$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BLtN1MAnZRGOo5pf0UjeZFwErIs.roa File: BLtN1MAnZRGOo5pf0UjeZFwErIs.roa (raw, json) Hash identifier: 1aK2VDs9xPCTxk8LiKBzU4HTk276Zhi38gJx3R33J40= Subject key identifier: 04:BB:4D:D4:C0:27:65:11:8E:A3:9A:5F:D1:48:DE:64:5C:04:AC:8B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2414 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BLtN1MAnZRGOo5pf0UjeZFwErIs.roa Signing time: Mon 10 Feb 2025 14:18:15 +0000 ROA not before: Mon 10 Feb 2025 14:18:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 123.0.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9236 (0x2414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:15 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=04BB4DD4C02765118EA39A5FD148DE645C04AC8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f1:f3:90:3a:8e:b5:c6:f7:2e:fd:21:80:64: a3:d5:b5:52:c6:05:b0:5a:72:26:df:11:e2:59:88: db:a0:56:df:31:3b:14:6f:e9:89:ea:aa:c6:e7:eb: 6e:bc:d9:b3:0d:26:8a:25:f1:14:d6:c1:1e:e5:4e: 23:f8:99:36:4c:12:c3:27:0d:05:fb:b2:e5:24:76: 49:05:28:3e:b1:9e:72:20:8a:f2:b2:b3:c9:09:70: 8c:31:63:38:4c:05:c3:20:9c:41:f9:d6:57:87:f1: 98:57:5a:15:41:25:fa:b5:9a:52:00:e7:53:1f:6b: d8:48:13:15:35:f4:ec:5b:76:92:b0:f6:85:8a:1a: 55:a3:5d:34:c6:50:e0:33:f1:b7:ec:86:e7:bc:dc: 85:c0:45:fa:1c:6f:9e:95:cf:fd:98:ca:85:2e:21: 8b:96:dd:1a:df:d5:bf:31:8d:ff:93:c0:e0:06:fe: 61:b1:b6:a0:e8:f3:b1:dd:30:ea:bf:9b:e6:3a:a3: 3b:cc:a1:a8:34:2e:7a:2c:54:80:61:d9:10:73:49: 0a:13:b4:13:8e:b2:cc:76:b4:c5:c8:3f:31:02:64: 97:97:6e:7a:43:75:00:92:08:9f:cb:b5:aa:0d:f9: 65:aa:40:3d:61:b2:f9:5c:50:7f:89:8e:07:5b:00: 5f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BB:4D:D4:C0:27:65:11:8E:A3:9A:5F:D1:48:DE:64:5C:04:AC:8B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BLtN1MAnZRGOo5pf0UjeZFwErIs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.32.0/19 Signature Algorithm: sha256WithRSAEncryption 10:56:d6:46:69:13:b0:6d:9f:c0:5b:f5:06:b9:c7:b1:98:bd: 86:57:2e:62:90:a0:0e:a4:64:a4:6e:00:7e:45:8f:96:87:b6: 1b:a7:5b:20:b8:20:e1:f8:30:58:f2:b9:91:de:95:08:dd:b9: 32:77:b0:25:11:f8:0c:90:65:a2:e3:f8:96:e2:54:7d:84:8d: ac:8f:cd:17:72:7d:6e:1d:3b:6d:66:28:2b:51:30:36:86:dd: 80:6e:ad:22:3b:eb:8e:6c:24:93:c2:a0:b0:ae:85:f5:22:b2: b5:bf:d2:ff:a3:e1:b0:b7:71:e8:f8:a3:62:e0:7a:b7:b2:c4: 86:54:2f:e8:98:58:a4:24:79:85:b3:15:c8:44:54:5d:2e:91: 10:ed:ec:77:95:89:e6:63:2a:4e:67:1b:34:95:73:55:a6:b0: b4:6a:5b:51:60:71:9c:fc:76:fe:9a:a1:67:80:95:33:84:f5: 86:c9:df:fd:e1:2c:b0:28:a9:57:d4:df:87:53:54:ad:c2:3a: 7b:a2:ef:01:ce:e0:7d:94:24:f3:1a:1c:8a:48:8d:44:c5:e5: ca:22:87:c6:73:22:2b:fd:2e:0b:60:f3:bf:50:59:c2:0d:b5: e8:a5:6e:aa:52:66:39:c2:a9:59:7a:a2:3f:41:cc:4e:d7:52: a7:d0:ee:7b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA0QkI0REQ0QzAyNzY1 MTE4RUEzOUE1RkQxNDhERTY0NUMwNEFDOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCy8fOQOo61xvcu/SGAZKPVtVLGBbBacibfEeJZiNugVt8xOxRv 6Ynqqsbn62682bMNJool8RTWwR7lTiP4mTZMEsMnDQX7suUkdkkFKD6xnnIgivKy s8kJcIwxYzhMBcMgnEH51leH8ZhXWhVBJfq1mlIA51Mfa9hIExU19OxbdpKw9oWK GlWjXTTGUOAz8bfshue83IXARfocb56Vz/2YyoUuIYuW3Rrf1b8xjf+TwOAG/mGx tqDo87HdMOq/m+Y6ozvMoag0LnosVIBh2RBzSQoTtBOOssx2tMXIPzECZJeXbnpD dQCSCJ/LtaoN+WWqQD1hsvlcUH+JjgdbAF+rAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBLtN1MAnZRGOo5pf0UjeZFwErIswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0JMdE4xTUFuWlJHT281cGYw VWplWkZ3RXJJcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 ACAwDQYJKoZIhvcNAQELBQADggEBABBW1kZpE7Btn8Bb9Qa5x7GYvYZXLmKQoA6k ZKRuAH5Fj5aHthunWyC4IOH4MFjyuZHelQjduTJ3sCUR+AyQZaLj+JbiVH2EjayP zRdyfW4dO21mKCtRMDaG3YBurSI7645sJJPCoLCuhfUisrW/0v+j4bC3cej4o2Lg ereyxIZUL+iYWKQkeYWzFchEVF0ukRDt7HeVieZjKk5nGzSVc1WmsLRqW1FgcZz8 dv6aoWeAlTOE9YbJ3/3hLLAoqVfU34dTVK3COnui7wHO4H2UJPMaHIpIjUTF5coi h8ZzIiv9Lgtg879QWcINteilbqpSZjnCqVl6oj9BzE7XUqfQ7ns= -----END CERTIFICATE-----Generated at Fri Apr 18 16:40:19 2025 by rpki-client