$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0fkDMVo9UZHtqwNhPf3RuSfRrQU.roa File: 0fkDMVo9UZHtqwNhPf3RuSfRrQU.roa (raw, json) Hash identifier: aB4moVD4paeT4Fy1u0oVd1XAq2vcq3i0rh6wU6WcPNU= Subject key identifier: D1:F9:03:31:5A:3D:51:91:ED:AB:03:61:3D:FD:D1:B9:27:D1:AD:05 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 241B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0fkDMVo9UZHtqwNhPf3RuSfRrQU.roa Signing time: Mon 10 Feb 2025 14:18:16 +0000 ROA not before: Mon 10 Feb 2025 14:18:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 122.254.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9243 (0x241b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D1F903315A3D5191EDAB03613DFDD1B927D1AD05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1e:0b:f3:06:5c:d0:71:72:13:2f:1c:d3:78: 01:b1:d3:14:4a:7a:b0:72:8d:a8:c6:76:59:36:f3: 8d:4a:fe:d7:5f:e2:16:f3:5f:28:24:ae:aa:11:c4: cf:b3:27:40:d6:fe:8b:6a:4e:00:cc:18:10:af:9f: 00:c7:d4:e6:4c:ab:11:77:fc:bb:92:da:66:ae:e2: 92:34:dd:15:6b:13:7d:64:c8:a9:bd:e2:98:c9:51: 58:97:93:ee:ec:72:c1:3a:13:b5:21:36:13:e4:40: d0:12:46:10:cc:8b:43:b5:60:52:2f:d5:f7:23:e8: 51:49:bb:ff:b7:d2:e4:03:bb:fa:0b:0c:77:bc:04: 8a:28:94:97:dc:c6:22:f4:7a:0b:a3:1d:38:8a:54: 8d:ea:3d:63:17:44:9a:09:73:01:a8:d5:7c:2a:08: ac:1c:14:8f:70:4d:64:cd:a5:fd:63:24:11:a6:19: 13:75:6e:01:64:1f:b6:6d:97:ab:5d:13:49:e5:8d: 03:41:2f:fd:1a:02:8f:8f:2b:04:f8:24:0b:b2:a3: 03:e5:a5:61:9c:4d:8b:8c:93:20:d7:25:60:77:76: f0:7f:9c:42:7d:05:f2:09:b3:61:3d:d1:04:89:5d: 6d:8b:a2:50:9c:e5:ae:e9:64:fa:9f:be:85:a0:8c: 22:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F9:03:31:5A:3D:51:91:ED:AB:03:61:3D:FD:D1:B9:27:D1:AD:05 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0fkDMVo9UZHtqwNhPf3RuSfRrQU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.48.0/21 Signature Algorithm: sha256WithRSAEncryption 94:d5:85:15:42:d7:9c:d1:5d:07:7c:bf:98:9a:0a:a9:90:47: f8:b1:9a:85:b3:d8:9c:f6:ee:4e:1c:49:68:94:50:bb:8f:0a: 9e:ed:bc:91:0e:d0:17:31:21:ff:49:dd:cf:a2:ae:80:b8:00: a7:f3:24:8a:a7:92:3c:bf:8f:e2:02:57:a7:41:8a:ac:61:d8: 91:f1:ee:81:4d:d8:c3:98:18:5f:58:75:4a:35:07:26:9b:6f: 40:74:c9:cd:4b:9c:ba:5b:6c:95:e5:34:7d:d4:a8:38:0c:6d: a1:aa:43:9f:6e:df:ca:82:68:8a:81:17:72:2f:96:c8:3d:c1: 7a:92:06:9d:41:b1:9b:e7:ab:56:6b:c5:4b:f8:e9:e1:41:c5: e4:be:da:56:4a:74:41:c5:92:54:f3:fc:59:0c:55:00:98:1c: ec:74:d5:b4:b4:b3:f3:06:ab:9a:79:3e:ee:3b:34:f3:e6:74: b3:ec:4e:0f:10:29:5c:9d:64:74:3c:3d:48:f7:94:fe:59:10: 54:3f:20:a3:10:2e:b9:a2:b7:a8:6e:89:5b:88:54:42:2d:1e: 45:e2:0b:d7:4c:87:7d:a3:59:1f:58:dc:ce:6a:a6:b1:0b:1e: 3e:19:70:de:ca:b1:59:19:ee:9c:4e:68:94:7b:82:9d:5e:40: b3:a7:f5:14 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJBswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQxRjkwMzMxNUEzRDUx OTFFREFCMDM2MTNERkREMUI5MjdEMUFEMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWHgvzBlzQcXITLxzTeAGx0xRKerByjajGdlk2841K/tdf4hbz XygkrqoRxM+zJ0DW/otqTgDMGBCvnwDH1OZMqxF3/LuS2mau4pI03RVrE31kyKm9 4pjJUViXk+7scsE6E7UhNhPkQNASRhDMi0O1YFIv1fcj6FFJu/+30uQDu/oLDHe8 BIoolJfcxiL0egujHTiKVI3qPWMXRJoJcwGo1XwqCKwcFI9wTWTNpf1jJBGmGRN1 bgFkH7Ztl6tdE0nljQNBL/0aAo+PKwT4JAuyowPlpWGcTYuMkyDXJWB3dvB/nEJ9 BfIJs2E90QSJXW2LolCc5a7pZPqfvoWgjCLnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0fkDMVo9UZHtqwNhPf3RuSfRrQUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBma0RNVm85VVpIdHF3TmhQ ZjNSdVNmUnJRVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 /jAwDQYJKoZIhvcNAQELBQADggEBAJTVhRVC15zRXQd8v5iaCqmQR/ixmoWz2Jz2 7k4cSWiUULuPCp7tvJEO0BcxIf9J3c+iroC4AKfzJIqnkjy/j+ICV6dBiqxh2JHx 7oFN2MOYGF9YdUo1Byabb0B0yc1LnLpbbJXlNH3UqDgMbaGqQ59u38qCaIqBF3Iv lsg9wXqSBp1BsZvnq1ZrxUv46eFBxeS+2lZKdEHFklTz/FkMVQCYHOx01bS0s/MG q5p5Pu47NPPmdLPsTg8QKVydZHQ8PUj3lP5ZEFQ/IKMQLrmit6huiVuIVEItHkXi C9dMh32jWR9Y3M5qprELHj4ZcN7KsVkZ7pxOaJR7gp1eQLOn9RQ= -----END CERTIFICATE-----Generated at Fri Apr 18 16:30:52 2025 by rpki-client