$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1rkU80RuaOG-rVjEGA5f2pGKbFo.roa File: 1rkU80RuaOG-rVjEGA5f2pGKbFo.roa (raw, json) Hash identifier: Sx6forGlif0wJHwualL9OrpNOQu/n0APJXovI7jxMV4= Subject key identifier: D6:B9:14:F3:44:6E:68:E1:BE:AD:58:C4:18:0E:5F:DA:91:8A:6C:5A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24CA Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1rkU80RuaOG-rVjEGA5f2pGKbFo.roa Signing time: Mon 10 Feb 2025 14:19:01 +0000 ROA not before: Mon 10 Feb 2025 14:19:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 180.218.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 06:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9418 (0x24ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:19:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D6B914F3446E68E1BEAD58C4180E5FDA918A6C5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:67:a3:d0:aa:a0:21:1e:a4:c7:de:a5:2d:4e: 18:10:e1:78:37:e2:f0:d6:e6:f1:fa:d3:a9:2a:bc: 8d:13:dc:3e:36:b9:9d:73:04:30:d5:97:5f:03:32: a5:3e:50:20:a6:99:56:b9:31:15:7c:da:f6:35:bb: 04:23:82:79:55:9b:a5:d4:ed:4e:aa:d6:ff:65:1b: 37:a5:46:b6:1a:1f:fc:d3:01:d2:37:c1:a3:57:52: 62:71:e2:6c:9e:35:93:4d:f5:0b:19:c3:73:90:1b: 9a:eb:67:3d:5f:96:43:98:83:72:5d:13:92:e9:2c: 6b:45:2b:c1:af:a0:f3:3d:c3:44:c4:ba:04:ec:45: f5:05:ab:85:33:cb:3d:4b:ad:aa:44:e5:c8:fc:44: af:c9:0c:dc:16:81:c0:21:ac:e7:09:8a:bc:19:23: 2c:97:53:c0:9f:1e:a3:64:8c:0a:82:39:9d:b4:0f: 0d:2c:c1:17:2c:fb:20:aa:bf:0b:c9:b0:47:78:b6: 0d:ea:bd:23:cd:83:82:0d:0d:e9:1d:33:f4:fc:2d: 23:19:ce:68:36:96:f4:39:23:a6:da:73:b1:b7:48: 76:78:b1:41:93:26:7f:4e:d0:22:4a:0c:5e:a1:c8: 02:7c:36:66:d3:b5:b8:43:b7:55:9f:48:13:c6:ca: e9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B9:14:F3:44:6E:68:E1:BE:AD:58:C4:18:0E:5F:DA:91:8A:6C:5A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1rkU80RuaOG-rVjEGA5f2pGKbFo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.112.0/21 Signature Algorithm: sha256WithRSAEncryption 3a:c1:d5:9a:7d:71:96:3e:4b:fd:01:52:01:dc:f5:ea:b8:94: b7:35:84:bc:6d:f2:c3:4b:f4:06:9f:7f:4e:f3:77:7a:6d:5c: 62:df:7f:c9:b5:7f:65:63:25:26:a1:d7:b2:e2:03:79:68:38: 0b:75:e4:a7:a3:27:b0:a6:3e:a7:e9:74:ca:66:f1:d6:6e:6e: 53:c7:bc:04:fb:10:8a:85:d2:d7:ec:7e:e1:39:8a:af:78:02: d8:80:e1:0c:a5:25:bc:a7:03:1f:9c:9d:1f:e2:a5:4c:04:90: 08:5a:41:98:e6:69:26:b5:0e:a9:39:84:8e:12:98:21:79:97: 33:0c:87:6e:36:f3:89:27:df:ff:72:e9:fa:da:76:19:c4:06: f8:68:b3:da:ee:ae:f5:e1:cf:d8:fc:34:a4:b3:cb:a1:b0:7f: 3e:f2:1f:3a:2b:c7:87:37:d5:c0:d9:ba:8f:0d:9f:9b:fb:39: dc:19:ba:34:64:c9:d1:47:7d:46:87:97:2e:87:69:af:46:fd: b0:ce:a8:c8:25:76:fd:3f:20:3d:9d:7b:f1:33:53:ca:2b:58: c6:bf:20:31:61:8f:46:3d:67:f7:d9:8c:30:8c:8d:55:a5:0f: db:ee:ba:60:0e:ba:c6:21:6f:3e:ed:b9:92:9a:ca:5e:76:b7: 01:99:1f:47 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJMowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE5MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ2QjkxNEYzNDQ2RTY4 RTFCRUFENThDNDE4MEU1RkRBOTE4QTZDNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgZ6PQqqAhHqTH3qUtThgQ4Xg34vDW5vH606kqvI0T3D42uZ1z BDDVl18DMqU+UCCmmVa5MRV82vY1uwQjgnlVm6XU7U6q1v9lGzelRrYaH/zTAdI3 waNXUmJx4myeNZNN9QsZw3OQG5rrZz1flkOYg3JdE5LpLGtFK8GvoPM9w0TEugTs RfUFq4Uzyz1LrapE5cj8RK/JDNwWgcAhrOcJirwZIyyXU8CfHqNkjAqCOZ20Dw0s wRcs+yCqvwvJsEd4tg3qvSPNg4INDekdM/T8LSMZzmg2lvQ5I6bac7G3SHZ4sUGT Jn9O0CJKDF6hyAJ8NmbTtbhDt1WfSBPGyuldAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1rkU80RuaOG+rVjEGA5f2pGKbFowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzFya1U4MFJ1YU9HLXJWakVH QTVmMnBHS2JGby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2nAwDQYJKoZIhvcNAQELBQADggEBADrB1Zp9cZY+S/0BUgHc9eq4lLc1hLxt8sNL 9Aaff07zd3ptXGLff8m1f2VjJSah17LiA3loOAt15KejJ7CmPqfpdMpm8dZublPH vAT7EIqF0tfsfuE5iq94AtiA4QylJbynAx+cnR/ipUwEkAhaQZjmaSa1Dqk5hI4S mCF5lzMMh24284kn3/9y6fradhnEBvhos9rurvXhz9j8NKSzy6Gwfz7yHzorx4c3 1cDZuo8Nn5v7OdwZujRkydFHfUaHly6Haa9G/bDOqMgldv0/ID2de/EzU8orWMa/ IDFhj0Y9Z/fZjDCMjVWlD9vuumAOusYhbz7tuZKayl52twGZH0c= -----END CERTIFICATE-----Generated at Wed Apr 23 06:02:47 2025 by rpki-client