$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FkGjBxpg-RifVXFe1bdTDW5N25g.roa File: FkGjBxpg-RifVXFe1bdTDW5N25g.roa (raw, json) Hash identifier: h2oUNF0212RRjvcLsckzf0KveVcmmRmlwzoRNfH9ieM= Subject key identifier: 16:41:A3:07:1A:60:F9:18:9F:55:71:5E:D5:B7:53:0D:6E:4D:DB:98 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23E3 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FkGjBxpg-RifVXFe1bdTDW5N25g.roa Signing time: Mon 10 Feb 2025 14:18:03 +0000 ROA not before: Mon 10 Feb 2025 14:18:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9187 (0x23e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1641A3071A60F9189F55715ED5B7530D6E4DDB98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:63:9e:e2:cc:e6:ee:2e:87:0b:7d:3a:b9:b0: 64:15:bc:50:23:62:a1:1e:b8:a0:ac:61:0a:96:47: 87:66:ad:2c:7c:e6:ca:c0:85:25:a3:4a:46:f2:40: a5:7f:89:39:a0:32:d3:a5:7f:d3:18:c4:51:94:db: 90:af:9a:90:5b:45:f7:ca:03:73:31:97:f4:63:c5: 79:b6:3e:4c:de:bb:8f:92:b8:c8:80:f1:69:cd:50: c1:b2:1e:38:d2:65:ba:cf:fd:fc:23:f0:bd:36:91: ad:0b:64:5b:f1:4f:81:f8:c4:7b:88:2f:f4:fa:a0: cc:d4:30:4e:52:66:f2:2b:9f:e7:a6:fa:30:87:aa: f1:32:19:87:90:48:8e:3a:63:2c:08:dd:d5:bc:45: 5e:09:1f:86:1f:42:35:24:37:dc:fe:11:af:52:1a: 15:fe:0a:61:70:3b:94:f4:f8:f4:bb:87:eb:73:75: 6a:af:10:28:fe:ed:c8:6d:03:ff:80:f2:11:c0:d8: ca:aa:d8:53:62:01:a5:03:90:5d:87:03:b9:21:ec: cc:40:64:30:d8:45:48:5d:f6:12:cd:13:7c:6a:3e: 99:71:f6:21:f8:a7:2a:dd:65:7c:b8:d3:eb:23:19: c5:f6:ff:2e:6b:7f:de:33:ae:3f:52:2f:55:a2:7a: fb:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:41:A3:07:1A:60:F9:18:9F:55:71:5E:D5:B7:53:0D:6E:4D:DB:98 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FkGjBxpg-RifVXFe1bdTDW5N25g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.44.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:63:58:04:80:a3:0a:73:2d:24:ec:8a:d7:76:a0:29:d3:90: 19:56:3a:05:fa:f2:56:7f:67:6c:d9:74:93:89:c1:a8:2c:84: d3:a2:cd:f6:43:ee:39:44:16:4c:b1:0e:f8:c6:3b:6b:38:57: 0a:e4:14:e8:b2:3a:b7:08:5f:9c:bd:f2:6e:97:26:a1:da:f9: a3:2a:6c:bc:8e:c4:e5:1f:9d:5f:1e:a5:aa:c8:fa:ae:14:04: 73:b5:a1:3f:49:2d:09:2f:e0:3b:9b:0f:fe:1f:ec:7e:6d:d6: df:58:9c:24:2e:96:f8:dc:5d:58:0d:f0:d3:a2:97:7b:5b:60: a4:73:8f:65:91:6c:ec:1f:92:9b:de:b5:22:26:3c:45:59:07: 8a:39:8f:cc:dd:6b:f5:52:10:45:a7:6a:d0:cb:93:7a:75:d3: 95:55:61:ad:55:1b:f9:36:31:a4:b8:70:6c:b3:05:b8:94:54: 9a:9d:4b:13:a2:5b:ac:62:e3:a1:c8:df:aa:bb:c9:e2:79:b2: c7:4e:37:7b:82:34:e7:0b:21:08:08:b4:c7:7e:2f:b2:8c:66: 0a:b2:b3:a2:7e:e2:71:a3:df:2a:ad:50:f7:14:22:f8:7f:fb: a1:60:63:f2:73:ac:30:9f:80:a4:64:54:71:18:af:67:70:3d: 7d:06:57:3f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI+MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2NDFBMzA3MUE2MEY5 MTg5RjU1NzE1RUQ1Qjc1MzBENkU0RERCOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcY57izObuLocLfTq5sGQVvFAjYqEeuKCsYQqWR4dmrSx85srA hSWjSkbyQKV/iTmgMtOlf9MYxFGU25CvmpBbRffKA3Mxl/RjxXm2Pkzeu4+SuMiA 8WnNUMGyHjjSZbrP/fwj8L02ka0LZFvxT4H4xHuIL/T6oMzUME5SZvIrn+em+jCH qvEyGYeQSI46YywI3dW8RV4JH4YfQjUkN9z+Ea9SGhX+CmFwO5T0+PS7h+tzdWqv ECj+7chtA/+A8hHA2Mqq2FNiAaUDkF2HA7kh7MxAZDDYRUhd9hLNE3xqPplx9iH4 pyrdZXy40+sjGcX2/y5rf94zrj9SL1WievsRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFkGjBxpg+RifVXFe1bdTDW5N25gwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZrR2pCeHBnLVJpZlZYRmUx YmRURFc1TjI1Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx niwwDQYJKoZIhvcNAQELBQADggEBAH1jWASAowpzLSTsitd2oCnTkBlWOgX68lZ/ Z2zZdJOJwagshNOizfZD7jlEFkyxDvjGO2s4VwrkFOiyOrcIX5y98m6XJqHa+aMq bLyOxOUfnV8eparI+q4UBHO1oT9JLQkv4DubD/4f7H5t1t9YnCQulvjcXVgN8NOi l3tbYKRzj2WRbOwfkpvetSImPEVZB4o5j8zda/VSEEWnatDLk3p105VVYa1VG/k2 MaS4cGyzBbiUVJqdSxOiW6xi46HI36q7yeJ5ssdON3uCNOcLIQgItMd+L7KMZgqy s6J+4nGj3yqtUPcUIvh/+6FgY/JzrDCfgKRkVHEYr2dwPX0GVz8= -----END CERTIFICATE-----Generated at Fri Apr 18 16:54:12 2025 by rpki-client