$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8b6luFIRsWG3fGko81I-TBNS7dU.roa File: 8b6luFIRsWG3fGko81I-TBNS7dU.roa (raw, json) Hash identifier: F4cXOKtj7qEyk7cctWeh+RVXLKxDeihnmOa9Deefc6s= Subject key identifier: F1:BE:A5:B8:52:11:B1:61:B7:7C:69:28:F3:52:3E:4C:13:52:ED:D5 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2388 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8b6luFIRsWG3fGko81I-TBNS7dU.roa Signing time: Mon 10 Feb 2025 14:17:40 +0000 ROA not before: Mon 10 Feb 2025 14:17:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9096 (0x2388) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F1BEA5B85211B161B77C6928F3523E4C1352EDD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d2:dd:7c:5e:14:ca:64:64:c4:dd:e3:18:07: 88:c5:58:ab:fa:71:1a:86:d3:46:77:b3:56:6f:34: c7:11:8b:53:73:f2:02:44:a4:8c:65:aa:2d:27:ac: c6:37:71:cc:96:7e:7f:96:d0:95:b1:a2:bb:7d:00: cd:aa:85:64:89:8c:58:5b:21:e5:d6:fe:1a:36:2a: 37:93:85:38:cb:a9:a2:9d:e8:cf:3d:0d:38:cb:bd: 87:21:d8:56:0a:b4:fb:14:84:ba:c0:0c:ac:d2:04: 9f:df:c4:c9:fc:2d:0f:fe:2a:07:73:7f:fa:ed:5b: 28:f7:bc:b7:25:9d:f1:12:55:46:6e:4f:fa:a0:0a: a6:7a:e5:3d:26:75:8a:9c:f7:1a:f4:de:71:13:22: 2b:8f:d7:b6:5d:6b:d9:87:96:d2:54:ec:3d:62:2b: 0e:20:e7:2a:10:97:f4:22:21:c7:be:14:9b:22:50: ef:1b:6c:88:21:2f:3e:4e:f8:ef:ac:ef:b4:d1:13: 13:66:d1:46:86:92:bf:c1:05:52:49:d5:0b:8b:c8: 13:5d:da:07:2b:09:27:2b:b3:81:36:a5:e1:4b:52: 61:91:e7:72:b6:3f:e5:8a:b8:32:29:d9:82:14:62: ec:e9:ab:4a:37:df:88:93:e1:12:dd:5a:dd:90:6a: c4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:BE:A5:B8:52:11:B1:61:B7:7C:69:28:F3:52:3E:4C:13:52:ED:D5 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8b6luFIRsWG3fGko81I-TBNS7dU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.176.0/22 Signature Algorithm: sha256WithRSAEncryption 46:15:9c:50:5d:7e:7d:5e:5c:65:19:6c:f0:7f:c8:64:08:37: 6d:c9:d6:aa:c0:9d:4d:25:85:d5:d1:a2:eb:ab:48:19:2c:13: c0:f1:9c:dd:64:39:37:c2:37:e2:8e:77:70:de:fe:31:a4:cf: ae:20:9a:7e:bf:12:d4:60:06:a9:14:77:d8:78:f3:3b:4a:e2: a6:60:76:e0:6b:70:c1:27:be:99:02:6c:39:79:0f:85:cd:53: 9e:94:89:81:17:dc:3b:50:0f:6e:05:c7:58:07:4a:b3:0e:5e: 4f:f6:fd:92:fd:0a:d5:95:cc:f8:89:c1:3a:79:76:10:0e:e4: 3a:27:ed:62:a3:32:23:b1:bc:a0:77:56:07:f0:c2:75:99:ad: 68:59:af:d3:81:85:70:f5:ba:0e:8b:36:e3:eb:00:d7:86:37: e2:35:e7:64:3f:5a:fa:6e:c0:c1:37:4b:cd:1c:b7:43:c9:f5: db:1a:78:ab:1c:d3:41:e2:6f:4b:ff:2e:d0:a9:e9:1b:89:93: 73:12:c4:4b:d0:3f:63:d1:11:40:83:fd:af:24:2c:c9:ce:e1: e6:2c:84:74:27:3c:17:4c:b6:12:30:37:e4:d0:f6:e7:b4:eb: 67:6a:a2:5d:ba:90:f9:cc:ac:93:ba:a1:e9:16:d2:76:2e:69: 50:8f:94:d0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI4gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYxQkVBNUI4NTIxMUIx NjFCNzdDNjkyOEYzNTIzRTRDMTM1MkVERDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC30t18XhTKZGTE3eMYB4jFWKv6cRqG00Z3s1ZvNMcRi1Nz8gJE pIxlqi0nrMY3ccyWfn+W0JWxort9AM2qhWSJjFhbIeXW/ho2KjeThTjLqaKd6M89 DTjLvYch2FYKtPsUhLrADKzSBJ/fxMn8LQ/+Kgdzf/rtWyj3vLclnfESVUZuT/qg CqZ65T0mdYqc9xr03nETIiuP17Zda9mHltJU7D1iKw4g5yoQl/QiIce+FJsiUO8b bIghLz5O+O+s77TRExNm0UaGkr/BBVJJ1QuLyBNd2gcrCScrs4E2peFLUmGR53K2 P+WKuDIp2YIUYuzpq0o334iT4RLdWt2QasQXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8b6luFIRsWG3fGko81I+TBNS7dUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzhiNmx1RklSc1dHM2ZHa284 MUktVEJOUzdkVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2rAwDQYJKoZIhvcNAQELBQADggEBAEYVnFBdfn1eXGUZbPB/yGQIN23J1qrAnU0l hdXRouurSBksE8DxnN1kOTfCN+KOd3De/jGkz64gmn6/EtRgBqkUd9h48ztK4qZg duBrcMEnvpkCbDl5D4XNU56UiYEX3DtQD24Fx1gHSrMOXk/2/ZL9CtWVzPiJwTp5 dhAO5Don7WKjMiOxvKB3VgfwwnWZrWhZr9OBhXD1ug6LNuPrANeGN+I152Q/Wvpu wME3S80ct0PJ9dsaeKsc00Hib0v/LtCp6RuJk3MSxEvQP2PREUCD/a8kLMnO4eYs hHQnPBdMthIwN+TQ9ue062dqol26kPnMrJO6oekW0nYuaVCPlNA= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:11 2025 by rpki-client