$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0y2glKQ_5CLsut_zS3qQQiZE_Bs.roa File: 0y2glKQ_5CLsut_zS3qQQiZE_Bs.roa (raw, json) Hash identifier: Cd64v6ydPEw7IT0+/0gfBcrLXvfty7rTTKp1bnGOD50= Subject key identifier: D3:2D:A0:94:A4:3F:E4:22:EC:BA:DF:F3:4B:7A:90:42:26:44:FC:1B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2403 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0y2glKQ_5CLsut_zS3qQQiZE_Bs.roa Signing time: Mon 10 Feb 2025 14:18:10 +0000 ROA not before: Mon 10 Feb 2025 14:18:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 211.76.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9219 (0x2403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D32DA094A43FE422ECBADFF34B7A90422644FC1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:71:16:38:84:96:96:59:49:fc:76:b1:92:62: 45:24:38:55:a0:07:f8:4f:dd:fd:20:3f:99:e6:7c: 4d:7b:76:8b:dd:bc:d3:0b:6a:bb:0c:27:47:58:21: 1c:fe:a3:d7:4e:3e:dc:b5:74:d6:fe:69:8e:35:6c: 50:c5:f8:e2:7e:13:40:6e:42:df:76:41:d7:f7:b1: 82:b4:49:90:bf:a6:4c:8d:e5:4c:82:fe:5d:8b:d3: b0:ff:aa:cd:e3:71:5f:b3:24:85:68:8c:9f:85:79: d8:f5:6c:33:6f:60:eb:fd:2f:c3:c6:d3:f8:53:b8: d8:bc:22:6d:4d:0a:58:02:ea:52:b5:34:29:74:0f: eb:96:09:93:6e:1a:b9:42:4a:22:d7:17:a8:09:83: 64:3b:d6:70:c9:9d:a5:1d:25:ee:77:8a:9f:8f:d5: 4e:2b:61:f7:2b:99:e4:75:5f:ec:c0:3c:3c:dc:3f: 3c:50:e2:d3:7c:cf:59:7d:2b:78:fd:a7:06:bb:7e: da:e6:de:a3:d8:f8:2a:f4:77:c6:2b:5e:ed:89:97: 6a:11:fc:52:9c:1b:43:fb:35:7c:81:f0:0a:c5:87: b8:70:a6:78:51:ab:0a:14:51:97:8a:be:26:21:92: 26:98:ce:d2:3b:41:33:30:dc:a7:ed:ff:2e:8e:5f: 2a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:2D:A0:94:A4:3F:E4:22:EC:BA:DF:F3:4B:7A:90:42:26:44:FC:1B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0y2glKQ_5CLsut_zS3qQQiZE_Bs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.64.0/20 Signature Algorithm: sha256WithRSAEncryption 05:26:6a:5a:76:cc:70:8b:7d:8e:9f:8f:80:92:01:51:f1:f9: 27:20:07:68:3c:fd:21:3e:f0:a3:81:54:17:22:ea:cf:31:eb: 13:b6:5b:c2:e9:4b:ad:e1:76:69:76:88:53:a0:fe:2a:c6:d4: 81:98:38:b7:30:66:fa:1e:2d:c4:03:22:16:b9:78:45:e2:ea: d4:d2:f9:af:50:85:99:e0:18:d8:73:d9:81:60:be:f8:0e:4a: 54:74:56:57:8b:42:55:f8:be:d9:0f:2b:49:93:af:94:6d:94: f1:d4:6d:0c:eb:cb:5e:7b:74:7c:c8:97:c8:23:4b:06:73:8a: b0:82:d0:c3:c1:68:32:4e:14:c9:13:62:49:d6:35:59:79:85: df:58:1c:f9:55:59:11:e4:07:a2:ff:ba:d3:ac:84:93:78:30: d9:c2:ce:ae:9b:84:7c:d1:d6:58:7d:89:c9:02:04:76:50:f5: 65:3d:9c:45:18:69:7c:1c:c6:67:ba:2c:d2:b9:c3:eb:bf:ad: 1e:84:e2:5b:e0:f9:fe:7c:3f:83:9a:46:9e:5e:09:8c:da:83: 02:9d:da:81:58:ff:9e:b1:52:2a:6f:58:e1:5e:e8:5a:4a:f2: d4:b0:b2:61:81:de:d4:60:7a:6b:38:dc:91:72:6f:6a:85:97: 1d:5d:34:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQzMkRBMDk0QTQzRkU0 MjJFQ0JBREZGMzRCN0E5MDQyMjY0NEZDMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjcRY4hJaWWUn8drGSYkUkOFWgB/hP3f0gP5nmfE17dovdvNML arsMJ0dYIRz+o9dOPty1dNb+aY41bFDF+OJ+E0BuQt92Qdf3sYK0SZC/pkyN5UyC /l2L07D/qs3jcV+zJIVojJ+Fedj1bDNvYOv9L8PG0/hTuNi8Im1NClgC6lK1NCl0 D+uWCZNuGrlCSiLXF6gJg2Q71nDJnaUdJe53ip+P1U4rYfcrmeR1X+zAPDzcPzxQ 4tN8z1l9K3j9pwa7ftrm3qPY+Cr0d8YrXu2Jl2oR/FKcG0P7NXyB8ArFh7hwpnhR qwoUUZeKviYhkiaYztI7QTMw3Kft/y6OXyqjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0y2glKQ/5CLsut/zS3qQQiZE/BswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzB5MmdsS1FfNUNMc3V0X3pT M3FRUWlaRV9Ccy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATT TEAwDQYJKoZIhvcNAQELBQADggEBAAUmalp2zHCLfY6fj4CSAVHx+ScgB2g8/SE+ 8KOBVBci6s8x6xO2W8LpS63hdml2iFOg/irG1IGYOLcwZvoeLcQDIha5eEXi6tTS +a9QhZngGNhz2YFgvvgOSlR0VleLQlX4vtkPK0mTr5RtlPHUbQzry157dHzIl8gj SwZzirCC0MPBaDJOFMkTYknWNVl5hd9YHPlVWRHkB6L/utOshJN4MNnCzq6bhHzR 1lh9ickCBHZQ9WU9nEUYaXwcxme6LNK5w+u/rR6E4lvg+f58P4OaRp5eCYzagwKd 2oFY/56xUipvWOFe6FpK8tSwsmGB3tRgems43JFyb2qFlx1dNBA= -----END CERTIFICATE-----Generated at Fri Apr 18 16:43:17 2025 by rpki-client