$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FJxFsWLHwxoH8VqmwsQ5OLBQEuY.roa File: FJxFsWLHwxoH8VqmwsQ5OLBQEuY.roa (raw, json) Hash identifier: x9hDKzrd9K9FgLt/Z4CyTvqUB/6HxiMHusZwOzM6mTI= Subject key identifier: 14:9C:45:B1:62:C7:C3:1A:07:F1:5A:A6:C2:C4:39:38:B0:50:12:E6 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23E4 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FJxFsWLHwxoH8VqmwsQ5OLBQEuY.roa Signing time: Mon 10 Feb 2025 14:18:03 +0000 ROA not before: Mon 10 Feb 2025 14:18:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9188 (0x23e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=149C45B162C7C31A07F15AA6C2C43938B05012E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:7c:b8:7c:a4:cb:d6:17:65:11:0c:48:0d:b2: 1b:95:d3:0b:38:b7:48:97:1a:0e:f8:53:6a:30:d0: 88:03:de:68:52:8b:16:76:71:cf:c1:34:db:66:e2: 3e:d5:c2:30:86:5a:39:12:2c:51:6b:30:ba:d0:42: 7e:e0:94:36:2e:47:9b:15:2e:ee:95:71:87:c2:1d: db:db:c8:3f:d5:84:46:a8:1b:36:ff:cd:d6:bd:6b: 7e:a8:e1:77:a2:d0:14:1f:26:61:4f:86:04:05:9f: 55:a3:a8:87:da:9c:c7:79:41:d5:fb:e0:da:6d:f4: 82:6a:90:f6:a2:46:53:d0:94:e5:1e:ab:4e:99:fa: 4f:0f:cb:29:87:9f:ab:4c:12:6d:df:5c:d2:e8:40: cb:ec:8f:09:c6:7d:cb:d0:23:eb:8f:30:98:48:e7: 36:72:4a:e0:ac:3f:2a:82:ef:fb:26:f5:9a:a9:a5: f9:1e:e5:03:8d:2d:3b:82:15:2a:65:dd:17:8b:d2: b8:32:3a:5d:b1:28:f2:80:10:ac:52:b7:ae:cb:de: b5:83:41:c7:82:d0:6b:90:69:13:63:b8:ac:f3:08: 5b:24:06:e5:17:e6:60:18:5c:84:f5:3d:2b:4f:a8: 89:e6:9b:a1:fc:56:c7:1a:6f:4a:d3:7b:eb:6a:c5: 04:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:9C:45:B1:62:C7:C3:1A:07:F1:5A:A6:C2:C4:39:38:B0:50:12:E6 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FJxFsWLHwxoH8VqmwsQ5OLBQEuY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.56.0/21 Signature Algorithm: sha256WithRSAEncryption 7c:eb:03:05:a8:de:a8:9a:2f:0a:0b:b6:d0:8f:74:0a:9b:dd: 84:4e:1f:b0:78:a1:4e:a5:15:dc:57:a3:db:dd:7a:66:2d:38: 42:c2:7b:9c:c0:bc:50:0a:f1:b8:2f:6b:aa:87:50:67:d7:8c: 4f:90:a5:57:4f:d7:b9:14:7b:b8:86:b0:c3:94:b1:0b:33:76: cd:49:19:63:73:ae:20:07:43:37:3a:30:3b:8e:f1:20:03:90: 09:0a:9a:ad:44:b8:a5:7d:e7:0d:fd:7b:47:1f:a8:b5:4f:a0: cc:af:7b:87:87:a7:3b:d6:31:36:f9:18:13:3e:fd:44:92:bc: dc:1c:63:36:da:6d:c2:b6:f4:9d:00:ed:12:13:1b:19:84:a9: cc:51:d6:f8:87:28:d0:be:98:1f:e9:09:2e:d4:47:bf:ac:76: 8d:0e:78:82:ab:6c:50:6a:6f:93:fe:13:37:d3:b3:69:7a:eb: 73:c8:de:2b:13:92:22:d6:e4:b7:b3:cd:20:65:53:79:0e:07: 77:0f:d9:72:9d:23:23:c9:5d:61:61:6b:36:90:b8:30:b2:b3: 77:bb:46:3a:cd:2d:81:1d:e5:1d:35:6b:f8:3e:0b:ee:64:1e: fe:1e:c4:6f:fd:a1:73:8e:85:7d:e4:b5:e1:82:6e:95:93:8b: 8b:d5:df:8a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI+QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0OUM0NUIxNjJDN0Mz MUEwN0YxNUFBNkMyQzQzOTM4QjA1MDEyRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxfLh8pMvWF2URDEgNshuV0ws4t0iXGg74U2ow0IgD3mhSixZ2 cc/BNNtm4j7VwjCGWjkSLFFrMLrQQn7glDYuR5sVLu6VcYfCHdvbyD/VhEaoGzb/ zda9a36o4Xei0BQfJmFPhgQFn1WjqIfanMd5QdX74Npt9IJqkPaiRlPQlOUeq06Z +k8PyymHn6tMEm3fXNLoQMvsjwnGfcvQI+uPMJhI5zZySuCsPyqC7/sm9Zqppfke 5QONLTuCFSpl3ReL0rgyOl2xKPKAEKxSt67L3rWDQceC0GuQaRNjuKzzCFskBuUX 5mAYXIT1PStPqInmm6H8Vscab0rTe+tqxQTHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFJxFsWLHwxoH8VqmwsQ5OLBQEuYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZKeEZzV0xId3hvSDhWcW13 c1E1T0xCUUV1WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2jgwDQYJKoZIhvcNAQELBQADggEBAHzrAwWo3qiaLwoLttCPdAqb3YROH7B4oU6l FdxXo9vdemYtOELCe5zAvFAK8bgva6qHUGfXjE+QpVdP17kUe7iGsMOUsQszds1J GWNzriAHQzc6MDuO8SADkAkKmq1EuKV95w39e0cfqLVPoMyve4eHpzvWMTb5GBM+ /USSvNwcYzbabcK29J0A7RITGxmEqcxR1viHKNC+mB/pCS7UR7+sdo0OeIKrbFBq b5P+EzfTs2l663PI3isTkiLW5LezzSBlU3kOB3cP2XKdIyPJXWFhazaQuDCys3e7 RjrNLYEd5R01a/g+C+5kHv4exG/9oXOOhX3kteGCbpWTi4vV34o= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:19 2025 by rpki-client