$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5Jh4ErAdEQ14qAU80-Y7RmMOEOw.roa File: 5Jh4ErAdEQ14qAU80-Y7RmMOEOw.roa (raw, json) Hash identifier: OWFBwdJNlFsZLN0zZ8/VCXI2TV+6H5j1pPkqvPC9SPQ= Subject key identifier: E4:98:78:12:B0:1D:11:0D:78:A8:05:3C:D3:E6:3B:46:63:0E:10:EC Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 248C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5Jh4ErAdEQ14qAU80-Y7RmMOEOw.roa Signing time: Mon 10 Feb 2025 14:18:45 +0000 ROA not before: Mon 10 Feb 2025 14:18:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9356 (0x248c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E4987812B01D110D78A8053CD3E63B46630E10EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f1:86:9b:cc:5a:59:67:81:72:ca:03:3a:5f: 09:04:ac:e0:f5:9f:50:3e:62:7d:04:76:e0:58:74: 99:01:af:d4:c3:60:35:04:71:2c:a0:1c:ef:c6:62: c6:e0:d7:1f:b9:2f:74:3e:fe:7e:81:4a:b7:95:4b: 2f:f7:5c:63:c8:61:06:84:57:d4:9a:dd:02:ff:49: 11:a1:ae:f7:ee:83:2a:3c:de:62:43:d2:cb:f7:7f: 0a:dc:25:5b:fc:e2:4d:74:4a:77:68:36:b8:c0:34: ce:72:45:3d:9a:35:56:10:ae:8c:21:48:24:90:9a: 8e:2f:b7:b9:c9:f9:b6:cb:b9:14:6b:42:81:a8:b8: 35:ac:40:cd:2c:60:c7:f5:52:40:9a:be:e5:3a:f3: 7d:a8:1f:d2:28:78:52:03:40:97:7b:1c:df:6d:23: ad:0c:44:b4:99:70:ba:52:85:a5:1e:2c:0a:77:4c: 15:4f:dd:7e:8e:30:35:2f:8f:b8:ee:8d:7b:2d:ce: 24:a6:09:8c:bf:92:26:c7:43:d1:54:71:75:d7:92: dc:8d:8c:d1:07:f4:33:09:be:fe:63:b7:9f:c7:b8: 9d:0e:a9:ea:47:a9:3f:6c:5c:e3:3b:e1:15:72:be: cd:fd:ca:12:42:29:0f:33:d4:b6:34:84:f6:8e:a8: 91:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:98:78:12:B0:1D:11:0D:78:A8:05:3C:D3:E6:3B:46:63:0E:10:EC X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5Jh4ErAdEQ14qAU80-Y7RmMOEOw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.248.0/21 Signature Algorithm: sha256WithRSAEncryption 86:f9:c7:26:02:8f:f7:78:08:c2:79:8c:7c:3d:58:5b:cd:c4: 34:cc:86:d7:15:67:f0:5f:b9:63:7f:59:d3:e4:2a:d6:34:e5: bd:9e:59:82:cf:51:98:3f:51:22:6d:4b:4e:80:8e:18:55:36: f8:5d:42:2a:8f:b0:c8:9b:d1:2f:ae:2b:f7:c7:42:34:c9:d5: 16:37:e3:08:2b:b0:85:7c:94:64:ec:b4:db:03:80:a9:d2:79: f9:89:d3:d2:3d:fa:16:ec:f1:41:4b:4f:16:46:cb:b7:e4:5e: 91:f8:cb:40:16:76:94:65:78:64:e7:60:b1:34:f5:40:30:56: e8:1f:23:19:bc:16:cf:d5:cc:57:c9:6c:30:78:2b:98:0e:1d: 77:c6:47:1b:6a:22:86:9c:73:89:f0:5c:06:c6:eb:05:c7:15: 57:95:ec:55:01:06:ae:2a:00:fc:d7:42:2e:60:1c:3f:da:5d: ae:b0:7e:21:2b:91:d4:25:d7:0c:d7:8a:ca:a4:8f:50:29:66: b2:da:4c:99:07:fa:03:c9:e7:76:89:da:32:fc:62:6b:31:70: 6d:7d:5c:3e:b7:4d:0e:42:2d:15:44:40:b8:73:c2:8d:13:87: e3:de:06:07:2b:6d:38:d9:84:bf:cf:9d:f4:2f:ad:9e:6a:42: e0:52:85:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU0OTg3ODEyQjAxRDEx MEQ3OEE4MDUzQ0QzRTYzQjQ2NjMwRTEwRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC68YabzFpZZ4FyygM6XwkErOD1n1A+Yn0EduBYdJkBr9TDYDUE cSygHO/GYsbg1x+5L3Q+/n6BSreVSy/3XGPIYQaEV9Sa3QL/SRGhrvfugyo83mJD 0sv3fwrcJVv84k10SndoNrjANM5yRT2aNVYQrowhSCSQmo4vt7nJ+bbLuRRrQoGo uDWsQM0sYMf1UkCavuU6832oH9IoeFIDQJd7HN9tI60MRLSZcLpShaUeLAp3TBVP 3X6OMDUvj7jujXstziSmCYy/kibHQ9FUcXXXktyNjNEH9DMJvv5jt5/HuJ0OqepH qT9sXOM74RVyvs39yhJCKQ8z1LY0hPaOqJGhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5Jh4ErAdEQ14qAU80+Y7RmMOEOwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzVKaDRFckFkRVExNHFBVTgw LVk3Um1NT0VPdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nvgwDQYJKoZIhvcNAQELBQADggEBAIb5xyYCj/d4CMJ5jHw9WFvNxDTMhtcVZ/Bf uWN/WdPkKtY05b2eWYLPUZg/USJtS06AjhhVNvhdQiqPsMib0S+uK/fHQjTJ1RY3 4wgrsIV8lGTstNsDgKnSefmJ09I9+hbs8UFLTxZGy7fkXpH4y0AWdpRleGTnYLE0 9UAwVugfIxm8Fs/VzFfJbDB4K5gOHXfGRxtqIoacc4nwXAbG6wXHFVeV7FUBBq4q APzXQi5gHD/aXa6wfiErkdQl1wzXisqkj1ApZrLaTJkH+gPJ53aJ2jL8YmsxcG19 XD63TQ5CLRVEQLhzwo0Th+PeBgcrbTjZhL/PnfQvrZ5qQuBShbA= -----END CERTIFICATE-----Generated at Thu Apr 17 21:08:44 2025 by rpki-client