$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Aw6KOevak2HsYSxijzsphdIbiis.roa File: Aw6KOevak2HsYSxijzsphdIbiis.roa (raw, json) Hash identifier: mOoUYQ9TlMjNY74Vd2PYvIV6Z6v+izligjtF2ZfMHnM= Subject key identifier: 03:0E:8A:39:EB:DA:93:61:EC:61:2C:62:8F:3B:29:85:D2:1B:8A:2B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2350 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Aw6KOevak2HsYSxijzsphdIbiis.roa Signing time: Mon 10 Feb 2025 14:17:27 +0000 ROA not before: Mon 10 Feb 2025 14:17:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 115.165.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9040 (0x2350) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=030E8A39EBDA9361EC612C628F3B2985D21B8A2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2d:92:74:de:75:7f:8d:c1:81:04:1a:eb:16: 71:77:4d:d0:94:af:fa:86:8b:88:7f:32:9e:c6:b8: 26:87:0e:d8:96:e4:38:2e:5d:cc:31:d7:19:75:6c: 16:0c:ad:15:ea:9d:de:09:d7:da:83:42:16:8f:a6: ee:23:bf:aa:20:a8:c0:aa:13:1f:ec:5b:4e:6e:cc: 16:51:62:53:d4:e1:2b:bc:b7:36:bb:1e:b3:65:4c: 97:2e:29:02:4e:48:46:9a:9f:c9:9a:df:45:8d:34: 21:57:fb:6f:8c:78:58:24:60:45:8f:ac:39:76:03: 84:39:6c:77:14:cd:3e:b6:05:19:da:24:48:ed:f6: 48:29:0a:aa:03:03:76:c6:09:e3:93:c0:26:81:5e: be:b8:a2:f3:ec:d1:1b:78:8d:c0:9a:68:54:c0:0d: 96:16:a2:cb:0d:b5:65:4b:68:21:04:63:6d:fd:44: c3:b1:b4:d3:f5:1a:fb:25:fa:ab:22:82:cc:28:b8: ea:66:ea:ce:bf:30:1f:f1:83:45:2c:3b:9e:f4:13: 5d:11:0a:41:92:2c:85:52:1d:bd:d1:99:bd:b4:b2: 46:66:d3:8f:62:c6:22:3d:f6:73:a6:d4:15:21:ff: 8b:d4:e6:8a:73:65:12:34:21:d4:1d:81:e4:9e:14: a4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:0E:8A:39:EB:DA:93:61:EC:61:2C:62:8F:3B:29:85:D2:1B:8A:2B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Aw6KOevak2HsYSxijzsphdIbiis.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.165.192.0/18 Signature Algorithm: sha256WithRSAEncryption 25:ff:9c:d2:52:36:3d:4f:5a:54:ac:90:8b:84:5f:86:e8:fb: 6f:c6:e4:43:8c:38:47:f8:8a:20:ab:f8:6f:c6:39:38:a9:2a: d6:a8:dd:eb:81:1a:22:d3:8c:17:d0:73:ec:34:c0:72:92:99: cc:d0:4a:8c:51:d8:27:f6:cc:d0:78:b5:0d:6d:ea:79:45:f0: 32:33:df:0b:e2:00:4d:ca:3b:92:c2:5f:7a:0a:52:8b:a5:b0: 04:de:38:8b:fc:e5:ed:cb:fd:1b:a5:fc:34:4c:a7:32:da:23: 79:f5:be:48:bf:3c:33:9c:e1:aa:8c:89:fd:8f:ac:e4:17:ed: df:22:b9:c8:2d:bb:ac:28:7e:c5:bd:0d:47:9d:f4:3d:70:64: aa:fc:d9:79:ea:69:f5:7b:0b:9f:e5:92:20:41:2b:ec:53:27: f5:ca:6f:4c:f3:8c:f7:7f:b3:d6:29:cc:a8:0c:43:34:1b:fb: 11:0f:4f:f8:a6:0a:ef:14:08:58:bb:e8:a2:c8:71:97:10:80: 5c:f5:29:1d:bb:de:50:76:e7:dc:01:09:ce:e0:88:45:54:d8: d6:4e:73:61:97:dc:62:75:94:9b:de:46:d8:7f:a1:15:22:5f: 48:7f:b0:ed:f1:b0:01:72:dc:d8:b3:09:df:cf:7c:51:71:3d: 38:67:71:83 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI1AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAzMEU4QTM5RUJEQTkz NjFFQzYxMkM2MjhGM0IyOTg1RDIxQjhBMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtLZJ03nV/jcGBBBrrFnF3TdCUr/qGi4h/Mp7GuCaHDtiW5Dgu Xcwx1xl1bBYMrRXqnd4J19qDQhaPpu4jv6ogqMCqEx/sW05uzBZRYlPU4Su8tza7 HrNlTJcuKQJOSEaan8ma30WNNCFX+2+MeFgkYEWPrDl2A4Q5bHcUzT62BRnaJEjt 9kgpCqoDA3bGCeOTwCaBXr64ovPs0Rt4jcCaaFTADZYWossNtWVLaCEEY239RMOx tNP1Gvsl+qsigswouOpm6s6/MB/xg0UsO570E10RCkGSLIVSHb3Rmb20skZm049i xiI99nOm1BUh/4vU5opzZRI0IdQdgeSeFKT3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAw6KOevak2HsYSxijzsphdIbiiswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0F3NktPZXZhazJIc1lTeGlq enNwaGRJYmlpcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZz pcAwDQYJKoZIhvcNAQELBQADggEBACX/nNJSNj1PWlSskIuEX4bo+2/G5EOMOEf4 iiCr+G/GOTipKtao3euBGiLTjBfQc+w0wHKSmczQSoxR2Cf2zNB4tQ1t6nlF8DIz 3wviAE3KO5LCX3oKUoulsATeOIv85e3L/Rul/DRMpzLaI3n1vki/PDOc4aqMif2P rOQX7d8iucgtu6wofsW9DUed9D1wZKr82XnqafV7C5/lkiBBK+xTJ/XKb0zzjPd/ s9YpzKgMQzQb+xEPT/imCu8UCFi76KLIcZcQgFz1KR273lB259wBCc7giEVU2NZO c2GX3GJ1lJveRth/oRUiX0h/sO3xsAFy3NizCd/PfFFxPThncYM= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:16 2025 by rpki-client