$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/A873IAYgMta7HphPRMGHrg2DZKs.roa File: A873IAYgMta7HphPRMGHrg2DZKs.roa (raw, json) Hash identifier: IU09ExWderhEgEjGMc9C+tyQSnP0+x8k23JVUUYYch4= Subject key identifier: 03:CE:F7:20:06:20:32:D6:BB:1E:98:4F:44:C1:87:AE:0D:83:64:AB Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23B0 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/A873IAYgMta7HphPRMGHrg2DZKs.roa Signing time: Mon 10 Feb 2025 14:17:49 +0000 ROA not before: Mon 10 Feb 2025 14:17:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 61.60.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9136 (0x23b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=03CEF720062032D6BB1E984F44C187AE0D8364AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cc:6a:93:6a:52:a1:f8:80:fb:3e:87:29:ba: bc:8e:4a:c1:c8:d9:d7:5b:a5:e6:c8:4d:aa:1b:d0: 40:92:3a:cd:9e:e5:c9:1b:cb:f2:f1:10:cf:96:0c: b6:7e:52:5d:8e:34:2b:b4:b7:85:a8:d5:23:4d:33: ae:b4:bc:a9:2b:5a:f7:39:29:3e:2c:3e:e4:ea:e5: e2:ee:de:99:9e:91:48:ad:38:14:aa:2e:8d:01:aa: 1a:a3:25:91:1c:ed:3f:28:b1:0e:00:8b:fa:16:1f: 98:8e:ad:d6:ee:bf:b1:31:94:b8:be:98:ee:73:6f: 48:ff:a2:1c:ac:74:20:e7:7c:ec:ba:7b:4f:b0:3e: 2e:7c:e6:49:8c:13:d4:52:33:7e:6d:39:4b:36:ec: 4d:90:fc:6c:49:42:5a:e8:53:ca:8c:7a:db:e6:3c: 58:a7:54:46:b2:7d:e3:99:35:de:8b:1b:da:75:11: 3c:40:dd:ed:7a:41:ca:01:7b:ae:ff:a5:0d:75:4b: aa:98:7c:d5:ba:ed:37:6e:73:3c:1b:fa:3c:0d:a1: 31:55:3f:89:5f:4c:05:36:0f:99:39:4c:1e:e2:d9: 83:01:45:b3:0a:91:b4:21:15:96:d2:88:09:65:65: f9:69:6a:9f:da:a6:df:b2:6b:c9:03:46:3b:a9:ec: 2d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CE:F7:20:06:20:32:D6:BB:1E:98:4F:44:C1:87:AE:0D:83:64:AB X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/A873IAYgMta7HphPRMGHrg2DZKs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.215.0/24 Signature Algorithm: sha256WithRSAEncryption 31:a0:55:7a:5f:c3:a9:99:9a:a5:d3:4e:0b:34:e2:75:f0:63: ec:56:6a:06:16:51:9e:93:07:8e:6f:77:71:7f:e5:67:10:8c: c5:39:07:24:eb:7a:c0:57:52:09:45:ec:8b:3d:2b:a5:6c:e1: 90:6a:86:8f:81:72:d9:07:3a:40:e7:f9:d5:b1:80:95:3c:d0: 93:1a:e4:99:1f:f7:56:18:fd:65:c1:23:1e:2d:07:72:4c:0f: 86:7a:d9:ed:2e:e0:07:58:8e:05:fa:2d:bf:c8:ae:b7:b2:f1: 54:f9:bf:6e:3d:3a:59:e0:ae:ad:c1:b0:c2:a0:26:48:9e:62: c4:35:6d:3f:86:6a:64:e7:0a:1d:5d:e0:87:67:fa:70:91:b6: cc:8f:19:e5:dd:4b:3d:45:35:94:f1:f8:e4:b7:7c:8e:b8:f9: da:25:b0:e3:c6:00:c9:30:f1:d0:99:e8:58:8a:60:31:f2:cd: 6d:1f:70:41:17:3b:e9:26:59:c6:87:87:77:f7:1f:f1:ab:47: 9d:e3:2d:70:8f:90:fb:97:19:6c:3b:05:a6:3d:a4:f0:bf:1d: db:4b:17:67:67:38:df:42:24:a4:c5:59:fd:27:7b:83:e5:53: bd:c2:61:21:b5:93:04:9b:3b:3b:de:23:76:c1:4a:8c:1d:5a: 74:20:be:70 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI7AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAzQ0VGNzIwMDYyMDMy RDZCQjFFOTg0RjQ0QzE4N0FFMEQ4MzY0QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6zGqTalKh+ID7PocpuryOSsHI2ddbpebITaob0ECSOs2e5ckb y/LxEM+WDLZ+Ul2ONCu0t4Wo1SNNM660vKkrWvc5KT4sPuTq5eLu3pmekUitOBSq Lo0BqhqjJZEc7T8osQ4Ai/oWH5iOrdbuv7ExlLi+mO5zb0j/ohysdCDnfOy6e0+w Pi585kmME9RSM35tOUs27E2Q/GxJQlroU8qMetvmPFinVEayfeOZNd6LG9p1ETxA 3e16QcoBe67/pQ11S6qYfNW67Tduczwb+jwNoTFVP4lfTAU2D5k5TB7i2YMBRbMK kbQhFZbSiAllZflpap/apt+ya8kDRjup7C2dAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUA873IAYgMta7HphPRMGHrg2DZKswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0E4NzNJQVlnTXRhN0hwaFBS TUdIcmcyRFpLcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 PNcwDQYJKoZIhvcNAQELBQADggEBADGgVXpfw6mZmqXTTgs04nXwY+xWagYWUZ6T B45vd3F/5WcQjMU5ByTresBXUglF7Is9K6Vs4ZBqho+BctkHOkDn+dWxgJU80JMa 5Jkf91YY/WXBIx4tB3JMD4Z62e0u4AdYjgX6Lb/Irrey8VT5v249Olngrq3BsMKg JkieYsQ1bT+GamTnCh1d4Idn+nCRtsyPGeXdSz1FNZTx+OS3fI64+dolsOPGAMkw 8dCZ6FiKYDHyzW0fcEEXO+kmWcaHh3f3H/GrR53jLXCPkPuXGWw7BaY9pPC/HdtL F2dnON9CJKTFWf0ne4PlU73CYSG1kwSbOzveI3bBSowdWnQgvnA= -----END CERTIFICATE-----Generated at Thu Apr 17 20:54:04 2025 by rpki-client