$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0kE035sYR5qB7vPOqHaERW3ci2k.roa File: 0kE035sYR5qB7vPOqHaERW3ci2k.roa (raw, json) Hash identifier: r7HXv0OvzBFgl13XjKD9bU73fEPnaPpflpxbVJ2H0Qs= Subject key identifier: D2:41:34:DF:9B:18:47:9A:81:EE:F3:CE:A8:76:84:45:6D:DC:8B:69 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 241A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0kE035sYR5qB7vPOqHaERW3ci2k.roa Signing time: Mon 10 Feb 2025 14:18:16 +0000 ROA not before: Mon 10 Feb 2025 14:18:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9242 (0x241a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D24134DF9B18479A81EEF3CEA87684456DDC8B69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:bd:ec:9c:09:d4:d3:94:09:24:f4:3d:56:34: 94:b3:13:7f:0f:46:fe:da:9d:cd:2d:84:44:73:0d: eb:64:3c:93:83:a7:8a:b5:ec:da:47:90:68:53:c5: 68:2c:d0:5b:9c:83:fe:e6:d2:57:82:b0:32:d6:9a: af:69:9f:d2:fc:37:86:1e:16:99:ca:3b:c8:64:38: fd:df:c7:37:9c:61:81:0a:01:03:64:09:de:38:51: 25:93:47:91:c5:01:dd:5e:4a:ad:f7:a9:69:75:59: 79:31:5c:1d:42:88:79:f9:47:03:ad:f6:43:e0:60: c6:53:22:9c:92:76:8d:91:af:57:b6:b3:9f:7e:f6: 99:56:ec:36:6a:a2:43:cf:ca:c1:ce:9d:df:92:95: ad:46:85:7b:e3:75:46:c8:9a:29:dd:7e:fe:d2:fb: dd:c3:5c:de:10:0c:6f:af:73:c3:89:5e:6e:40:82: 6a:59:6f:0e:b6:46:73:0c:4d:31:d1:7e:6b:2b:3c: b8:f9:2d:9c:93:66:03:a0:8f:7c:9a:72:4a:0f:f3: 34:c6:12:be:4e:ff:97:0c:dc:b8:ef:ef:1a:66:8f: f7:9b:06:2d:43:a3:93:b9:ef:91:ca:a5:25:83:a0: fb:6e:a1:b3:b8:bc:83:d0:7f:80:3e:c1:7c:7b:ac: f1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:41:34:DF:9B:18:47:9A:81:EE:F3:CE:A8:76:84:45:6D:DC:8B:69 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0kE035sYR5qB7vPOqHaERW3ci2k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.132.0/23 Signature Algorithm: sha256WithRSAEncryption 24:fe:10:12:e9:67:d6:ed:02:11:87:f8:29:52:52:b1:6b:49: 42:69:47:d3:57:d0:3b:c6:a9:14:4a:32:d0:e8:10:0c:7d:cc: 85:19:d9:ad:18:cf:2e:42:a3:a1:a8:05:ce:b5:f5:1e:17:1a: 86:a2:c4:57:a4:6e:75:aa:4f:3d:93:df:7d:63:ab:ff:57:6f: 70:ac:91:38:5d:f4:d9:ac:f8:89:6d:1d:12:5c:c4:65:9a:5f: b6:0c:ba:e7:09:f3:fa:2d:be:b5:54:d1:6e:6c:49:66:5d:b7: b8:6b:65:92:01:89:b0:fe:8d:b7:c8:b6:63:d9:b3:f9:4b:72: 1b:8b:59:51:69:5f:1e:2e:74:58:99:a8:ce:b2:8e:51:39:46: ef:03:83:4a:a4:82:6f:0c:c3:94:76:e4:d8:06:5c:d9:55:8f: 8c:17:90:a2:84:d1:d1:c4:08:d1:04:e6:57:2f:a9:80:ee:e2: 23:5c:42:26:03:db:ac:ac:2f:08:90:d2:7f:e9:23:94:c5:1b: 8a:35:06:5d:37:4e:3f:6d:01:38:86:c3:d0:95:0f:fd:fc:24: de:f0:f5:30:3f:e4:d4:27:43:9f:c0:ae:77:5c:05:0c:34:a1: 00:2c:7f:92:40:16:7f:a6:c7:b0:a4:c9:e1:9f:3e:17:b4:ea: 6d:de:89:93 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJBowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQyNDEzNERGOUIxODQ3 OUE4MUVFRjNDRUE4NzY4NDQ1NkREQzhCNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpveycCdTTlAkk9D1WNJSzE38PRv7anc0thERzDetkPJODp4q1 7NpHkGhTxWgs0Fucg/7m0leCsDLWmq9pn9L8N4YeFpnKO8hkOP3fxzecYYEKAQNk Cd44USWTR5HFAd1eSq33qWl1WXkxXB1CiHn5RwOt9kPgYMZTIpySdo2Rr1e2s59+ 9plW7DZqokPPysHOnd+Sla1GhXvjdUbImindfv7S+93DXN4QDG+vc8OJXm5AgmpZ bw62RnMMTTHRfmsrPLj5LZyTZgOgj3yackoP8zTGEr5O/5cM3Ljv7xpmj/ebBi1D o5O575HKpSWDoPtuobO4vIPQf4A+wXx7rPHnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0kE035sYR5qB7vPOqHaERW3ci2kwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBrRTAzNXNZUjVxQjd2UE9x SGFFUlczY2kyay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0 2oQwDQYJKoZIhvcNAQELBQADggEBACT+EBLpZ9btAhGH+ClSUrFrSUJpR9NX0DvG qRRKMtDoEAx9zIUZ2a0Yzy5Co6GoBc619R4XGoaixFekbnWqTz2T331jq/9Xb3Cs kThd9Nms+IltHRJcxGWaX7YMuucJ8/otvrVU0W5sSWZdt7hrZZIBibD+jbfItmPZ s/lLchuLWVFpXx4udFiZqM6yjlE5Ru8Dg0qkgm8Mw5R25NgGXNlVj4wXkKKE0dHE CNEE5lcvqYDu4iNcQiYD26ysLwiQ0n/pI5TFG4o1Bl03Tj9tATiGw9CVD/38JN7w 9TA/5NQnQ5/ArndcBQw0oQAsf5JAFn+mx7CkyeGfPhe06m3eiZM= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:20 2025 by rpki-client