$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FDuXh1mTVqiXyb5y_tn-eWIuzSg.roa File: FDuXh1mTVqiXyb5y_tn-eWIuzSg.roa (raw, json) Hash identifier: 9B+4IGyMo6hYsDQisiKp9HU2JeIb5UA8wn3t+DFk2Jg= Subject key identifier: 14:3B:97:87:59:93:56:A8:97:C9:BE:72:FE:D9:FE:79:62:2E:CD:28 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 234D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FDuXh1mTVqiXyb5y_tn-eWIuzSg.roa Signing time: Mon 10 Feb 2025 14:17:26 +0000 ROA not before: Mon 10 Feb 2025 14:17:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 122.100.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9037 (0x234d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=143B9787599356A897C9BE72FED9FE79622ECD28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e1:42:70:02:29:d3:e5:5d:72:14:bc:9f:f4: 18:3a:7c:1d:62:aa:73:d6:f6:ac:5f:0c:60:bc:36: 41:71:cc:f0:7a:26:2d:2e:ea:11:2c:bc:f7:77:2e: 13:76:09:12:db:b8:03:cd:5e:c2:2a:fa:7e:f5:0b: 14:7b:a6:1f:fb:f3:77:c7:3c:55:44:02:fc:4c:35: 00:b2:72:3d:ea:25:56:f9:41:60:5f:71:ee:88:1c: 85:2b:2a:e4:35:ae:25:df:24:5c:5a:cc:f9:7b:5c: 95:a6:ab:06:bb:2e:c1:e6:57:4d:4c:27:3a:bb:54: d5:1a:d8:f9:9a:31:d6:73:a2:55:39:fb:39:1c:77: b4:fa:8f:70:72:00:0f:9a:9d:ee:2b:e1:3a:b3:5d: a3:de:55:c3:df:6e:6c:d1:6d:21:3a:e7:02:96:c3: 2e:31:e9:f3:0a:3a:62:55:b2:75:c1:c6:fa:01:ff: 3f:b8:4e:6a:d6:ee:b4:e8:a0:7b:52:13:cc:a2:51: 37:4c:27:24:1f:8a:38:5c:51:37:4b:c1:34:df:0f: e2:ee:e0:6e:a4:a1:d8:bf:82:87:96:e0:12:96:83: 92:39:2d:f2:0b:57:7e:88:fc:bf:0e:f3:31:f5:ce: af:d9:24:6a:34:25:e8:b5:14:4c:75:55:73:5f:f7: 6b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3B:97:87:59:93:56:A8:97:C9:BE:72:FE:D9:FE:79:62:2E:CD:28 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FDuXh1mTVqiXyb5y_tn-eWIuzSg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.76.0/22 Signature Algorithm: sha256WithRSAEncryption 27:19:f3:d0:3d:a4:0e:72:b6:07:5d:c5:53:ff:83:31:90:12: 01:be:de:ae:7e:52:2f:73:4f:71:69:58:32:8c:3c:f4:16:bd: 6d:c3:4b:18:20:96:14:4b:ae:51:e2:a1:ff:39:02:50:7f:2d: 0c:f7:0f:0b:fc:13:99:63:cc:0a:05:db:84:6b:36:8d:c1:e3: b6:49:aa:8c:f8:47:3d:f4:20:6a:7c:f8:df:47:e1:f4:0e:ee: c9:ca:52:65:a4:ef:36:0e:a3:71:e0:ee:ef:79:f8:8c:80:bb: b3:f0:fe:2b:ca:b0:81:18:e0:ba:34:87:3e:3e:a1:4d:c0:07: 1c:11:99:30:f9:a0:ab:0b:7e:3b:fd:9a:28:41:ba:bc:3d:34: ad:b0:dc:87:7e:5d:43:9b:b1:a9:db:e0:7d:ab:f0:4b:da:4d: b2:43:b4:11:96:3b:58:80:86:4c:92:b2:f9:5b:ae:34:55:ff: 7b:3a:c8:5f:fb:91:de:48:18:bb:84:f7:70:77:6e:08:cd:d9: 7e:ec:f3:4f:76:53:d9:42:4f:61:2d:d9:15:3f:75:9c:03:87: 9d:e9:80:ee:ab:bf:1b:72:9a:14:b2:c7:bc:7d:d0:71:3f:2a: c1:ff:2d:23:74:0e:97:90:62:14:9c:a2:05:2f:2a:28:f9:19: 63:7f:42:7f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI00wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0M0I5Nzg3NTk5MzU2 QTg5N0M5QkU3MkZFRDlGRTc5NjIyRUNEMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCX4UJwAinT5V1yFLyf9Bg6fB1iqnPW9qxfDGC8NkFxzPB6Ji0u 6hEsvPd3LhN2CRLbuAPNXsIq+n71CxR7ph/783fHPFVEAvxMNQCycj3qJVb5QWBf ce6IHIUrKuQ1riXfJFxazPl7XJWmqwa7LsHmV01MJzq7VNUa2PmaMdZzolU5+zkc d7T6j3ByAA+ane4r4TqzXaPeVcPfbmzRbSE65wKWwy4x6fMKOmJVsnXBxvoB/z+4 TmrW7rTooHtSE8yiUTdMJyQfijhcUTdLwTTfD+Lu4G6kodi/goeW4BKWg5I5LfIL V36I/L8O8zH1zq/ZJGo0Jei1FEx1VXNf92urAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFDuXh1mTVqiXyb5y/tn+eWIuzSgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZEdVhoMW1UVnFpWHliNXlf dG4tZVdJdXpTZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ6 ZEwwDQYJKoZIhvcNAQELBQADggEBACcZ89A9pA5ytgddxVP/gzGQEgG+3q5+Ui9z T3FpWDKMPPQWvW3DSxgglhRLrlHiof85AlB/LQz3Dwv8E5ljzAoF24RrNo3B47ZJ qoz4Rz30IGp8+N9H4fQO7snKUmWk7zYOo3Hg7u95+IyAu7Pw/ivKsIEY4Lo0hz4+ oU3ABxwRmTD5oKsLfjv9mihBurw9NK2w3Id+XUObsanb4H2r8EvaTbJDtBGWO1iA hkySsvlbrjRV/3s6yF/7kd5IGLuE93B3bgjN2X7s8092U9lCT2Et2RU/dZwDh53p gO6rvxtymhSyx7x90HE/KsH/LSN0DpeQYhScogUvKij5GWN/Qn8= -----END CERTIFICATE-----Generated at Thu Apr 17 21:04:35 2025 by rpki-client