$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FNFdaWRczTtiesnxiXQvxlTeCd8.roa File: FNFdaWRczTtiesnxiXQvxlTeCd8.roa (raw, json) Hash identifier: /IYngDu91nwl7GU/7+0fxOiFEqzqpKP1M6SZUs3MvNQ= Subject key identifier: 14:D1:5D:69:64:5C:CD:3B:62:7A:C9:F1:89:74:2F:C6:54:DE:09:DF Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23D1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FNFdaWRczTtiesnxiXQvxlTeCd8.roa Signing time: Mon 10 Feb 2025 14:17:57 +0000 ROA not before: Mon 10 Feb 2025 14:17:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 61.61.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9169 (0x23d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=14D15D69645CCD3B627AC9F189742FC654DE09DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:4c:32:ab:a1:95:f1:6d:e1:cb:3a:60:d1:36: 56:6b:5b:7a:fe:42:ad:b9:2b:24:c3:23:73:90:5f: 11:a4:78:2e:ec:73:c0:50:7f:87:6f:ca:a1:cd:29: 8b:3f:e2:ea:22:da:a4:b5:04:14:49:6b:d9:0f:13: 00:89:b0:17:2f:a3:9c:c6:d3:95:21:56:74:be:0d: ad:2b:b5:02:0d:3c:3d:92:1a:d8:1c:8d:b3:9e:58: 0c:0f:02:34:e2:89:8d:9b:b7:cb:d1:de:85:0b:17: a7:b2:4c:46:e8:ce:77:3d:d8:bd:62:48:dc:66:e5: ed:52:58:37:65:92:4e:ec:84:3c:69:d8:16:b1:d0: f8:73:b0:7a:ef:af:be:60:70:3f:4c:cd:8c:de:1f: 37:4e:dc:34:03:da:ba:bd:49:01:e9:84:07:73:d8: 1b:9c:9d:90:52:b9:97:67:9a:9e:34:7f:c0:d1:a7: 43:5b:56:d5:35:e5:25:c5:45:da:69:ef:bd:3a:18: 22:a3:ba:6c:37:69:32:09:aa:63:5f:c4:36:43:03: 10:7d:64:a8:ad:cf:4b:df:59:b6:b7:cb:f1:96:11: b9:d1:0d:91:e2:e5:50:b9:70:51:01:46:f4:80:ca: 52:d1:bc:7e:12:cb:55:e0:78:68:08:6c:53:ec:69: a4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D1:5D:69:64:5C:CD:3B:62:7A:C9:F1:89:74:2F:C6:54:DE:09:DF X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FNFdaWRczTtiesnxiXQvxlTeCd8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.208.0/20 Signature Algorithm: sha256WithRSAEncryption 66:bf:69:2d:96:47:e7:82:c9:57:6a:28:fb:e9:9b:fc:aa:09: a1:52:58:36:f9:a7:66:00:77:61:67:53:04:e0:30:8e:89:7e: 7c:7c:5e:3a:cd:26:76:bf:35:db:46:0c:df:2e:86:22:d1:57: 0b:be:fe:2a:e6:5f:d5:20:23:66:dc:52:7a:cb:5f:87:27:62: 8d:81:7d:15:9b:71:11:02:bc:d9:ec:63:67:b9:78:f1:54:0e: c8:8e:79:63:fc:95:54:fc:af:8c:75:53:6e:2b:9e:ba:02:96: 44:18:1a:69:4d:c3:16:ad:e6:c3:f6:56:20:1c:17:be:e0:e8: c7:11:28:8d:db:63:86:5d:d6:0b:63:95:2f:e8:80:12:89:70: 65:3d:8d:be:92:a2:f6:f4:d9:eb:21:16:21:e3:ba:0e:30:61: 03:01:dd:66:56:5b:46:bf:c9:c2:c7:4a:d8:54:8c:17:10:43: 00:c4:76:20:c1:b3:09:67:48:56:4e:39:9c:43:ba:07:51:8b: 3e:2d:11:2e:79:69:94:ad:45:25:d5:8a:59:9d:ec:86:1d:b5: 07:93:31:09:19:15:bd:ad:08:bb:44:f7:ed:b3:8b:01:ec:d0: cc:16:96:ce:c6:ad:dd:37:a0:61:0e:49:ac:62:aa:7a:00:2c: 33:f1:95:52 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI9EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0RDE1RDY5NjQ1Q0NE M0I2MjdBQzlGMTg5NzQyRkM2NTRERTA5REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrTDKroZXxbeHLOmDRNlZrW3r+Qq25KyTDI3OQXxGkeC7sc8BQ f4dvyqHNKYs/4uoi2qS1BBRJa9kPEwCJsBcvo5zG05UhVnS+Da0rtQINPD2SGtgc jbOeWAwPAjTiiY2bt8vR3oULF6eyTEboznc92L1iSNxm5e1SWDdlkk7shDxp2Bax 0PhzsHrvr75gcD9MzYzeHzdO3DQD2rq9SQHphAdz2BucnZBSuZdnmp40f8DRp0Nb VtU15SXFRdpp7706GCKjumw3aTIJqmNfxDZDAxB9ZKitz0vfWba3y/GWEbnRDZHi 5VC5cFEBRvSAylLRvH4Sy1XgeGgIbFPsaaR/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFNFdaWRczTtiesnxiXQvxlTeCd8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZORmRhV1JjelR0aWVzbnhp WFF2eGxUZUNkOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 PdAwDQYJKoZIhvcNAQELBQADggEBAGa/aS2WR+eCyVdqKPvpm/yqCaFSWDb5p2YA d2FnUwTgMI6Jfnx8XjrNJna/NdtGDN8uhiLRVwu+/irmX9UgI2bcUnrLX4cnYo2B fRWbcRECvNnsY2e5ePFUDsiOeWP8lVT8r4x1U24rnroClkQYGmlNwxat5sP2ViAc F77g6McRKI3bY4Zd1gtjlS/ogBKJcGU9jb6Sovb02eshFiHjug4wYQMB3WZWW0a/ ycLHSthUjBcQQwDEdiDBswlnSFZOOZxDugdRiz4tES55aZStRSXVilmd7IYdtQeT MQkZFb2tCLtE9+2ziwHs0MwWls7Grd03oGEOSaxiqnoALDPxlVI= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:21 2025 by rpki-client