$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BoRrUhAu8frM_8ldjf0P9L3S1u4.roa File: BoRrUhAu8frM_8ldjf0P9L3S1u4.roa (raw, json) Hash identifier: OHZJxDxIqyJZA0eYgyMnrzLbdXx1jXCFPH42UqJY6yE= Subject key identifier: 06:84:6B:52:10:2E:F1:FA:CC:FF:C9:5D:8D:FD:0F:F4:BD:D2:D6:EE Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 248A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BoRrUhAu8frM_8ldjf0P9L3S1u4.roa Signing time: Mon 10 Feb 2025 14:18:45 +0000 ROA not before: Mon 10 Feb 2025 14:18:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 122.100.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9354 (0x248a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=06846B52102EF1FACCFFC95D8DFD0FF4BDD2D6EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:74:cf:a5:91:f8:02:50:44:3e:0f:cf:8f:b4: a7:83:80:1a:a9:6a:f3:16:f9:c6:1c:45:f9:f0:d7: a2:74:5f:53:35:84:72:7e:9f:bd:99:6d:ad:bf:1d: 88:90:f7:16:fd:bf:04:f0:6a:92:33:3a:06:38:a7: d4:b7:f7:94:18:78:04:70:22:eb:ae:1e:bb:37:02: 28:33:64:26:dd:13:30:aa:80:2c:a1:69:99:6d:37: dd:b6:e6:06:5d:48:7d:0c:b8:39:10:1c:d8:90:8b: a5:e8:e1:d9:ff:92:53:46:98:d5:43:d5:f9:f9:7e: d2:51:36:82:1e:79:1f:7c:a3:c3:62:28:81:35:88: 19:8d:2e:56:30:ba:a9:fd:2b:a3:17:80:70:09:5c: be:77:a1:7a:b8:56:45:d4:60:02:99:24:bd:a4:4a: 65:78:1f:f0:f4:89:b9:d0:8f:fe:d7:94:d3:c0:cb: 77:26:0d:19:e5:7b:d6:af:e6:39:d5:57:04:54:55: 70:8e:ec:7f:91:3e:ae:28:ca:53:af:06:79:06:f7: 9e:59:46:7f:73:3e:d6:a7:f2:9f:f4:8d:a3:2d:00: c8:bc:5a:2c:fd:7c:b8:08:d6:37:ee:ae:de:fc:e4: f8:a1:2e:69:9d:e4:cf:7e:4b:25:82:83:9d:ca:32: 8b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:84:6B:52:10:2E:F1:FA:CC:FF:C9:5D:8D:FD:0F:F4:BD:D2:D6:EE X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BoRrUhAu8frM_8ldjf0P9L3S1u4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.112.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:fe:5a:a2:5b:23:77:52:5c:14:96:93:0a:e2:6c:6c:1e:61: 50:90:90:dc:37:ec:e2:b3:e6:8f:4c:33:4e:db:cd:2b:e7:b6: 53:83:3a:c0:4d:fc:18:da:a1:24:e4:b1:ea:77:b4:93:ab:a4: a1:2c:c5:05:6f:c7:d5:60:72:0d:9e:94:7f:85:c3:b1:0e:a2: 5f:9b:b8:cc:73:9b:82:55:6c:4f:ac:62:37:ff:41:55:0c:35: bf:1b:a2:e9:f1:85:15:b9:4a:d3:b5:41:a6:fe:a3:c7:32:75: c8:17:71:ba:01:7c:ac:6c:68:47:e1:d8:e2:b4:64:a9:c5:57: c9:c9:bb:ed:66:b0:93:2c:5a:bc:cb:55:94:1d:8d:f3:41:43: f0:e0:bd:44:22:7f:00:d0:68:29:b0:61:04:33:a6:48:8f:86: e9:7e:66:cb:4f:52:56:8f:8c:4d:92:9a:c3:c8:db:bb:83:11: d7:b4:76:b2:dc:b2:c1:fa:4e:14:77:fa:a3:a6:bd:e3:0c:f3: 72:07:bd:06:17:2b:7b:29:5c:d3:51:81:34:e4:1f:4f:d1:0b: be:09:5a:28:8f:2c:1a:8d:db:a1:ed:5c:94:90:f1:c1:8b:76: 1d:a1:69:88:85:62:91:89:ca:d6:57:96:b8:43:62:76:af:f3: d3:3b:15:d4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJIowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA2ODQ2QjUyMTAyRUYx RkFDQ0ZGQzk1RDhERkQwRkY0QkREMkQ2RUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDddM+lkfgCUEQ+D8+PtKeDgBqpavMW+cYcRfnw16J0X1M1hHJ+ n72Zba2/HYiQ9xb9vwTwapIzOgY4p9S395QYeARwIuuuHrs3AigzZCbdEzCqgCyh aZltN9225gZdSH0MuDkQHNiQi6Xo4dn/klNGmNVD1fn5ftJRNoIeeR98o8NiKIE1 iBmNLlYwuqn9K6MXgHAJXL53oXq4VkXUYAKZJL2kSmV4H/D0ibnQj/7XlNPAy3cm DRnle9av5jnVVwRUVXCO7H+RPq4oylOvBnkG955ZRn9zPtan8p/0jaMtAMi8Wiz9 fLgI1jfurt785PihLmmd5M9+SyWCg53KMovXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBoRrUhAu8frM/8ldjf0P9L3S1u4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0JvUnJVaEF1OGZyTV84bGRq ZjBQOUwzUzF1NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 ZHAwDQYJKoZIhvcNAQELBQADggEBAJr+WqJbI3dSXBSWkwribGweYVCQkNw37OKz 5o9MM07bzSvntlODOsBN/BjaoSTksep3tJOrpKEsxQVvx9Vgcg2elH+Fw7EOol+b uMxzm4JVbE+sYjf/QVUMNb8bounxhRW5StO1Qab+o8cydcgXcboBfKxsaEfh2OK0 ZKnFV8nJu+1msJMsWrzLVZQdjfNBQ/DgvUQifwDQaCmwYQQzpkiPhul+ZstPUlaP jE2SmsPI27uDEde0drLcssH6ThR3+qOmveMM83IHvQYXK3spXNNRgTTkH0/RC74J WiiPLBqN26HtXJSQ8cGLdh2haYiFYpGJytZXlrhDYnav89M7FdQ= -----END CERTIFICATE-----Generated at Thu Apr 17 21:09:00 2025 by rpki-client