$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ELXg-V4I1jym7wBjU5a8XqChr5k.roa File: ELXg-V4I1jym7wBjU5a8XqChr5k.roa (raw, json) Hash identifier: MSK14KUrxUqac0JRa+Dp+H6S78KIEYoIRsBZy4Ja8Lg= Subject key identifier: 10:B5:E0:F9:5E:08:D6:3C:A6:EF:00:63:53:96:BC:5E:A0:A1:AF:99 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 239D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ELXg-V4I1jym7wBjU5a8XqChr5k.roa Signing time: Mon 10 Feb 2025 14:17:45 +0000 ROA not before: Mon 10 Feb 2025 14:17:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 49.158.240.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9117 (0x239d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=10B5E0F95E08D63CA6EF00635396BC5EA0A1AF99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e8:41:4c:6f:00:b0:7a:b9:43:45:d6:a2:20: 98:52:2d:50:50:36:48:03:e2:4c:b6:3e:0b:0b:c5: 4c:2c:f4:f3:68:65:fe:08:2d:7d:2e:04:36:15:55: 31:1a:21:62:1b:4b:ad:11:f4:e3:31:30:91:10:25: 11:a1:14:05:b4:9d:09:5e:62:08:30:ec:a6:78:ff: 91:c4:f9:5d:0f:02:60:6e:85:a7:24:01:c4:7a:3c: 48:a3:90:68:32:7f:02:0f:d0:e8:9e:c7:90:3d:f7: 50:1d:d8:0c:45:be:a7:a9:fe:d6:f4:8b:ad:65:e6: 87:6d:58:32:15:ab:eb:d0:02:ee:84:65:1f:c1:a3: f8:65:04:e0:65:7d:54:b0:e2:8c:ae:c3:07:64:a0: 29:f8:8d:9d:0e:4c:d3:f3:81:1a:e1:2c:60:61:0f: b6:ff:20:e9:94:a5:9e:8f:db:e6:b5:7a:0e:01:2d: 19:34:14:e8:a9:98:5f:6d:87:33:04:b6:89:95:8f: cb:40:ed:4d:ed:6b:21:83:73:9b:e2:81:ee:3f:2a: 07:68:83:cd:b0:35:bf:70:96:43:11:a1:10:02:86: 6f:c5:a5:e0:34:0e:29:8e:4e:42:2a:0a:6b:22:b7: 0d:0c:45:00:be:bf:51:40:7d:13:1e:b8:e0:f3:cc: 69:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:B5:E0:F9:5E:08:D6:3C:A6:EF:00:63:53:96:BC:5E:A0:A1:AF:99 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ELXg-V4I1jym7wBjU5a8XqChr5k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.240.0/21 Signature Algorithm: sha256WithRSAEncryption 61:d6:d2:7e:43:7c:09:c9:4e:21:5d:bd:0d:ae:5f:0a:b8:64: 87:4a:95:fd:90:a6:37:8c:6c:02:78:f0:bc:b2:52:99:80:59: ff:70:9c:66:d6:38:b2:6f:14:0d:4a:d1:b4:b8:ab:58:33:a8: 0a:90:99:4c:43:5c:30:bb:c9:8c:3b:8f:ce:7c:e7:b0:b0:b5: bb:9d:5c:02:71:35:d2:ba:f4:8e:f6:a4:78:91:6b:29:cd:45: c9:2f:55:ba:7f:67:92:cc:b1:e5:f9:6c:9b:d6:82:bb:d4:4c: 11:09:17:31:19:fa:1f:85:96:ac:95:3c:54:d3:df:ae:8b:83: df:a0:31:32:48:bd:f5:c6:46:78:3a:61:a2:f6:03:e3:8e:26: 16:a9:00:bf:13:67:64:3b:4b:a6:f7:a2:52:97:dc:cb:39:8e: 12:57:eb:e8:e3:4e:a9:4d:41:e1:b4:06:32:df:13:b9:6e:0b: b5:fb:fc:3a:03:28:82:a7:89:1c:36:ca:cd:c8:0f:18:04:aa: cf:5c:53:be:98:6a:a0:e4:23:92:e9:f7:d8:bc:93:ab:e7:13: 48:2c:1a:94:bc:f0:d0:73:7f:76:c1:c8:04:07:25:00:a1:09: 29:de:7d:67:3f:45:2d:33:ae:1c:6c:6f:33:99:a5:a7:73:92: c3:5f:28:20 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEwQjVFMEY5NUUwOEQ2 M0NBNkVGMDA2MzUzOTZCQzVFQTBBMUFGOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ6EFMbwCwerlDRdaiIJhSLVBQNkgD4ky2PgsLxUws9PNoZf4I LX0uBDYVVTEaIWIbS60R9OMxMJEQJRGhFAW0nQleYggw7KZ4/5HE+V0PAmBuhack AcR6PEijkGgyfwIP0Oiex5A991Ad2AxFvqep/tb0i61l5odtWDIVq+vQAu6EZR/B o/hlBOBlfVSw4oyuwwdkoCn4jZ0OTNPzgRrhLGBhD7b/IOmUpZ6P2+a1eg4BLRk0 FOipmF9thzMEtomVj8tA7U3tayGDc5vige4/Kgdog82wNb9wlkMRoRAChm/FpeA0 DimOTkIqCmsitw0MRQC+v1FAfRMeuODzzGmdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUELXg+V4I1jym7wBjU5a8XqChr5kwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0VMWGctVjRJMWp5bTd3QmpV NWE4WHFDaHI1ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nvAwDQYJKoZIhvcNAQELBQADggEBAGHW0n5DfAnJTiFdvQ2uXwq4ZIdKlf2QpjeM bAJ48LyyUpmAWf9wnGbWOLJvFA1K0bS4q1gzqAqQmUxDXDC7yYw7j85857Cwtbud XAJxNdK69I72pHiRaynNRckvVbp/Z5LMseX5bJvWgrvUTBEJFzEZ+h+FlqyVPFTT 366Lg9+gMTJIvfXGRng6YaL2A+OOJhapAL8TZ2Q7S6b3olKX3Ms5jhJX6+jjTqlN QeG0BjLfE7luC7X7/DoDKIKniRw2ys3IDxgEqs9cU76YaqDkI5Lp99i8k6vnE0gs GpS88NBzf3bByAQHJQChCSnefWc/RS0zrhxsbzOZpadzksNfKCA= -----END CERTIFICATE-----Generated at Fri Apr 18 16:45:52 2025 by rpki-client