$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1haZWTgVSZ9zDjloTky5TEmrnWA.roa File: 1haZWTgVSZ9zDjloTky5TEmrnWA.roa (raw, json) Hash identifier: WjBt2UBISnzZYcr+hSG5N138NG4c364aX+nE9RPmatg= Subject key identifier: D6:16:99:59:38:15:49:9F:73:0E:39:68:4E:4C:B9:4C:49:AB:9D:60 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2484 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1haZWTgVSZ9zDjloTky5TEmrnWA.roa Signing time: Mon 10 Feb 2025 14:18:43 +0000 ROA not before: Mon 10 Feb 2025 14:18:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 211.76.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9348 (0x2484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D61699593815499F730E39684E4CB94C49AB9D60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:77:58:fd:3a:5e:05:3d:aa:ab:2c:48:af:ba: 5a:ef:81:3f:c6:6b:ce:aa:02:6a:bc:11:f6:1f:4e: 2e:14:2f:44:ea:0b:ae:d0:07:55:1e:4b:1d:99:13: cf:14:6e:2f:ee:f9:62:cc:c6:17:77:50:bb:3a:05: a2:bf:27:8d:e5:6e:f5:fb:32:69:44:6f:fb:92:28: ee:43:a0:ca:14:b1:10:89:42:9e:17:b7:4e:63:dd: 11:85:5f:4c:6a:9b:b3:bd:f6:1d:ef:6a:1b:d6:c2: b1:60:1f:c9:a9:98:f0:14:68:df:e1:68:a4:06:0a: de:9d:49:28:30:6f:d8:e1:24:f1:2a:a1:4e:87:63: 5f:3f:a1:58:00:9c:c5:ad:a7:97:cd:6e:63:c4:c9: f7:58:ab:2c:95:02:1d:57:b0:97:a5:c0:fb:c3:9c: 2f:d9:3b:cc:68:db:d8:3c:3f:be:d3:fa:64:31:fc: 9c:10:24:35:bc:82:7e:c6:6c:7f:db:cf:87:4f:bb: 9d:85:66:91:e0:c0:ce:5b:97:7e:a3:b7:d8:40:20: 02:3f:36:ab:5c:f6:f7:96:d3:6d:b5:0f:79:14:0a: 04:ba:a8:f7:c9:2b:4e:c6:cc:55:fa:c4:bc:31:24: 46:d3:9b:b1:51:40:46:c1:39:04:67:c7:a6:2b:63: f5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:16:99:59:38:15:49:9F:73:0E:39:68:4E:4C:B9:4C:49:AB:9D:60 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1haZWTgVSZ9zDjloTky5TEmrnWA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.32.0/19 Signature Algorithm: sha256WithRSAEncryption 9b:70:78:c8:14:f2:6e:c7:53:a7:b5:23:f5:90:9b:15:1e:38: 07:c1:85:84:62:7a:a6:39:f4:f2:2c:7d:63:cc:4f:fa:fa:55: d9:39:ba:4e:19:26:ae:f0:79:61:fe:44:56:82:f4:41:ce:65: 31:49:e0:33:80:7b:a2:a6:90:da:d8:33:25:97:3f:1b:74:71: 2e:1f:02:de:79:d7:7c:01:f7:bf:06:d4:34:c4:d8:53:47:5f: b2:cc:67:51:ac:42:0e:94:f9:c9:d3:32:20:47:20:b8:36:3d: eb:cf:12:9c:25:81:41:93:7a:ed:24:f6:dd:29:ca:75:1e:3c: 9a:a8:0d:9f:7b:1b:96:d9:e1:0b:d5:c3:f1:16:39:2c:7a:f1: 4c:3a:1d:36:2e:97:0b:60:c2:4d:1a:ab:e3:cc:7e:29:20:54: 9b:86:b3:57:b2:db:fd:6d:a7:88:46:70:e3:bf:8a:a0:3d:45: e4:3b:7b:bb:f7:57:aa:54:1d:d5:1f:44:f8:0f:12:0a:8c:6d: f7:a0:1b:ad:b2:a4:c0:2c:90:f1:b1:c9:fe:bf:93:fb:e8:15: 9f:00:e5:d1:64:c6:dd:ab:07:23:a4:21:fd:39:97:e2:c6:2f: 69:2b:7e:81:42:34:f3:1f:e0:90:60:5d:68:23:c7:a6:1a:7b: ce:ea:34:31 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJIQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ2MTY5OTU5MzgxNTQ5 OUY3MzBFMzk2ODRFNENCOTRDNDlBQjlENjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYd1j9Ol4FPaqrLEivulrvgT/Ga86qAmq8EfYfTi4UL0TqC67Q B1UeSx2ZE88Ubi/u+WLMxhd3ULs6BaK/J43lbvX7MmlEb/uSKO5DoMoUsRCJQp4X t05j3RGFX0xqm7O99h3vahvWwrFgH8mpmPAUaN/haKQGCt6dSSgwb9jhJPEqoU6H Y18/oVgAnMWtp5fNbmPEyfdYqyyVAh1XsJelwPvDnC/ZO8xo29g8P77T+mQx/JwQ JDW8gn7GbH/bz4dPu52FZpHgwM5bl36jt9hAIAI/Nqtc9veW0221D3kUCgS6qPfJ K07GzFX6xLwxJEbTm7FRQEbBOQRnx6YrY/WNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1haZWTgVSZ9zDjloTky5TEmrnWAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzFoYVpXVGdWU1o5ekRqbG9U a3k1VEVtcm5XQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXT TCAwDQYJKoZIhvcNAQELBQADggEBAJtweMgU8m7HU6e1I/WQmxUeOAfBhYRieqY5 9PIsfWPMT/r6Vdk5uk4ZJq7weWH+RFaC9EHOZTFJ4DOAe6KmkNrYMyWXPxt0cS4f At5513wB978G1DTE2FNHX7LMZ1GsQg6U+cnTMiBHILg2PevPEpwlgUGTeu0k9t0p ynUePJqoDZ97G5bZ4QvVw/EWOSx68Uw6HTYulwtgwk0aq+PMfikgVJuGs1ey2/1t p4hGcOO/iqA9ReQ7e7v3V6pUHdUfRPgPEgqMbfegG62ypMAskPGxyf6/k/voFZ8A 5dFkxt2rByOkIf05l+LGL2krfoFCNPMf4JBgXWgjx6Yae87qNDE= -----END CERTIFICATE-----Generated at Fri Apr 18 16:51:35 2025 by rpki-client