUSbJN/7TMMRAIdnuGGVPrxx7daBOWN2VcocTLUBl9Db+qmZwMJdK3CJ6 0m15UawEYanFR7Nebjx9JRdcd5TbSRagdLm7um06oMFalowRpndjvIlefHr1RZe3 Qmn8/NSXkT4b09PaKdksgPTzoXb6HrWhHiF1Sg/RNOTICRqRt3cyC5XsHdlFTaFX RaFYluRTOqZ/vswlzIuAaJREGCjTB7vuJpHkUw422zGLz0TBUZmUP3m+dvM98w1y 2yENrcUUm3nq4G6LR8nTz0FmNvSpY5hKyE57AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+0KH2ky6i8UZqepRH5C/KbIn57EwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULy0wS0gya3k2aThVWnFlcFJI NUNfS2JJbjU3RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx ngAwDQYJKoZIhvcNAQELBQADggEBAABxV0FXlfKoQRN7W859eOEcRlkEBRR5QDF2 rIZYC5u9UtvF9eZ9Aeuzpi1D2blEmyTYuHYnb4tGI2n+jeGYIpkRqRIXCdQVbENr fWkb2Gl2vDkSfEkiNpL3GnEO1d7Sa2E75y/pugA+YhnAsmbEt9cgXw9p98TwPWoC a03cfluYwXDD5lnYpzIFaSre5eAWZrStQKp5SOrrdw/2G38tBB7NR0SP2Od53kTK 8Fe53m7KtsIUCPe/vP2dQX8z5RMHvh9/TNauNZhQMmLwvqX+hFrckEeFqIER1JZ1 dHMTuNza/QN9wesYuBz+TbbhAqAC/Yi096zHHmuzktwoVncFkJw= -----END CERTIFICATE-----Generated at Fri Apr 18 16:51:35 2025 by rpki-client