$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1-zg6HZahRi8r8f5LB1hKZ3MBWE.roa File: 1-zg6HZahRi8r8f5LB1hKZ3MBWE.roa (raw, json) Hash identifier: UNDAPju4Y/FQlpAmIcHdjMLRNynXro7A5bBnj6Su7h4= Subject key identifier: D7:EC:E0:E8:76:5A:85:18:BC:AF:C7:F9:2C:1D:61:29:9D:CC:05:61 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 244F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1-zg6HZahRi8r8f5LB1hKZ3MBWE.roa Signing time: Mon 10 Feb 2025 14:18:30 +0000 ROA not before: Mon 10 Feb 2025 14:18:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 06:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9295 (0x244f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D7ECE0E8765A8518BCAFC7F92C1D61299DCC0561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:01:1e:11:83:07:a5:36:85:17:9a:8f:80:9a: 0d:8f:b3:e6:37:01:e0:48:5b:64:a7:71:fe:36:e5: 10:f1:2b:70:e4:fd:be:9c:54:ba:44:10:7a:2e:5d: 5a:3c:0e:11:77:d8:21:aa:c3:74:a1:c9:8d:c1:3d: 89:b2:09:06:5e:b0:c8:41:ae:82:24:23:10:9d:d9: 12:8d:74:84:a4:03:69:f1:0c:e6:cc:a2:c6:4a:5d: 65:c8:17:52:1b:d7:cb:de:95:dd:52:b1:3c:44:33: d8:32:96:16:d7:b6:58:09:36:d2:a0:1b:e1:1a:16: 1e:54:86:cd:9c:b4:ea:97:9d:ef:06:80:c0:f7:16: 6d:35:76:63:2c:cb:83:3e:aa:ab:ea:72:41:3d:41: 1b:d8:e3:d9:9c:7b:b5:7c:66:14:94:3a:4d:a2:78: 75:05:2d:2a:97:41:48:b3:20:18:db:e7:22:7e:80: 55:dc:ec:35:1b:c0:ef:d6:06:20:61:97:b5:70:b7: 01:e5:ca:c0:d3:70:fd:ba:c3:bb:af:3d:7a:da:69: 1a:d8:bf:b6:41:f1:88:49:b5:46:43:e6:ff:f7:fc: 6b:1c:5e:9e:b3:87:54:63:0e:96:11:ac:a2:f2:db: 1e:5d:48:90:4e:41:79:c5:e6:08:a5:ba:12:c1:58: 2e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:EC:E0:E8:76:5A:85:18:BC:AF:C7:F9:2C:1D:61:29:9D:CC:05:61 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1-zg6HZahRi8r8f5LB1hKZ3MBWE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.216.0/22 Signature Algorithm: sha256WithRSAEncryption 45:21:a7:3b:64:6d:b7:0a:cc:76:f0:80:ec:c1:cb:7c:07:df: 5e:fc:99:40:16:28:b2:5d:b2:b1:a1:02:9a:70:96:87:b9:15: b7:60:f6:46:d9:e4:17:d3:aa:f8:81:c5:9a:e3:c4:4f:af:c7: 18:fe:e7:80:44:27:7e:8a:91:9f:0e:ca:da:f7:48:e8:b9:e2: dd:90:98:ca:bb:bd:60:a8:d1:3f:d8:c0:27:37:91:23:91:03: 8b:e3:30:8f:ee:7d:3f:57:2d:a4:2f:1c:68:be:3c:a3:5f:57: 27:e7:20:fb:af:8a:97:76:f8:5a:8b:18:6f:37:4d:38:2d:e0: 3f:44:14:1c:af:b6:8c:46:c4:72:f3:82:2a:83:55:9f:c3:b3: da:3c:9c:32:7a:d9:80:0c:62:d2:70:b9:14:f8:30:b2:55:42: a1:9a:55:f5:c8:4f:78:16:b8:69:25:14:9e:47:b8:d4:57:25: e6:d4:20:c8:6a:b7:ab:49:e5:da:9d:e1:05:15:f4:d6:f3:7a: 25:b8:8d:13:ca:52:c5:a6:96:91:d6:63:fe:1c:25:fd:19:91: 1e:59:03:25:99:c6:8d:f2:e2:77:b5:9a:3b:66:9b:eb:bd:c2: ad:28:85:ed:63:1a:29:35:e0:5e:f2:3f:c5:6b:54:2a:57:9e: de:ef:ab:49 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJE8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3RUNFMEU4NzY1QTg1 MThCQ0FGQzdGOTJDMUQ2MTI5OURDQzA1NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjAR4RgwelNoUXmo+Amg2Ps+Y3AeBIW2Sncf425RDxK3Dk/b6c VLpEEHouXVo8DhF32CGqw3ShyY3BPYmyCQZesMhBroIkIxCd2RKNdISkA2nxDObM osZKXWXIF1Ib18veld1SsTxEM9gylhbXtlgJNtKgG+EaFh5Uhs2ctOqXne8GgMD3 Fm01dmMsy4M+qqvqckE9QRvY49mce7V8ZhSUOk2ieHUFLSqXQUizIBjb5yJ+gFXc 7DUbwO/WBiBhl7VwtwHlysDTcP26w7uvPXraaRrYv7ZB8YhJtUZD5v/3/GscXp6z h1RjDpYRrKLy2x5dSJBOQXnF5giluhLBWC7rAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1+zg6HZahRi8r8f5LB1hKZ3MBWEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzEtemc2SFphaFJpOHI4ZjVM QjFoS1ozTUJXRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2tgwDQYJKoZIhvcNAQELBQADggEBAEUhpztkbbcKzHbwgOzBy3wH3178mUAWKLJd srGhAppwloe5Fbdg9kbZ5BfTqviBxZrjxE+vxxj+54BEJ36KkZ8Oytr3SOi54t2Q mMq7vWCo0T/YwCc3kSORA4vjMI/ufT9XLaQvHGi+PKNfVyfnIPuvipd2+FqLGG83 TTgt4D9EFByvtoxGxHLzgiqDVZ/Ds9o8nDJ62YAMYtJwuRT4MLJVQqGaVfXIT3gW uGklFJ5HuNRXJebUIMhqt6tJ5dqd4QUV9NbzeiW4jRPKUsWmlpHWY/4cJf0ZkR5Z AyWZxo3y4ne1mjtmm+u9wq0ohe1jGik14F7yP8VrVCpXnt7vq0k= -----END CERTIFICATE-----Generated at Wed Apr 23 05:57:09 2025 by rpki-client