$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/56TFRAKuKzAsQI_bOw-g0ztNTCo.roa File: 56TFRAKuKzAsQI_bOw-g0ztNTCo.roa (raw, json) Hash identifier: ZJOu+BACy8rXg3qwUoaJDxiw5Ix8SvQl0eREwTbztsQ= Subject key identifier: E7:A4:C5:44:02:AE:2B:30:2C:40:8F:DB:3B:0F:A0:D3:3B:4D:4C:2A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2437 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/56TFRAKuKzAsQI_bOw-g0ztNTCo.roa Signing time: Mon 10 Feb 2025 14:18:24 +0000 ROA not before: Mon 10 Feb 2025 14:18:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 180.218.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9271 (0x2437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E7A4C54402AE2B302C408FDB3B0FA0D33B4D4C2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b0:54:d9:ce:40:b7:56:78:30:ff:50:f8:84: c0:d6:e0:e3:9e:c9:6d:27:20:2b:ca:fc:03:10:e2: 94:42:a8:8a:82:f7:05:e0:0b:fc:91:cb:10:ce:f9: 17:f0:c7:e5:9d:be:b9:ee:31:b1:31:2a:da:60:69: 5d:36:ea:f5:74:a7:d1:35:2c:74:8f:f8:fc:21:ef: 46:42:9a:6d:6a:6b:f6:04:5c:4b:12:87:18:30:77: 4e:1e:55:eb:fe:64:b5:40:86:33:26:f7:94:7d:98: fd:7c:9d:00:17:90:74:a0:2a:4d:1c:77:97:72:e8: 0a:bd:c1:6e:d1:ad:f9:ec:34:d2:0c:3a:3a:b0:72: fb:7d:97:16:d5:e0:fa:81:a2:13:8f:d2:0d:af:99: 69:72:63:52:10:85:28:4c:6c:d5:4b:39:11:f1:27: 3a:2f:78:38:e9:80:e3:08:f2:e7:cc:49:1a:3d:88: d0:f8:20:33:8b:de:34:36:e7:3a:5d:c6:cf:51:5f: 0f:f5:a0:07:41:c2:0f:11:fb:46:36:5b:7d:bf:05: cb:5d:6a:25:12:fc:59:6e:52:c5:d1:ec:2d:2b:15: 6f:90:5e:54:f5:78:26:56:7f:fc:91:16:6a:ee:13: d7:96:9e:d8:f6:5b:f8:51:b4:13:b6:5e:5b:32:27: 87:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A4:C5:44:02:AE:2B:30:2C:40:8F:DB:3B:0F:A0:D3:3B:4D:4C:2A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/56TFRAKuKzAsQI_bOw-g0ztNTCo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.240.0/20 Signature Algorithm: sha256WithRSAEncryption 21:59:32:99:97:80:f1:9c:7b:be:70:3d:f1:17:ce:ec:17:15: bd:39:47:a1:b6:aa:bd:53:90:1d:c6:f1:3c:33:ed:45:3c:68: fb:b0:97:2f:4e:33:e8:a7:df:f1:9b:52:90:12:d2:44:ef:69: 89:34:b7:4b:a2:92:c8:77:ce:73:6b:ac:a4:f6:ca:6b:83:b5: 54:16:22:fc:73:cd:9b:af:cf:49:a1:32:96:ff:62:e6:88:32: 3e:32:9f:80:62:06:51:fb:6c:25:07:ce:8e:0f:e7:3b:98:63: dd:02:c7:a2:8e:3c:09:b2:c9:b9:ac:51:62:47:2d:96:b2:01: 23:6c:2a:df:1a:6c:39:36:ec:b8:77:ba:d7:65:33:c1:fc:b7: 2e:f8:97:f7:bb:30:d0:e3:17:73:e6:cc:da:47:a2:40:b4:62: 79:05:e2:7f:bb:02:cd:28:95:83:38:45:ff:b3:97:bf:92:83: 2b:7b:5c:51:f5:d9:30:5d:62:7e:0e:fb:be:35:d9:c7:0d:33: da:f4:48:c9:94:db:ae:fb:b7:86:d2:02:8c:8a:f4:69:a0:c6: 88:fb:cd:b9:98:a1:48:d4:aa:c7:ca:ee:d0:68:5e:2e:c6:0f: 00:08:ae:ef:b9:fe:c3:9c:14:41:8c:06:62:a7:47:6d:b5:b5: cb:45:aa:ce -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJDcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU3QTRDNTQ0MDJBRTJC MzAyQzQwOEZEQjNCMEZBMEQzM0I0RDRDMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBsFTZzkC3Vngw/1D4hMDW4OOeyW0nICvK/AMQ4pRCqIqC9wXg C/yRyxDO+Rfwx+WdvrnuMbExKtpgaV026vV0p9E1LHSP+Pwh70ZCmm1qa/YEXEsS hxgwd04eVev+ZLVAhjMm95R9mP18nQAXkHSgKk0cd5dy6Aq9wW7RrfnsNNIMOjqw cvt9lxbV4PqBohOP0g2vmWlyY1IQhShMbNVLORHxJzoveDjpgOMI8ufMSRo9iND4 IDOL3jQ25zpdxs9RXw/1oAdBwg8R+0Y2W32/BctdaiUS/FluUsXR7C0rFW+QXlT1 eCZWf/yRFmruE9eWntj2W/hRtBO2XlsyJ4fXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU56TFRAKuKzAsQI/bOw+g0ztNTCowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzU2VEZSQUt1S3pBc1FJX2JP dy1nMHp0TlRDby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 2vAwDQYJKoZIhvcNAQELBQADggEBACFZMpmXgPGce75wPfEXzuwXFb05R6G2qr1T kB3G8Twz7UU8aPuwly9OM+in3/GbUpAS0kTvaYk0t0uiksh3znNrrKT2ymuDtVQW IvxzzZuvz0mhMpb/YuaIMj4yn4BiBlH7bCUHzo4P5zuYY90Cx6KOPAmyybmsUWJH LZayASNsKt8abDk27Lh3utdlM8H8ty74l/e7MNDjF3PmzNpHokC0YnkF4n+7As0o lYM4Rf+zl7+Sgyt7XFH12TBdYn4O+7412ccNM9r0SMmU2677t4bSAoyK9Gmgxoj7 zbmYoUjUqsfK7tBoXi7GDwAIru+5/sOcFEGMBmKnR221tctFqs4= -----END CERTIFICATE-----Generated at Fri Apr 18 16:51:40 2025 by rpki-client