$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5olUyw3ZTZM-jj5oakoQb0LPYio.roa File: 5olUyw3ZTZM-jj5oakoQb0LPYio.roa (raw, json) Hash identifier: sFZmEZYK0VXI3IfZssodBR+eKL7ragXsKzT/LqGaYoQ= Subject key identifier: E6:89:54:CB:0D:D9:4D:93:3E:8E:3E:68:6A:4A:10:6F:42:CF:62:2A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2435 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5olUyw3ZTZM-jj5oakoQb0LPYio.roa Signing time: Mon 10 Feb 2025 14:18:24 +0000 ROA not before: Mon 10 Feb 2025 14:18:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9269 (0x2435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E68954CB0DD94D933E8E3E686A4A106F42CF622A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c6:72:1f:86:eb:72:25:d0:cf:e1:09:18:90: 15:40:00:93:b0:a6:aa:ff:43:a8:d9:0b:2c:13:f4: 95:dd:b7:43:86:63:10:cb:13:b8:39:ef:32:4b:6b: ff:2b:e4:a6:d5:32:07:ca:58:71:50:c7:8c:d0:66: 3a:f3:da:af:fb:7e:64:b0:ec:ec:b3:21:e6:85:6c: dc:c5:f7:5a:f4:b3:a5:34:66:64:ca:4e:57:e5:e8: 0c:5b:6c:8b:e8:9d:b1:1d:11:0a:db:18:e1:ee:da: 38:21:1c:96:15:5b:e3:ee:0e:03:61:9e:37:09:4d: ef:56:c8:2e:46:d1:72:1f:de:45:2d:ed:7b:0f:cf: 5d:33:97:be:b3:10:8d:7b:cc:f1:25:b0:fd:13:55: 4e:bd:b8:30:c7:7f:57:cc:51:fe:f8:7a:a4:41:f6: c8:d2:2c:20:91:bf:f0:3a:57:a7:b8:59:b3:47:78: cf:a9:2c:b3:0d:a2:bc:4f:73:2b:af:22:fe:f1:62: 5b:cf:c2:19:04:5e:f3:f3:c0:df:32:0e:5b:54:a1: 6a:fb:df:af:77:a0:93:fa:3c:04:f5:46:95:b6:80: 9e:a5:2d:85:f6:ce:67:01:52:1b:f4:5a:0f:a5:c2: 35:ed:74:e6:a1:dc:f6:64:75:4b:a7:ee:36:ef:7d: 35:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:89:54:CB:0D:D9:4D:93:3E:8E:3E:68:6A:4A:10:6F:42:CF:62:2A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5olUyw3ZTZM-jj5oakoQb0LPYio.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.176.0/21 Signature Algorithm: sha256WithRSAEncryption 9e:1a:0c:1a:b5:d0:56:c8:0b:f3:0e:ce:4c:9f:eb:8b:d0:5b: e9:0e:81:4f:ab:fb:82:c2:08:3d:25:b4:cf:8a:50:63:b7:43: 40:46:d0:27:6a:13:92:25:2d:f8:da:95:34:dc:bb:a6:56:fa: dd:2a:1c:fa:d9:a1:7e:8e:b9:3a:c2:06:33:a6:4a:5a:0d:33: e8:91:93:2d:ad:8f:a4:f7:9e:32:85:39:cf:21:0c:fa:18:15: 43:0d:19:aa:a0:03:09:14:d9:a7:e2:20:52:7a:df:a4:14:5c: aa:e2:84:a8:0e:5b:b5:89:98:1b:9b:2f:d1:8a:99:d9:8f:9c: e5:08:bb:ba:d0:26:37:0f:56:eb:66:f4:9c:7c:b8:a1:02:65: 67:94:82:8f:67:d4:67:2b:6b:fe:c9:a2:06:06:2f:d1:23:da: 7f:39:bf:ab:3b:72:07:82:d1:b1:fb:67:6a:7a:41:81:96:a0: e5:18:70:ae:28:04:96:0e:60:24:4e:95:a5:7c:4a:6b:ee:05: 34:9e:d3:c5:50:10:c9:ba:a2:b7:3b:5b:b6:cf:da:36:d5:46: 72:eb:9e:b6:b6:76:35:f5:b9:c2:d7:b4:87:53:48:13:60:1f: 12:0b:e9:a5:45:c3:38:f0:7b:f4:14:fa:d4:fe:8b:74:70:46: 72:5a:26:37 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJDUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2ODk1NENCMEREOTRE OTMzRThFM0U2ODZBNEExMDZGNDJDRjYyMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdxnIfhutyJdDP4QkYkBVAAJOwpqr/Q6jZCywT9JXdt0OGYxDL E7g57zJLa/8r5KbVMgfKWHFQx4zQZjrz2q/7fmSw7OyzIeaFbNzF91r0s6U0ZmTK Tlfl6AxbbIvonbEdEQrbGOHu2jghHJYVW+PuDgNhnjcJTe9WyC5G0XIf3kUt7XsP z10zl76zEI17zPElsP0TVU69uDDHf1fMUf74eqRB9sjSLCCRv/A6V6e4WbNHeM+p LLMNorxPcyuvIv7xYlvPwhkEXvPzwN8yDltUoWr73693oJP6PAT1RpW2gJ6lLYX2 zmcBUhv0Wg+lwjXtdOah3PZkdUun7jbvfTVNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5olUyw3ZTZM+jj5oakoQb0LPYiowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzVvbFV5dzNaVFpNLWpqNW9h a29RYjBMUFlpby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nrAwDQYJKoZIhvcNAQELBQADggEBAJ4aDBq10FbIC/MOzkyf64vQW+kOgU+r+4LC CD0ltM+KUGO3Q0BG0CdqE5IlLfjalTTcu6ZW+t0qHPrZoX6OuTrCBjOmSloNM+iR ky2tj6T3njKFOc8hDPoYFUMNGaqgAwkU2afiIFJ636QUXKrihKgOW7WJmBubL9GK mdmPnOUIu7rQJjcPVutm9Jx8uKECZWeUgo9n1Gcra/7JogYGL9Ej2n85v6s7cgeC 0bH7Z2p6QYGWoOUYcK4oBJYOYCROlaV8SmvuBTSe08VQEMm6orc7W7bP2jbVRnLr nra2djX1ucLXtIdTSBNgHxIL6aVFwzjwe/QU+tT+i3RwRnJaJjc= -----END CERTIFICATE-----Generated at Fri Apr 18 16:43:01 2025 by rpki-client