$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BDI4hD7PCJIc023x_5FZ0Ijtpdk.roa File: BDI4hD7PCJIc023x_5FZ0Ijtpdk.roa (raw, json) Hash identifier: /f2gB95xA9UPQtBwGY/77Jf+pP5iuxGhOjts68vFwKk= Subject key identifier: 04:32:38:84:3E:CF:08:92:1C:D3:6D:F1:FF:91:59:D0:88:ED:A5:D9 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2492 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BDI4hD7PCJIc023x_5FZ0Ijtpdk.roa Signing time: Mon 10 Feb 2025 14:18:47 +0000 ROA not before: Mon 10 Feb 2025 14:18:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 49.158.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9362 (0x2492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=043238843ECF08921CD36DF1FF9159D088EDA5D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:77:22:de:44:43:08:5f:f4:f9:f6:5e:87:6f: 12:93:07:91:18:e9:8f:e8:d9:96:43:8d:32:fe:63: 58:79:4f:d5:1d:58:00:15:49:cd:21:a0:e4:78:ea: c6:28:c0:c4:2d:76:77:6b:28:32:16:6c:73:38:ad: cd:5d:e9:85:7b:68:2f:52:45:b7:d7:02:7e:78:81: 62:8a:d2:32:e4:09:bf:63:23:24:34:df:95:e8:83: e7:d7:c0:c1:17:b7:6e:28:27:c5:66:a1:10:40:be: 1d:b6:4f:ed:b2:14:8f:19:d9:c1:e3:52:e8:bf:fd: 11:69:e2:77:10:21:d2:55:6b:79:27:66:10:e3:7f: d4:64:2e:af:09:b1:4f:3c:c6:f3:f5:0f:6e:48:b8: 91:45:0b:44:9b:1e:68:90:97:c9:df:d2:72:ad:cb: 1f:61:94:40:62:02:7f:87:5a:dd:c5:a5:73:d6:88: 34:8d:bb:3c:5f:6a:38:b6:a4:44:b1:72:4a:8b:6f: ed:5f:99:35:56:a0:87:84:37:49:f1:68:6a:1c:28: 54:52:29:2b:c0:d2:51:b7:60:a2:dc:d6:e2:fe:d9: 1f:12:4f:8d:86:e6:4e:a4:48:05:0b:59:0d:e5:b4: 4c:e0:64:54:2b:0e:34:cf:6c:16:29:75:5c:1b:6f: 8f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:32:38:84:3E:CF:08:92:1C:D3:6D:F1:FF:91:59:D0:88:ED:A5:D9 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BDI4hD7PCJIc023x_5FZ0Ijtpdk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.224.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:ca:8f:1b:fa:3e:25:eb:94:9f:73:96:e9:57:71:b0:e1:7f: df:2e:f5:fd:c0:15:cc:99:7a:64:9d:c4:59:f6:94:96:a3:58: e2:10:2f:54:a6:23:df:f4:46:60:05:b0:36:04:a3:32:f5:b6: ac:73:c8:14:80:93:97:14:89:14:01:55:61:32:b7:be:a1:34: 47:27:1d:b5:70:e5:db:82:68:3c:4b:61:e8:c1:00:00:de:a9: ac:40:07:9e:bc:5d:37:d4:a6:7a:a2:c8:0f:19:15:bf:19:c2: f1:47:9f:83:21:cc:7c:cf:16:0b:1e:4a:95:86:ee:49:3f:c4: 2b:52:e5:cb:61:02:3a:4e:25:f4:ee:53:f2:b9:11:d6:a4:07: db:74:e5:73:e4:1d:85:0d:fb:b1:82:f8:a5:db:9c:eb:3d:60: b4:3e:02:71:e3:a9:1a:ed:92:fe:51:25:e9:7d:0f:fd:76:8c: ed:1e:ad:53:29:09:e0:3a:79:fb:f3:3f:95:9f:80:f0:c8:37: 17:f3:fd:09:fc:ca:e0:e0:81:d4:19:cc:76:7c:3b:af:8b:47: ae:66:3c:96:e3:db:83:9b:ed:30:91:dc:f6:a2:9e:d5:12:bb: 83:82:0d:9f:35:f7:d4:6f:56:98:a5:33:e2:19:3a:27:5b:86: 6a:93:47:e0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA0MzIzODg0M0VDRjA4 OTIxQ0QzNkRGMUZGOTE1OUQwODhFREE1RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzdyLeREMIX/T59l6HbxKTB5EY6Y/o2ZZDjTL+Y1h5T9UdWAAV Sc0hoOR46sYowMQtdndrKDIWbHM4rc1d6YV7aC9SRbfXAn54gWKK0jLkCb9jIyQ0 35Xog+fXwMEXt24oJ8VmoRBAvh22T+2yFI8Z2cHjUui//RFp4ncQIdJVa3knZhDj f9RkLq8JsU88xvP1D25IuJFFC0SbHmiQl8nf0nKtyx9hlEBiAn+HWt3FpXPWiDSN uzxfaji2pESxckqLb+1fmTVWoIeEN0nxaGocKFRSKSvA0lG3YKLc1uL+2R8ST42G 5k6kSAULWQ3ltEzgZFQrDjTPbBYpdVwbb4/BAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBDI4hD7PCJIc023x/5FZ0IjtpdkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0JESTRoRDdQQ0pJYzAyM3hf NUZaMElqdHBkay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nuAwDQYJKoZIhvcNAQELBQADggEBAI7Kjxv6PiXrlJ9zlulXcbDhf98u9f3AFcyZ emSdxFn2lJajWOIQL1SmI9/0RmAFsDYEozL1tqxzyBSAk5cUiRQBVWEyt76hNEcn HbVw5duCaDxLYejBAADeqaxAB568XTfUpnqiyA8ZFb8ZwvFHn4MhzHzPFgseSpWG 7kk/xCtS5cthAjpOJfTuU/K5EdakB9t05XPkHYUN+7GC+KXbnOs9YLQ+AnHjqRrt kv5RJel9D/12jO0erVMpCeA6efvzP5WfgPDINxfz/Qn8yuDggdQZzHZ8O6+LR65m PJbj24Ob7TCR3PaintUSu4OCDZ8199RvVpilM+IZOidbhmqTR+A= -----END CERTIFICATE-----Generated at Fri Apr 18 16:51:40 2025 by rpki-client