$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-Kd0Xrgz0NfRl-ScB2gJ0mdEEQE.roa File: -Kd0Xrgz0NfRl-ScB2gJ0mdEEQE.roa (raw, json) Hash identifier: 4JA/n/v8LlQ2iCCUg0F/txMXGRkNrjWsoXFSZSyHG90= Subject key identifier: F8:A7:74:5E:B8:33:D0:D7:D1:97:E4:9C:07:68:09:D2:67:44:11:01 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23FD Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-Kd0Xrgz0NfRl-ScB2gJ0mdEEQE.roa Signing time: Mon 10 Feb 2025 14:18:09 +0000 ROA not before: Mon 10 Feb 2025 14:18:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 61.61.209.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9213 (0x23fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:09 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F8A7745EB833D0D7D197E49C076809D267441101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:55:dd:3e:9a:62:3d:20:4b:03:02:3c:5a:bc: a5:2f:89:cb:f9:6f:32:31:62:10:87:34:1b:d2:ed: c2:c9:6d:c2:fb:c7:2e:46:e1:e9:01:56:d9:0f:90: 48:73:8c:ce:53:c8:40:d9:ff:9a:bc:6d:de:b7:df: 19:50:fc:c4:e7:6d:1d:9e:a0:89:26:92:7a:f0:da: 11:b5:97:09:ed:b6:ed:05:7c:e8:49:65:0a:c0:d8: ca:f1:7c:03:0d:fa:9e:ea:fa:6d:ef:0e:a5:c0:f0: b7:18:0a:2e:95:69:32:34:b0:6c:5a:90:12:cb:e9: 7c:07:f0:59:f2:a6:18:56:01:ba:b2:0c:78:a6:ea: b5:07:44:ad:6d:3e:15:d4:74:3c:9f:99:bd:28:32: 12:24:f4:97:72:aa:42:6c:41:da:6a:c1:9b:7c:d4: 26:03:7a:18:0b:2b:c4:73:63:74:ac:84:3d:cb:c4: 99:d4:c0:39:c4:c0:79:57:a3:f6:83:1b:c0:a2:10: 12:95:66:a7:0b:f1:54:ef:b4:4b:e6:4c:03:d3:47: 61:e0:13:e2:d4:65:2c:3a:81:a1:89:6f:84:05:ff: 40:43:cb:d7:55:69:21:14:11:24:07:ad:a3:18:d2: ce:bc:25:5b:2d:50:6a:08:03:08:27:e3:a7:4e:8c: bf:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A7:74:5E:B8:33:D0:D7:D1:97:E4:9C:07:68:09:D2:67:44:11:01 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-Kd0Xrgz0NfRl-ScB2gJ0mdEEQE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.209.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:89:54:2d:1d:9c:0f:6d:d0:ac:a6:19:8e:8e:da:27:52:af: 0f:9f:e0:99:de:ee:90:ab:75:4f:bf:54:29:83:ae:2e:79:93: 17:81:b9:f8:cf:4c:1c:d1:2a:5e:d8:bc:f6:34:bc:a9:d5:8e: 11:95:11:de:81:fc:48:e8:6f:36:6a:ea:45:ef:62:4d:f8:25: f8:81:37:e1:04:60:a6:5e:de:ed:4f:ec:aa:66:3e:20:a6:e9: 18:4d:27:20:0c:22:a9:24:37:66:44:05:ef:32:56:e0:90:4b: 45:9f:81:ed:3c:f2:57:4c:7a:70:db:63:28:e6:e9:ce:fc:bb: 1c:55:9b:4b:d0:b1:86:82:af:2e:46:b0:72:62:f9:c4:a7:73: 97:71:cc:e2:c5:9a:7c:60:6e:74:50:d9:24:41:12:6e:23:3b: 4b:c8:57:9b:5a:d1:99:80:71:4a:b1:dc:1c:dc:c0:fa:46:4d: 77:8b:58:2a:e1:fe:d1:c4:2e:de:93:c4:37:d5:ae:56:c0:03: df:90:f5:0b:08:16:89:5c:be:73:11:4a:03:d0:cf:e7:da:f5: b0:fa:9d:ef:0d:70:8d:b8:c5:92:dd:f5:47:bb:ac:15:d9:b2: f8:66:b2:5c:ac:f9:8a:7b:0b:61:9c:8c:09:f1:49:5a:fd:b9: 9e:f4:f3:a6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI/0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4QTc3NDVFQjgzM0Qw RDdEMTk3RTQ5QzA3NjgwOUQyNjc0NDExMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqVd0+mmI9IEsDAjxavKUvicv5bzIxYhCHNBvS7cLJbcL7xy5G 4ekBVtkPkEhzjM5TyEDZ/5q8bd633xlQ/MTnbR2eoIkmknrw2hG1lwnttu0FfOhJ ZQrA2MrxfAMN+p7q+m3vDqXA8LcYCi6VaTI0sGxakBLL6XwH8FnyphhWAbqyDHim 6rUHRK1tPhXUdDyfmb0oMhIk9JdyqkJsQdpqwZt81CYDehgLK8RzY3SshD3LxJnU wDnEwHlXo/aDG8CiEBKVZqcL8VTvtEvmTAPTR2HgE+LUZSw6gaGJb4QF/0BDy9dV aSEUESQHraMY0s68JVstUGoIAwgn46dOjL+pAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+Kd0Xrgz0NfRl+ScB2gJ0mdEEQEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULy1LZDBYcmd6ME5mUmwtU2NC MmdKMG1kRUVRRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 PdEwDQYJKoZIhvcNAQELBQADggEBABuJVC0dnA9t0KymGY6O2idSrw+f4Jne7pCr dU+/VCmDri55kxeBufjPTBzRKl7YvPY0vKnVjhGVEd6B/EjobzZq6kXvYk34JfiB N+EEYKZe3u1P7KpmPiCm6RhNJyAMIqkkN2ZEBe8yVuCQS0Wfge088ldMenDbYyjm 6c78uxxVm0vQsYaCry5GsHJi+cSnc5dxzOLFmnxgbnRQ2SRBEm4jO0vIV5ta0ZmA cUqx3BzcwPpGTXeLWCrh/tHELt6TxDfVrlbAA9+Q9QsIFolcvnMRSgPQz+fa9bD6 ne8NcI24xZLd9Ue7rBXZsvhmslys+Yp7C2GcjAnxSVr9uZ7086Y= -----END CERTIFICATE-----Generated at Thu Apr 17 21:04:51 2025 by rpki-client