$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0QlvBA8QtIWOKijqlzJ4YYsEXIw.roa File: 0QlvBA8QtIWOKijqlzJ4YYsEXIw.roa (raw, json) Hash identifier: IpYb15ZTRSR8r/L2wj8vxL6FdYp2UnuvYZWWV5P2tIk= Subject key identifier: D1:09:6F:04:0F:10:B4:85:8E:2A:28:EA:97:32:78:61:8B:04:5C:8C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 243D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0QlvBA8QtIWOKijqlzJ4YYsEXIw.roa Signing time: Mon 10 Feb 2025 14:18:25 +0000 ROA not before: Mon 10 Feb 2025 14:18:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 115.165.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9277 (0x243d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D1096F040F10B4858E2A28EA973278618B045C8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:a2:98:ba:da:a4:49:31:4d:3a:c7:28:1e:a4: 5e:ee:b6:cd:f3:a3:4c:f1:ab:c9:8e:14:01:fd:6c: 2c:51:c0:a4:72:b3:33:a1:29:19:2b:a7:3a:99:9c: 78:63:fc:8c:e5:93:b7:8e:f7:75:25:f8:46:0f:b3: cb:bf:81:8d:3b:70:d5:81:f5:cb:3f:15:05:15:78: 2b:2d:86:ef:86:6c:fb:7b:ec:33:8e:17:89:ea:61: c3:68:c6:67:b5:66:3c:cf:7b:0d:ed:f8:cf:a6:53: 3e:8b:6d:a8:2c:ec:b6:e7:1f:71:ca:92:41:3c:55: 76:dc:27:5d:4a:dc:98:0b:b5:93:a9:85:98:c1:4f: fe:1e:df:f0:f9:04:7a:bf:c1:e1:c8:5d:56:56:df: bf:24:fe:15:2e:dd:81:e4:51:fd:40:e1:b2:b5:b0: ea:c2:b2:eb:9b:0f:75:71:b9:6d:f8:fa:83:d1:4a: ef:27:68:f6:dd:50:f2:c0:43:2c:5e:19:af:7d:68: 5b:1f:bd:ac:53:bb:13:50:ab:c1:aa:d7:37:31:a8: e9:8b:12:36:c2:42:b9:8c:bd:fa:16:9f:03:92:3b: 07:46:9d:da:5a:8c:3e:a9:cd:89:06:42:b4:74:bc: f3:db:80:46:4a:37:22:4a:34:cf:7c:a9:a4:f3:6a: 92:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:09:6F:04:0F:10:B4:85:8E:2A:28:EA:97:32:78:61:8B:04:5C:8C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0QlvBA8QtIWOKijqlzJ4YYsEXIw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.165.192.0/18 Signature Algorithm: sha256WithRSAEncryption 90:92:28:b0:a5:89:4f:92:7f:a9:9b:2d:8a:3e:5d:49:cc:02: 36:32:52:a2:95:b2:5f:f1:b3:5e:74:3c:03:a6:9d:77:09:6f: 5a:ef:22:6c:15:53:41:5c:f8:bf:d5:91:4b:03:d5:5c:66:c4: 6d:46:14:11:41:d0:61:96:73:34:b9:93:d3:e6:92:a6:fa:c7: c9:42:7c:c4:e5:33:9a:3c:1b:41:20:8a:8a:d0:0b:da:6a:8b: e6:b2:59:e9:79:55:7b:59:dc:4a:71:c5:1d:92:86:86:3c:30: 0b:bb:4d:c2:45:37:98:03:70:fc:26:98:34:3b:55:b5:58:0f: 4d:d0:41:64:c8:a0:0d:19:a9:57:3b:4b:d8:91:cf:ae:2f:ee: 29:35:88:e4:c6:6f:7a:7e:d8:12:d9:42:aa:bd:cb:c6:59:9c: dc:5a:87:8e:0e:7c:f5:bb:70:0e:41:f9:db:f8:f0:7f:70:52: fe:9d:ab:b9:a8:1d:bc:ec:02:d2:b7:60:17:0c:6e:e5:89:97: d4:d7:c4:90:76:ba:87:68:cf:7e:e0:88:55:27:51:52:cc:ca: 8e:6b:b2:83:c2:e2:de:8d:55:81:85:4a:55:56:b3:60:4e:72: 9b:93:fd:1d:40:de:aa:d6:d7:7d:e0:50:95:a2:0e:8d:4a:d6: 63:1e:c5:8f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJD0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQxMDk2RjA0MEYxMEI0 ODU4RTJBMjhFQTk3MzI3ODYxOEIwNDVDOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCSopi62qRJMU06xygepF7uts3zo0zxq8mOFAH9bCxRwKRyszOh KRkrpzqZnHhj/Izlk7eO93Ul+EYPs8u/gY07cNWB9cs/FQUVeCsthu+GbPt77DOO F4nqYcNoxme1ZjzPew3t+M+mUz6Lbags7LbnH3HKkkE8VXbcJ11K3JgLtZOphZjB T/4e3/D5BHq/weHIXVZW378k/hUu3YHkUf1A4bK1sOrCsuubD3VxuW34+oPRSu8n aPbdUPLAQyxeGa99aFsfvaxTuxNQq8Gq1zcxqOmLEjbCQrmMvfoWnwOSOwdGndpa jD6pzYkGQrR0vPPbgEZKNyJKNM98qaTzapLbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0QlvBA8QtIWOKijqlzJ4YYsEXIwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBRbHZCQThRdElXT0tpanFs eko0WVlzRVhJdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZz pcAwDQYJKoZIhvcNAQELBQADggEBAJCSKLCliU+Sf6mbLYo+XUnMAjYyUqKVsl/x s150PAOmnXcJb1rvImwVU0Fc+L/VkUsD1VxmxG1GFBFB0GGWczS5k9Pmkqb6x8lC fMTlM5o8G0EgiorQC9pqi+ayWel5VXtZ3EpxxR2ShoY8MAu7TcJFN5gDcPwmmDQ7 VbVYD03QQWTIoA0ZqVc7S9iRz64v7ik1iOTGb3p+2BLZQqq9y8ZZnNxah44OfPW7 cA5B+dv48H9wUv6dq7moHbzsAtK3YBcMbuWJl9TXxJB2uodoz37giFUnUVLMyo5r soPC4t6NVYGFSlVWs2BOcpuT/R1A3qrW133gUJWiDo1K1mMexY8= -----END CERTIFICATE-----Generated at Fri Apr 18 16:43:14 2025 by rpki-client