$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3mxDzNk0efgUVsbV-Ys7TR6VRdA.roa File: 3mxDzNk0efgUVsbV-Ys7TR6VRdA.roa (raw, json) Hash identifier: sok8wOYmMs+cIu9QNx1OBN4I3AA3cmgdHFpbXeBEm7M= Subject key identifier: DE:6C:43:CC:D9:34:79:F8:14:56:C6:D5:F9:8B:3B:4D:1E:95:45:D0 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24A1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3mxDzNk0efgUVsbV-Ys7TR6VRdA.roa Signing time: Mon 10 Feb 2025 14:18:50 +0000 ROA not before: Mon 10 Feb 2025 14:18:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 49.159.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9377 (0x24a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DE6C43CCD93479F81456C6D5F98B3B4D1E9545D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c5:84:17:27:ef:14:d7:45:ed:a7:5c:11:78: 56:c9:cf:06:42:2a:a7:86:c1:f6:c1:5a:46:73:e3: 28:15:71:94:70:90:5a:c7:a8:12:ee:73:64:ca:fd: b9:ce:6c:6f:d6:75:54:2e:2c:ed:fb:e2:5d:75:de: 38:5f:e6:5e:d2:c2:fc:0d:7f:b5:62:2e:fa:46:cd: 69:45:58:ba:09:40:11:e8:58:0b:85:3b:c4:02:11: 25:5d:e3:c6:2b:b9:db:9c:52:02:79:39:b7:d5:17: 84:12:dc:83:ba:76:22:df:5b:2c:32:a7:50:79:0e: 71:60:ad:fd:f9:9c:30:0a:c6:d3:c3:c6:a7:db:0f: 2c:0b:55:25:25:ce:f6:b1:55:a6:f9:b3:29:59:83: 5c:b0:ed:60:6a:fc:19:ec:5a:d8:c1:4a:c6:e2:5c: 2f:e3:13:0e:d4:97:03:22:d9:5f:22:a8:19:2e:8a: 10:fa:dd:1f:6e:01:8b:5c:cd:89:a5:17:66:8e:81: 3a:bf:b0:ba:52:85:96:1d:06:89:85:c8:a1:01:5a: 5a:39:10:92:fb:20:47:be:60:7c:e4:6b:ee:9f:5e: 73:e8:e0:1e:69:bf:73:af:7f:ea:60:81:ce:26:e8: 14:03:ea:ff:66:aa:b0:5a:3e:c5:c5:1b:1c:20:81: af:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6C:43:CC:D9:34:79:F8:14:56:C6:D5:F9:8B:3B:4D:1E:95:45:D0 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3mxDzNk0efgUVsbV-Ys7TR6VRdA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.212.0/22 Signature Algorithm: sha256WithRSAEncryption 38:e7:4a:4c:70:8b:1f:2b:88:bb:c1:16:7f:63:fc:e9:6a:1c: c5:6d:10:55:cd:d7:fd:8b:c9:ea:db:6e:ea:34:d7:b0:a0:ee: 1a:fe:a0:de:a2:c7:79:23:a9:e0:bc:16:2a:46:bf:e4:1d:fb: 69:38:e7:13:8a:fc:fd:43:f4:2d:a4:6f:1e:ee:2e:5f:da:2c: ba:86:39:15:8b:f8:f4:06:d2:2f:61:46:e0:1d:e7:cb:76:31: 4b:48:8b:13:46:59:8f:9a:30:8e:ea:ec:58:88:0a:38:1d:58: 10:33:5b:81:f9:09:63:3c:5f:3d:52:93:01:eb:e4:c8:8c:a3: 20:e1:44:c3:d7:4f:8c:b4:13:ff:93:4f:15:f2:a1:ba:e1:72: 9a:d1:cf:75:89:bc:a1:b3:fe:f2:2c:db:ca:64:1b:ec:bc:0e: de:52:85:4a:bc:a0:33:e2:91:8d:75:85:e6:a2:b3:1e:fc:0c: fd:6c:1e:47:79:86:6e:a6:94:65:75:1b:a5:7e:52:c8:95:4a: fd:85:2c:c6:f5:1a:cc:bb:94:08:77:dc:67:fd:f7:d6:32:54: 2f:f6:94:21:c0:03:a1:4b:3b:99:7a:81:b3:78:d4:cc:30:00: bf:81:69:28:3d:8a:12:34:91:ea:ed:06:53:6f:e8:a5:fd:3a: 5a:04:dd:fd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERFNkM0M0NDRDkzNDc5 RjgxNDU2QzZENUY5OEIzQjREMUU5NTQ1RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHxYQXJ+8U10Xtp1wReFbJzwZCKqeGwfbBWkZz4ygVcZRwkFrH qBLuc2TK/bnObG/WdVQuLO374l113jhf5l7SwvwNf7ViLvpGzWlFWLoJQBHoWAuF O8QCESVd48YruducUgJ5ObfVF4QS3IO6diLfWywyp1B5DnFgrf35nDAKxtPDxqfb DywLVSUlzvaxVab5sylZg1yw7WBq/BnsWtjBSsbiXC/jEw7UlwMi2V8iqBkuihD6 3R9uAYtczYmlF2aOgTq/sLpShZYdBomFyKEBWlo5EJL7IEe+YHzka+6fXnPo4B5p v3Ovf+pggc4m6BQD6v9mqrBaPsXFGxwgga/nAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3mxDzNk0efgUVsbV+Ys7TR6VRdAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzNteER6TmswZWZnVVZzYlYt WXM3VFI2VlJkQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n9QwDQYJKoZIhvcNAQELBQADggEBADjnSkxwix8riLvBFn9j/OlqHMVtEFXN1/2L yerbbuo017Cg7hr+oN6ix3kjqeC8FipGv+Qd+2k45xOK/P1D9C2kbx7uLl/aLLqG ORWL+PQG0i9hRuAd58t2MUtIixNGWY+aMI7q7FiICjgdWBAzW4H5CWM8Xz1SkwHr 5MiMoyDhRMPXT4y0E/+TTxXyobrhcprRz3WJvKGz/vIs28pkG+y8Dt5ShUq8oDPi kY11heaisx78DP1sHkd5hm6mlGV1G6V+UsiVSv2FLMb1Gsy7lAh33Gf999YyVC/2 lCHAA6FLO5l6gbN41MwwAL+BaSg9ihI0kertBlNv6KX9OloE3f0= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:16 2025 by rpki-client