$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AhVKn2ir6syGM5DXiUTCknBE6gA.roa File: AhVKn2ir6syGM5DXiUTCknBE6gA.roa (raw, json) Hash identifier: T11YnEKQNqFjiA1Ai1qXUIUOkcCvFqJ24c39smYG45I= Subject key identifier: 02:15:4A:9F:68:AB:EA:CC:86:33:90:D7:89:44:C2:92:70:44:EA:00 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 247B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AhVKn2ir6syGM5DXiUTCknBE6gA.roa Signing time: Mon 10 Feb 2025 14:18:41 +0000 ROA not before: Mon 10 Feb 2025 14:18:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 122.100.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9339 (0x247b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=02154A9F68ABEACC863390D78944C2927044EA00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:64:8a:fa:8e:15:2b:3a:32:80:c1:49:f4:23: c3:d9:53:d9:4e:42:1a:76:ee:8a:03:37:37:8a:3c: 63:18:33:e1:ea:5c:91:41:09:a3:08:11:bb:f9:7d: 46:ba:67:6e:0c:19:d1:71:50:18:e7:85:3c:90:f8: 30:2d:8d:cb:70:84:b7:70:2f:6b:86:e1:f6:70:9f: d1:d3:13:10:b8:ba:a2:28:3c:11:b8:af:73:30:07: 73:94:a2:a8:bf:84:dd:81:2e:1f:3c:b8:f7:13:77: 79:95:f6:35:28:12:2f:f5:87:da:ab:d9:00:a3:f1: 0f:2b:8d:00:ef:fb:5e:88:5c:61:c1:58:36:ff:d4: eb:95:19:86:f2:66:e7:81:eb:2d:5f:19:e1:33:23: 8e:67:01:da:f8:62:6e:4d:c8:6c:74:a8:95:53:e8: a8:9a:8d:3e:92:a1:bc:50:1d:3d:2b:95:19:4f:ca: 36:4e:e2:0d:1b:59:4d:e5:8d:68:ce:19:39:c4:f4: 4f:c6:7a:06:ba:06:2f:ef:72:97:bf:bb:81:d9:4a: 9f:09:16:42:9e:e1:4d:22:7e:b9:c3:d8:c2:6a:fc: cc:fe:d7:9b:81:cd:ed:f7:60:d1:52:db:e0:83:6c: 30:4e:20:53:12:51:c8:35:b9:7e:a7:e0:9d:1d:50: e0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:15:4A:9F:68:AB:EA:CC:86:33:90:D7:89:44:C2:92:70:44:EA:00 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AhVKn2ir6syGM5DXiUTCknBE6gA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.64.0/18 Signature Algorithm: sha256WithRSAEncryption 99:2a:6a:0e:ef:90:05:06:db:4a:31:19:71:9c:2f:d6:5d:d9: b2:2c:e7:01:3f:6b:72:7e:07:7a:fb:04:05:ac:4a:0a:20:76: 9f:c3:bd:8a:31:e2:07:bf:e1:35:fd:a0:89:27:70:02:f8:2d: 39:13:d1:e9:2b:87:60:0a:b3:6e:a5:ab:86:7e:61:46:56:9a: 8f:5a:38:de:6e:6b:19:e1:50:d0:20:2b:e8:44:8a:ea:39:dd: c1:bd:05:81:58:ad:64:85:5e:05:49:11:27:85:e6:32:8f:19: 3e:c3:3c:57:d3:e0:b9:e8:6c:fb:8c:89:d7:9d:f9:12:69:16: 59:ba:08:7e:8e:c8:9a:52:9d:d5:f9:3b:8e:0c:b6:d0:a8:4c: 75:72:ef:2f:a0:f7:dc:74:67:22:0d:01:ea:31:ff:5c:b2:b3: 68:6e:bb:86:2f:39:66:1a:95:a2:49:29:50:6f:df:25:08:ef: d2:41:f8:b4:c6:a4:8c:94:2a:06:18:55:f4:f1:42:15:21:6b: 16:7b:37:2b:3c:19:fe:f9:c8:10:42:8f:c7:77:b3:28:d4:e9: 0a:e0:1d:13:4f:af:33:f9:6b:24:90:9f:8d:b7:a1:8e:77:d2: da:7f:3a:72:d3:d5:50:31:a8:ae:6d:c9:9a:b4:73:94:75:fe: ba:86:12:7c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyMTU0QTlGNjhBQkVB Q0M4NjMzOTBENzg5NDRDMjkyNzA0NEVBMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMZIr6jhUrOjKAwUn0I8PZU9lOQhp27ooDNzeKPGMYM+HqXJFB CaMIEbv5fUa6Z24MGdFxUBjnhTyQ+DAtjctwhLdwL2uG4fZwn9HTExC4uqIoPBG4 r3MwB3OUoqi/hN2BLh88uPcTd3mV9jUoEi/1h9qr2QCj8Q8rjQDv+16IXGHBWDb/ 1OuVGYbyZueB6y1fGeEzI45nAdr4Ym5NyGx0qJVT6KiajT6SobxQHT0rlRlPyjZO 4g0bWU3ljWjOGTnE9E/Gega6Bi/vcpe/u4HZSp8JFkKe4U0ifrnD2MJq/Mz+15uB ze33YNFS2+CDbDBOIFMSUcg1uX6n4J0dUOCVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAhVKn2ir6syGM5DXiUTCknBE6gAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0FoVktuMmlyNnN5R001RFhp VVRDa25CRTZnQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6 ZEAwDQYJKoZIhvcNAQELBQADggEBAJkqag7vkAUG20oxGXGcL9Zd2bIs5wE/a3J+ B3r7BAWsSgogdp/DvYox4ge/4TX9oIkncAL4LTkT0ekrh2AKs26lq4Z+YUZWmo9a ON5uaxnhUNAgK+hEiuo53cG9BYFYrWSFXgVJESeF5jKPGT7DPFfT4LnobPuMided +RJpFlm6CH6OyJpSndX5O44MttCoTHVy7y+g99x0ZyINAeox/1yys2huu4YvOWYa laJJKVBv3yUI79JB+LTGpIyUKgYYVfTxQhUhaxZ7Nys8Gf75yBBCj8d3syjU6Qrg HRNPrzP5aySQn423oY530tp/OnLT1VAxqK5tyZq0c5R1/rqGEnw= -----END CERTIFICATE-----Generated at Fri Apr 18 16:54:08 2025 by rpki-client