$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0uVHtOi0sHwdm9yl9Q9dSpsvfdk.roa File: 0uVHtOi0sHwdm9yl9Q9dSpsvfdk.roa (raw, json) Hash identifier: ng/ROWL4z96kLZuW7l169wOe5mEt7HQX58AcEPBu/uI= Subject key identifier: D2:E5:47:B4:E8:B4:B0:7C:1D:9B:DC:A5:F5:0F:5D:4A:9B:2F:7D:D9 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2389 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0uVHtOi0sHwdm9yl9Q9dSpsvfdk.roa Signing time: Mon 10 Feb 2025 14:17:41 +0000 ROA not before: Mon 10 Feb 2025 14:17:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9097 (0x2389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D2E547B4E8B4B07C1D9BDCA5F50F5D4A9B2F7DD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:41:6f:5d:58:61:74:fd:26:e4:c8:78:c5:4d: e3:98:93:1f:c7:4a:bb:74:32:23:ec:d8:b1:e1:1f: 0a:5d:ad:6d:45:ec:c2:a8:20:43:23:49:51:e2:62: be:c8:5a:29:41:58:58:dc:e0:1d:f8:eb:2e:61:6d: af:9e:6b:1e:0b:2e:8d:bd:31:7d:e5:0f:55:ff:52: c8:f0:89:b5:7a:d4:0f:0c:6d:07:b4:70:73:e6:2a: cd:db:7c:f1:3c:bb:83:12:85:5c:c7:b0:48:eb:13: 0b:8b:5d:0e:c0:4e:91:d5:23:81:3e:1e:92:12:9c: 3c:ba:bf:4e:29:48:8e:3f:6f:4d:6b:4a:ae:10:50: d0:ee:5d:c0:e2:1c:22:4c:1e:ba:6f:47:31:f6:f4: 12:0a:f0:1a:0e:53:81:a0:9a:7e:0e:b1:85:b6:14: 42:e3:48:d7:55:7a:aa:43:34:dd:0e:64:2b:e6:73: fc:28:48:42:c2:04:3c:09:3f:0b:f6:a9:dd:21:57: 09:42:f2:17:c2:c1:ed:f9:95:94:ad:88:79:ba:ab: 7f:f0:94:26:92:50:2d:aa:3d:50:6f:b6:31:62:7b: db:72:bb:58:fa:6c:ee:f1:b2:e7:88:47:7b:0d:21: 9e:4a:41:75:22:e4:d7:b3:d5:59:5d:2e:4e:a5:2c: 72:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E5:47:B4:E8:B4:B0:7C:1D:9B:DC:A5:F5:0F:5D:4A:9B:2F:7D:D9 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0uVHtOi0sHwdm9yl9Q9dSpsvfdk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.141.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:55:65:c3:6d:c1:96:cb:3c:60:0a:14:8d:50:62:fe:08:86: 42:38:68:ab:14:41:36:5a:eb:c7:0b:8d:fe:fa:b5:12:54:a9: 7d:bc:2c:26:09:e6:5f:84:63:73:c1:58:bc:03:6a:ee:3f:a4: 40:fc:ac:9c:d1:a6:84:a4:f1:37:a6:0a:58:c6:1f:f8:10:6d: 6a:6d:cc:3a:7d:d2:0f:bb:9c:5f:aa:3d:4a:2c:f8:6b:4a:41: 7d:68:60:f7:e7:fe:1c:6b:d2:6b:b2:da:73:73:3f:8b:61:90: 4b:1d:22:a8:4f:43:a0:3c:34:e0:25:06:74:90:9f:5a:80:f2: 4b:c3:00:99:13:ec:c9:61:7a:a4:3f:3e:18:77:8b:c6:c1:5d: 14:46:d9:ac:29:01:81:93:14:9c:1a:23:fe:cf:25:ae:e5:cd: 56:aa:56:9a:e7:29:ca:22:de:49:d2:d8:60:f0:a0:29:83:1e: 72:4e:24:83:7a:bf:a8:67:5f:b3:4e:d4:76:ee:1f:51:5c:08: ee:df:64:fa:ca:d4:7f:f2:64:4d:ca:96:62:61:f6:3e:93:79: 66:cd:e9:6e:73:7d:d4:82:44:83:64:83:45:d6:a7:99:fe:5a: ec:e9:c2:90:2d:05:b6:67:a5:cc:1f:74:82:2b:19:99:50:49: e6:e0:7f:b9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI4kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQyRTU0N0I0RThCNEIw N0MxRDlCRENBNUY1MEY1RDRBOUIyRjdERDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOQW9dWGF0/SbkyHjFTeOYkx/HSrt0MiPs2LHhHwpdrW1F7MKo IEMjSVHiYr7IWilBWFjc4B346y5hba+eax4LLo29MX3lD1X/UsjwibV61A8MbQe0 cHPmKs3bfPE8u4MShVzHsEjrEwuLXQ7ATpHVI4E+HpISnDy6v04pSI4/b01rSq4Q UNDuXcDiHCJMHrpvRzH29BIK8BoOU4Ggmn4OsYW2FELjSNdVeqpDNN0OZCvmc/wo SELCBDwJPwv2qd0hVwlC8hfCwe35lZStiHm6q3/wlCaSUC2qPVBvtjFie9tyu1j6 bO7xsueIR3sNIZ5KQXUi5Nez1VldLk6lLHKzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0uVHtOi0sHwdm9yl9Q9dSpsvfdkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzB1Vkh0T2kwc0h3ZG05eWw5 UTlkU3BzdmZkay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 2o0wDQYJKoZIhvcNAQELBQADggEBAAtVZcNtwZbLPGAKFI1QYv4IhkI4aKsUQTZa 68cLjf76tRJUqX28LCYJ5l+EY3PBWLwDau4/pED8rJzRpoSk8TemCljGH/gQbWpt zDp90g+7nF+qPUos+GtKQX1oYPfn/hxr0muy2nNzP4thkEsdIqhPQ6A8NOAlBnSQ n1qA8kvDAJkT7MlheqQ/Phh3i8bBXRRG2awpAYGTFJwaI/7PJa7lzVaqVprnKcoi 3knS2GDwoCmDHnJOJIN6v6hnX7NO1HbuH1FcCO7fZPrK1H/yZE3KlmJh9j6TeWbN 6W5zfdSCRINkg0XWp5n+WuzpwpAtBbZnpcwfdIIrGZlQSebgf7k= -----END CERTIFICATE-----Generated at Thu Apr 17 21:03:58 2025 by rpki-client