$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GNyQy-w4GPkmntcu0Pm-qYrtWv0.roa File: GNyQy-w4GPkmntcu0Pm-qYrtWv0.roa (raw, json) Hash identifier: 7fZr8ZDPH2n+kRBz3oNuexpU0eTIY/kiyRETY137+1M= Subject key identifier: 18:DC:90:CB:EC:38:18:F9:26:9E:D7:2E:D0:F9:BE:A9:8A:ED:5A:FD Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2372 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GNyQy-w4GPkmntcu0Pm-qYrtWv0.roa Signing time: Mon 10 Feb 2025 14:17:36 +0000 ROA not before: Mon 10 Feb 2025 14:17:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 123.0.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9074 (0x2372) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:36 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=18DC90CBEC3818F9269ED72ED0F9BEA98AED5AFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b1:72:e9:86:6a:31:0a:4f:2a:36:6f:cf:f4: bb:bc:ac:15:f6:b7:81:52:fa:fc:60:f5:90:d3:8d: fd:f0:0d:8c:6d:1c:33:1c:92:51:4c:4f:0e:a6:28: 6c:59:d9:7d:85:52:c9:02:09:53:90:ce:68:9c:2c: 80:9b:fd:77:c7:3e:4e:ed:3c:25:39:99:09:59:13: bb:aa:9d:eb:17:2e:5f:57:a4:3d:7d:6e:66:ec:43: 25:aa:66:d3:cf:5b:c1:f5:1a:8a:d1:d8:ac:99:b4: 17:87:8d:ed:a4:40:71:20:6e:ff:60:e7:a4:c2:28: a8:96:15:55:98:3c:c9:e2:b8:66:58:d2:0d:69:69: 30:51:50:3c:03:4d:22:04:21:d7:06:ed:5f:02:f6: 41:7b:de:d9:e7:9a:29:c5:22:63:91:63:f0:3c:99: 1e:7c:97:01:6e:8e:ec:dc:f1:d2:3a:d8:ef:9e:31: 5d:28:f5:f4:b1:81:12:ae:1d:39:64:5f:e1:bd:4d: 52:b5:4a:52:35:5a:38:36:03:cc:aa:99:2e:cb:21: 83:0f:af:a3:8a:4c:83:65:45:59:ad:16:98:03:90: 23:33:e7:71:d0:3f:87:03:7c:59:78:47:01:20:93: 43:9b:ee:c7:ea:6d:5d:04:cf:2d:f7:71:08:cc:5d: b4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:DC:90:CB:EC:38:18:F9:26:9E:D7:2E:D0:F9:BE:A9:8A:ED:5A:FD X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GNyQy-w4GPkmntcu0Pm-qYrtWv0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.46.0/24 Signature Algorithm: sha256WithRSAEncryption 90:a2:4d:7c:8a:8d:b4:4d:83:ee:3a:cf:8d:94:52:a7:45:54: 80:ef:47:00:f9:9c:3f:99:c1:20:1b:61:41:01:41:73:23:f4: fd:78:1c:47:f4:ce:af:3a:d7:2f:8a:d9:0b:a2:97:42:44:3b: 93:08:78:b3:ff:c1:8c:4a:7c:ab:62:c0:bd:c3:a0:f3:3e:f3: f4:87:b5:df:10:3d:58:05:81:c6:c1:fb:51:52:71:34:ba:d0: a9:ad:55:b6:29:5c:04:82:b0:25:93:9e:43:56:eb:4f:3d:9c: eb:49:10:a4:3c:8a:0d:3b:23:18:e8:9e:2c:2a:66:7e:7c:0a: 52:d5:0f:75:4e:0e:2b:0a:a0:9e:7e:6d:6a:03:f5:3a:4f:9f: 80:04:ff:e2:12:b0:29:fb:9e:2c:51:65:b6:eb:5b:1e:fe:74: 75:38:9a:9b:70:9c:eb:56:12:1f:16:f7:1b:89:80:9c:48:bf: 1e:a5:1e:72:4b:79:6d:57:d3:38:60:68:33:1d:ae:c2:e4:0c: ab:a3:88:4b:1a:c9:04:63:1b:56:9e:95:3b:40:de:58:52:7b: 08:72:00:81:c8:4d:6f:2b:a2:3b:36:d0:10:98:34:d4:69:01: be:ea:77:81:ae:01:56:ab:53:70:e2:a2:c9:16:4e:c3:02:17: d9:91:21:86 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI3IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE4REM5MENCRUMzODE4 RjkyNjlFRDcyRUQwRjlCRUE5OEFFRDVBRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUsXLphmoxCk8qNm/P9Lu8rBX2t4FS+vxg9ZDTjf3wDYxtHDMc klFMTw6mKGxZ2X2FUskCCVOQzmicLICb/XfHPk7tPCU5mQlZE7uqnesXLl9XpD19 bmbsQyWqZtPPW8H1GorR2KyZtBeHje2kQHEgbv9g56TCKKiWFVWYPMniuGZY0g1p aTBRUDwDTSIEIdcG7V8C9kF73tnnminFImORY/A8mR58lwFujuzc8dI62O+eMV0o 9fSxgRKuHTlkX+G9TVK1SlI1Wjg2A8yqmS7LIYMPr6OKTINlRVmtFpgDkCMz53HQ P4cDfFl4RwEgk0Ob7sfqbV0Ezy33cQjMXbR7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGNyQy+w4GPkmntcu0Pm+qYrtWv0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0dOeVF5LXc0R1BrbW50Y3Uw UG0tcVlydFd2MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 AC4wDQYJKoZIhvcNAQELBQADggEBAJCiTXyKjbRNg+46z42UUqdFVIDvRwD5nD+Z wSAbYUEBQXMj9P14HEf0zq861y+K2Quil0JEO5MIeLP/wYxKfKtiwL3DoPM+8/SH td8QPVgFgcbB+1FScTS60KmtVbYpXASCsCWTnkNW6089nOtJEKQ8ig07Ixjoniwq Zn58ClLVD3VODisKoJ5+bWoD9TpPn4AE/+ISsCn7nixRZbbrWx7+dHU4mptwnOtW Eh8W9xuJgJxIvx6lHnJLeW1X0zhgaDMdrsLkDKujiEsayQRjG1aelTtA3lhSewhy AIHITW8rojs20BCYNNRpAb7qd4GuAVarU3DioskWTsMCF9mRIYY= -----END CERTIFICATE-----Generated at Fri Apr 18 16:35:21 2025 by rpki-client