$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-_hXFLtdpPjJvOif1PZqStb1Af0.roa File: -_hXFLtdpPjJvOif1PZqStb1Af0.roa (raw, json) Hash identifier: mWZCQLl6zSGNagdDgbWIx3S55JVB4LdSrYGdcklPXpc= Subject key identifier: FB:F8:57:14:BB:5D:A4:F8:C9:BC:E8:9F:D4:F6:6A:4A:D6:F5:01:FD Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2433 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-_hXFLtdpPjJvOif1PZqStb1Af0.roa Signing time: Mon 10 Feb 2025 14:18:23 +0000 ROA not before: Mon 10 Feb 2025 14:18:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9267 (0x2433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:23 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FBF85714BB5DA4F8C9BCE89FD4F66A4AD6F501FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9d:21:49:c1:19:51:de:41:d9:ca:eb:fa:a6: 03:d1:a1:b5:86:bc:8d:33:98:72:e7:a4:a4:fb:d4: f5:1c:28:db:f6:5e:f1:6e:e8:af:24:af:9d:a7:1e: 8c:75:80:a4:21:e0:d7:51:f4:c7:e9:b6:8e:cf:ee: a7:37:b5:c1:e6:21:f5:71:38:14:1c:1b:d0:5b:36: 14:67:a2:e4:67:c5:aa:a4:44:98:fc:d9:6f:b5:89: ff:f9:19:cb:9e:af:e9:ce:c2:1a:3d:38:22:49:e3: ec:bc:1a:9e:88:6c:13:26:28:a6:f1:ee:a4:b4:3e: 8b:9e:14:0c:74:da:94:3e:46:ea:94:90:42:2c:36: 45:f3:1f:96:58:e8:a5:d7:f7:80:d9:fc:1f:63:d5: 3b:c2:01:c7:7e:6a:43:e3:47:5c:f6:4d:40:97:b8: 51:6a:a5:25:64:9e:07:f4:5e:77:9f:93:7c:dd:14: 8d:4c:69:34:e2:df:00:78:fa:cc:5b:19:97:94:3c: 34:74:dc:c7:3e:9b:85:d3:22:37:1b:5c:43:25:ed: 4a:fc:81:f4:cc:72:9d:bf:8e:10:df:48:2a:d5:e3: 8a:67:41:d8:79:f6:ce:75:39:a7:09:76:c7:40:d8: 2b:a9:b7:50:27:61:55:80:ab:cd:0a:8f:ba:f4:bf: 98:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F8:57:14:BB:5D:A4:F8:C9:BC:E8:9F:D4:F6:6A:4A:D6:F5:01:FD X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-_hXFLtdpPjJvOif1PZqStb1Af0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.100.0/22 Signature Algorithm: sha256WithRSAEncryption 46:ae:cd:bd:48:32:81:0a:d6:46:2d:06:9d:fe:61:37:bd:ff: 06:33:97:3b:fb:9e:86:b3:0a:ae:09:0d:d8:b3:92:49:32:30: 49:79:93:14:bf:04:5a:34:1e:4c:c9:21:83:86:05:fc:c8:7f: 1a:78:58:72:f3:64:4d:89:ce:92:55:bf:d9:f5:3a:77:e0:a6: 0e:79:4f:ce:91:39:7a:c8:09:a6:bf:7e:9f:8e:5b:f3:26:8a: 13:61:f1:56:5e:58:a5:51:93:5a:51:92:e9:ed:e6:11:c4:f0: 53:28:7d:2d:91:66:6f:bc:5b:4a:20:ca:e5:c9:70:ec:b4:4f: 5a:54:b0:de:b2:4d:99:6c:82:86:97:78:c7:3b:9a:44:36:36: 82:cd:dd:9f:de:0c:e4:04:a8:3b:46:3b:17:66:af:b9:6e:cd: 25:a9:ce:d9:8c:dc:48:ad:3a:c2:60:bb:7d:dc:90:d6:39:c5: c8:85:82:ad:86:6b:12:c4:f4:b0:e8:e4:da:29:90:36:32:80: 7a:bd:bf:71:8b:00:5f:e4:fc:16:36:7a:a6:83:6d:5f:2c:cc: c4:1e:35:c3:39:d8:7d:10:9e:16:db:c2:17:8e:2e:61:ec:ab: 8d:97:e7:96:ac:aa:f3:61:6f:3c:2c:9c:91:2f:54:46:9f:4d: b9:96:56:68 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJDMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZCRjg1NzE0QkI1REE0 RjhDOUJDRTg5RkQ0RjY2QTRBRDZGNTAxRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLnSFJwRlR3kHZyuv6pgPRobWGvI0zmHLnpKT71PUcKNv2XvFu 6K8kr52nHox1gKQh4NdR9Mfpto7P7qc3tcHmIfVxOBQcG9BbNhRnouRnxaqkRJj8 2W+1if/5Gcuer+nOwho9OCJJ4+y8Gp6IbBMmKKbx7qS0PoueFAx02pQ+RuqUkEIs NkXzH5ZY6KXX94DZ/B9j1TvCAcd+akPjR1z2TUCXuFFqpSVkngf0Xnefk3zdFI1M aTTi3wB4+sxbGZeUPDR03Mc+m4XTIjcbXEMl7Ur8gfTMcp2/jhDfSCrV44pnQdh5 9s51OacJdsdA2Cupt1AnYVWAq80Kj7r0v5jXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+/hXFLtdpPjJvOif1PZqStb1Af0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULy1faFhGTHRkcFBqSnZPaWYx UFpxU3RiMUFmMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nmQwDQYJKoZIhvcNAQELBQADggEBAEauzb1IMoEK1kYtBp3+YTe9/wYzlzv7noaz Cq4JDdizkkkyMEl5kxS/BFo0HkzJIYOGBfzIfxp4WHLzZE2JzpJVv9n1Onfgpg55 T86ROXrICaa/fp+OW/MmihNh8VZeWKVRk1pRkunt5hHE8FMofS2RZm+8W0ogyuXJ cOy0T1pUsN6yTZlsgoaXeMc7mkQ2NoLN3Z/eDOQEqDtGOxdmr7luzSWpztmM3Eit OsJgu33ckNY5xciFgq2GaxLE9LDo5NopkDYygHq9v3GLAF/k/BY2eqaDbV8szMQe NcM52H0QnhbbwheOLmHsq42X55asqvNhbzwsnJEvVEafTbmWVmg= -----END CERTIFICATE-----Generated at Thu Apr 17 21:02:53 2025 by rpki-client