$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DS0LDK3Kowm5_Y0_5KdmIZ_PHzM.roa File: DS0LDK3Kowm5_Y0_5KdmIZ_PHzM.roa (raw, json) Hash identifier: zbu1sOQg6yrThkXtdheCWjMFdGUo1TxvyIKwPewV8Bs= Subject key identifier: 0D:2D:0B:0C:AD:CA:A3:09:B9:FD:8D:3F:E4:A7:66:21:9F:CF:1F:33 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2418 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DS0LDK3Kowm5_Y0_5KdmIZ_PHzM.roa Signing time: Mon 10 Feb 2025 14:18:15 +0000 ROA not before: Mon 10 Feb 2025 14:18:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 61.61.208.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9240 (0x2418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:15 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0D2D0B0CADCAA309B9FD8D3FE4A766219FCF1F33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7f:25:78:d1:bc:0a:06:33:4c:23:a2:c6:15: 0c:1a:52:0f:1c:1d:31:80:ea:69:30:73:24:65:9d: 87:e1:ca:19:37:26:0c:de:f1:5b:64:f8:16:e1:6c: 3c:6d:a4:fc:3c:62:06:3b:ee:6a:97:49:8f:f9:30: 2d:9b:50:66:df:c8:f2:49:09:ef:4b:09:09:84:be: 11:b8:3e:02:7a:18:85:e9:7d:17:78:e0:b7:9d:7a: ca:75:00:4a:29:d8:9a:1a:d8:51:24:b3:e6:ed:fc: 24:9e:26:8c:93:4b:b0:5b:be:0d:ff:0b:48:d2:e8: d9:c5:a9:8f:4c:6f:d4:6e:7d:65:7b:71:d6:76:8d: cd:29:54:82:49:d7:8e:0a:a1:75:39:15:1f:78:33: 9c:64:aa:cf:73:51:52:85:c6:c9:d6:2e:f1:38:6d: c0:34:e5:86:6b:e4:c8:ef:6f:45:55:c4:49:75:29: 0c:8a:ee:3f:b1:50:3f:50:e1:7b:50:97:b6:fd:67: 54:94:d9:ee:90:48:03:9f:38:26:97:6c:2a:1c:62: 14:99:9d:d8:28:53:58:72:6d:90:5d:94:fd:b1:68: 0a:eb:f5:8b:d8:3a:fe:d3:bb:6a:8b:bb:59:7d:44: 01:78:c8:1a:20:9b:90:de:3e:10:46:72:2d:d3:51: f9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:2D:0B:0C:AD:CA:A3:09:B9:FD:8D:3F:E4:A7:66:21:9F:CF:1F:33 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DS0LDK3Kowm5_Y0_5KdmIZ_PHzM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.208.0/20 Signature Algorithm: sha256WithRSAEncryption 43:dc:39:6c:66:a5:fa:58:d0:07:1c:fa:37:01:51:38:05:72: 30:f9:87:7d:54:60:37:81:37:76:ae:65:f2:6a:c6:4b:b6:71: 7f:81:ce:7f:d8:d2:57:54:7f:90:5f:fb:76:30:6b:2e:1e:9b: 78:d6:3e:58:52:26:51:a5:f6:5d:48:ec:e1:8d:67:2c:69:12: 65:e0:f3:b0:e4:2f:7a:59:d3:5c:0a:c6:da:28:36:6e:12:e5: 82:e5:5e:f3:97:02:cb:49:76:08:8b:fe:54:19:e9:08:b7:90: 3b:fc:5c:34:81:84:3e:75:e7:ce:24:dd:ca:d0:e8:e7:e9:96: 36:aa:81:4c:bd:7a:9c:87:f8:a9:0e:ef:0b:9f:cd:01:65:de: 13:03:44:a0:f5:58:3d:f4:ac:1e:4a:84:ca:dd:92:92:10:77: 0e:c7:39:6c:80:4b:eb:92:54:d9:bd:b6:3c:70:ab:95:a5:b0: 91:06:91:bc:fd:b9:45:56:8f:70:77:8a:99:e7:3e:bf:92:25: 50:27:07:1e:19:03:29:c2:cb:b6:13:24:b8:1e:76:27:8b:9c: f4:b2:66:93:5b:01:ca:1d:d4:24:6c:25:ac:2f:7b:9b:b4:d3: 26:b9:82:2f:61:ed:30:4c:7a:a1:02:8f:46:fa:3b:ea:60:a1: 8c:54:4b:7b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJBgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBEMkQwQjBDQURDQUEz MDlCOUZEOEQzRkU0QTc2NjIxOUZDRjFGMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPfyV40bwKBjNMI6LGFQwaUg8cHTGA6mkwcyRlnYfhyhk3Jgze 8Vtk+BbhbDxtpPw8YgY77mqXSY/5MC2bUGbfyPJJCe9LCQmEvhG4PgJ6GIXpfRd4 4Ledesp1AEop2Joa2FEks+bt/CSeJoyTS7Bbvg3/C0jS6NnFqY9Mb9RufWV7cdZ2 jc0pVIJJ144KoXU5FR94M5xkqs9zUVKFxsnWLvE4bcA05YZr5Mjvb0VVxEl1KQyK 7j+xUD9Q4XtQl7b9Z1SU2e6QSAOfOCaXbCocYhSZndgoU1hybZBdlP2xaArr9YvY Ov7Tu2qLu1l9RAF4yBogm5DePhBGci3TUfkpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDS0LDK3Kowm5/Y0/5KdmIZ/PHzMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0RTMExESzNLb3dtNV9ZMF81 S2RtSVpfUEh6TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 PdAwDQYJKoZIhvcNAQELBQADggEBAEPcOWxmpfpY0Acc+jcBUTgFcjD5h31UYDeB N3auZfJqxku2cX+Bzn/Y0ldUf5Bf+3Yway4em3jWPlhSJlGl9l1I7OGNZyxpEmXg 87DkL3pZ01wKxtooNm4S5YLlXvOXAstJdgiL/lQZ6Qi3kDv8XDSBhD51584k3crQ 6OfpljaqgUy9epyH+KkO7wufzQFl3hMDRKD1WD30rB5KhMrdkpIQdw7HOWyAS+uS VNm9tjxwq5WlsJEGkbz9uUVWj3B3ipnnPr+SJVAnBx4ZAynCy7YTJLgedieLnPSy ZpNbAcod1CRsJawve5u00ya5gi9h7TBMeqECj0b6O+pgoYxUS3s= -----END CERTIFICATE-----Generated at Fri Apr 18 16:54:12 2025 by rpki-client