$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/64DYkXlToKJO-ABsQxUVL1SVIKw.roa File: 64DYkXlToKJO-ABsQxUVL1SVIKw.roa (raw, json) Hash identifier: 1KXSU8P9vqCl59iGABXcGiC5dfP+CXMzYX6LQserJfk= Subject key identifier: EB:80:D8:91:79:53:A0:A2:4E:F8:00:6C:43:15:15:2F:54:95:20:AC Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2479 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/64DYkXlToKJO-ABsQxUVL1SVIKw.roa Signing time: Mon 10 Feb 2025 14:18:41 +0000 ROA not before: Mon 10 Feb 2025 14:18:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 114.198.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9337 (0x2479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EB80D8917953A0A24EF8006C4315152F549520AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:40:8e:17:00:cc:3f:9b:6c:64:f6:8d:02:60: 31:4a:aa:40:f9:10:da:68:31:57:fe:25:b9:a5:87: 29:68:8a:a4:6a:bb:89:58:06:b3:38:72:0b:f8:07: 85:8a:44:b1:84:c2:31:e2:86:fc:54:d0:09:68:e1: c6:5f:56:ba:0b:eb:93:00:05:45:a6:d6:41:31:df: 81:f1:a0:33:2b:6c:fb:b1:c2:a4:aa:0e:28:34:ac: b1:70:53:2a:ea:46:d8:6b:ba:3c:f2:4b:55:9a:38: 8a:e2:48:ad:4a:62:ea:38:3f:bc:72:1a:e4:98:6b: 3d:ab:38:16:4e:da:0d:dd:22:3f:6b:c8:10:67:80: 84:21:f5:a9:93:b3:9f:5c:f3:13:26:a9:32:b8:d6: 2c:f4:a3:12:c3:b4:7e:90:77:ef:e9:be:5a:57:21: 64:71:9d:f3:9b:e1:a1:5b:c6:5d:1a:5b:2f:1f:c4: 82:47:a3:94:c0:16:da:f5:63:ba:77:67:7f:23:77: c9:f8:f7:d8:f5:52:c5:27:3a:3d:3c:2e:38:9e:1f: d2:4c:60:6c:db:50:65:68:56:0d:8b:d1:13:3b:22: da:36:ef:4e:f2:4d:f3:44:41:01:15:cf:f2:16:14: 7a:e8:a2:06:7d:25:4b:68:de:17:f6:85:47:a3:32: 3f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:80:D8:91:79:53:A0:A2:4E:F8:00:6C:43:15:15:2F:54:95:20:AC X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/64DYkXlToKJO-ABsQxUVL1SVIKw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.160.0/20 Signature Algorithm: sha256WithRSAEncryption 98:18:85:29:7d:2f:c6:b2:92:a1:74:35:7a:a5:0a:7d:46:84: 36:f6:06:35:dd:9a:b8:db:96:94:5f:2b:e8:ba:7b:27:84:a3: bc:86:23:60:1e:fa:99:b0:45:f6:ea:22:f6:c2:e7:c7:c2:f3: 79:35:80:74:0c:84:68:66:55:8f:47:96:24:72:10:4d:74:56: be:b7:78:bf:57:65:47:7c:d3:5a:1c:1a:5d:4a:a8:98:37:1e: 2b:3e:d7:89:c8:6a:06:e4:e9:8d:a5:20:76:52:31:a9:e8:b1: 66:1d:3d:61:62:2b:b2:1d:b6:e6:65:5b:74:6f:12:7e:30:2f: 3c:99:f5:a4:13:09:ce:e2:5f:87:90:77:11:64:01:3e:19:d3: ef:57:4b:15:65:a7:1b:50:2a:df:c0:26:52:96:d6:1c:55:bb: f7:bc:41:8b:11:e8:47:a3:29:d5:57:13:43:7e:b4:58:5b:bf: 3b:70:54:50:a0:7a:f0:10:30:81:30:f7:6a:c0:a3:5c:94:4b: 14:c6:22:ab:fe:f8:5c:6b:4d:0b:fa:fb:d5:60:1f:ef:ba:03: c4:fe:3e:e4:51:2d:ec:1a:d0:d8:f6:cf:03:7a:e6:31:4b:91: 72:3e:ba:21:6d:5d:b8:1d:c9:8d:d5:43:f1:cd:b2:df:d0:e0: 19:12:9d:8d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVCODBEODkxNzk1M0Ew QTI0RUY4MDA2QzQzMTUxNTJGNTQ5NTIwQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEQI4XAMw/m2xk9o0CYDFKqkD5ENpoMVf+JbmlhyloiqRqu4lY BrM4cgv4B4WKRLGEwjHihvxU0Alo4cZfVroL65MABUWm1kEx34HxoDMrbPuxwqSq Dig0rLFwUyrqRthrujzyS1WaOIriSK1KYuo4P7xyGuSYaz2rOBZO2g3dIj9ryBBn gIQh9amTs59c8xMmqTK41iz0oxLDtH6Qd+/pvlpXIWRxnfOb4aFbxl0aWy8fxIJH o5TAFtr1Y7p3Z38jd8n499j1UsUnOj08LjieH9JMYGzbUGVoVg2L0RM7Ito2707y TfNEQQEVz/IWFHroogZ9JUto3hf2hUejMj/BAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU64DYkXlToKJO+ABsQxUVL1SVIKwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzY0RFlrWGxUb0tKTy1BQnNR eFVWTDFTVklLdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy xqAwDQYJKoZIhvcNAQELBQADggEBAJgYhSl9L8aykqF0NXqlCn1GhDb2BjXdmrjb lpRfK+i6eyeEo7yGI2Ae+pmwRfbqIvbC58fC83k1gHQMhGhmVY9HliRyEE10Vr63 eL9XZUd801ocGl1KqJg3His+14nIagbk6Y2lIHZSManosWYdPWFiK7IdtuZlW3Rv En4wLzyZ9aQTCc7iX4eQdxFkAT4Z0+9XSxVlpxtQKt/AJlKW1hxVu/e8QYsR6Eej KdVXE0N+tFhbvztwVFCgevAQMIEw92rAo1yUSxTGIqv++FxrTQv6+9VgH++6A8T+ PuRRLewa0Nj2zwN65jFLkXI+uiFtXbgdyY3VQ/HNst/Q4BkSnY0= -----END CERTIFICATE-----Generated at Fri Apr 18 16:48:19 2025 by rpki-client