$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7m2ujjKBfTt_aUZ_s0bl0nxMJ90.roa File: 7m2ujjKBfTt_aUZ_s0bl0nxMJ90.roa (raw, json) Hash identifier: Wb4XHoe3ufWZvh/eA5aWoaOgwxL16Yq9/eMn7SVtyZY= Subject key identifier: EE:6D:AE:8E:32:81:7D:3B:7F:69:46:7F:B3:46:E5:D2:7C:4C:27:DD Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 248E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7m2ujjKBfTt_aUZ_s0bl0nxMJ90.roa Signing time: Mon 10 Feb 2025 14:18:46 +0000 ROA not before: Mon 10 Feb 2025 14:18:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9358 (0x248e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EE6DAE8E32817D3B7F69467FB346E5D27C4C27DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:80:44:43:d9:c6:aa:ee:97:89:4f:bf:89:7f: 70:2a:58:90:e2:11:78:34:94:31:7b:4d:03:d7:bf: 91:ab:24:00:00:54:c1:38:86:e8:d3:fe:5b:ad:32: ae:29:e4:b5:c7:66:27:ed:30:50:b5:11:b6:09:f2: 05:14:47:a8:2b:dd:6d:43:00:a5:21:99:5e:39:12: 80:d0:0d:48:de:8c:16:9f:de:c9:d8:12:6d:7c:83: 1b:4f:3f:28:bf:a2:ed:ac:cd:90:0c:28:75:39:2c: b3:ad:de:65:52:3c:87:9b:d0:25:7a:f4:2e:5f:26: c4:ca:a8:89:cc:59:8b:21:78:55:75:e3:50:45:93: d7:b4:ce:4f:09:57:a2:b2:f7:71:77:e5:89:a0:1b: 4f:72:13:a8:ed:b1:1d:99:78:df:24:c8:4d:57:6d: e8:6b:3b:d7:60:4a:12:36:9e:1b:8f:36:6a:df:4f: d9:3a:2a:b9:5a:b8:92:10:93:9d:d9:6f:45:1a:20: b2:7e:2d:86:bf:a3:e3:d0:f7:03:54:4f:e0:32:dd: 1f:74:03:be:13:9a:ce:8a:01:50:0f:84:15:0d:dc: 80:5b:5d:d5:b0:e1:4b:97:ff:97:51:26:da:70:3d: 96:c3:b4:29:91:0a:03:c9:2f:48:df:81:a5:39:8d: 50:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:6D:AE:8E:32:81:7D:3B:7F:69:46:7F:B3:46:E5:D2:7C:4C:27:DD X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7m2ujjKBfTt_aUZ_s0bl0nxMJ90.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.168.0/21 Signature Algorithm: sha256WithRSAEncryption 11:a9:7b:b1:fb:f1:77:48:d6:92:72:8e:2b:58:b4:f9:48:2b: 77:64:ba:42:21:cf:70:50:43:4f:fc:b5:7e:df:28:81:ad:3a: 51:c4:0f:20:66:02:07:60:a4:e7:2a:04:f2:71:c3:33:e8:8c: 73:af:37:bd:b0:4f:4e:a2:f9:e2:0e:4e:64:cb:77:fb:40:3e: c3:07:b4:18:23:56:1b:56:66:d9:e5:df:42:05:4e:d9:ed:6d: 8d:b6:3d:6a:86:d4:fe:86:05:8f:5e:eb:84:97:e4:c2:4f:f4: f9:f8:09:13:dd:12:6d:6a:8f:50:81:18:fa:e7:9a:0a:26:fc: d6:f9:20:5c:fc:7a:ec:0f:50:82:10:51:4f:16:0e:ed:3b:68: 6a:78:ba:8e:2a:d9:9c:57:44:79:29:97:8b:2d:a7:5a:b5:52: 9c:f8:16:be:a6:84:88:c2:c1:ca:64:bc:a7:19:48:76:78:dd: f9:4f:5c:22:1b:63:a7:db:6b:0e:de:d3:32:db:77:c7:05:63: 02:22:de:16:f1:71:f4:06:df:26:77:1d:65:4b:67:45:86:80: ec:c9:3b:f7:f2:9a:d0:6d:47:69:79:b0:2c:a4:f5:61:28:60: f5:6c:34:22:5e:2a:96:77:27:2d:2b:ff:fb:9b:a8:1d:3b:02: 42:4d:e0:86 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFNkRBRThFMzI4MTdE M0I3RjY5NDY3RkIzNDZFNUQyN0M0QzI3REQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDzgERD2caq7peJT7+Jf3AqWJDiEXg0lDF7TQPXv5GrJAAAVME4 hujT/lutMq4p5LXHZiftMFC1EbYJ8gUUR6gr3W1DAKUhmV45EoDQDUjejBaf3snY Em18gxtPPyi/ou2szZAMKHU5LLOt3mVSPIeb0CV69C5fJsTKqInMWYsheFV141BF k9e0zk8JV6Ky93F35YmgG09yE6jtsR2ZeN8kyE1XbehrO9dgShI2nhuPNmrfT9k6 KrlauJIQk53Zb0UaILJ+LYa/o+PQ9wNUT+Ay3R90A74Tms6KAVAPhBUN3IBbXdWw 4UuX/5dRJtpwPZbDtCmRCgPJL0jfgaU5jVD7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7m2ujjKBfTt/aUZ/s0bl0nxMJ90wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzdtMnVqaktCZlR0X2FVWl9z MGJsMG54TUo5MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2qgwDQYJKoZIhvcNAQELBQADggEBABGpe7H78XdI1pJyjitYtPlIK3dkukIhz3BQ Q0/8tX7fKIGtOlHEDyBmAgdgpOcqBPJxwzPojHOvN72wT06i+eIOTmTLd/tAPsMH tBgjVhtWZtnl30IFTtntbY22PWqG1P6GBY9e64SX5MJP9Pn4CRPdEm1qj1CBGPrn mgom/Nb5IFz8euwPUIIQUU8WDu07aGp4uo4q2ZxXRHkpl4stp1q1Upz4Fr6mhIjC wcpkvKcZSHZ43flPXCIbY6fbaw7e0zLbd8cFYwIi3hbxcfQG3yZ3HWVLZ0WGgOzJ O/fymtBtR2l5sCyk9WEoYPVsNCJeKpZ3Jy0r//ubqB07AkJN4IY= -----END CERTIFICATE-----Generated at Fri Apr 18 16:40:42 2025 by rpki-client