$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Gt02FEwQZ1Q1mn_3YOCA3vg5uBk.roa File: Gt02FEwQZ1Q1mn_3YOCA3vg5uBk.roa (raw, json) Hash identifier: i7njHdFA0w5jqhZUqZAqyvBY8hEkWPD0QgZBOR6Cw98= Subject key identifier: 1A:DD:36:14:4C:10:67:54:35:9A:7F:F7:60:E0:80:DE:F8:39:B8:19 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2483 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Gt02FEwQZ1Q1mn_3YOCA3vg5uBk.roa Signing time: Mon 10 Feb 2025 14:18:43 +0000 ROA not before: Mon 10 Feb 2025 14:18:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9347 (0x2483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1ADD36144C106754359A7FF760E080DEF839B819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:90:fe:30:3a:d8:00:52:e9:5d:19:83:b7:8c: 47:12:d7:7a:d7:1c:7f:ae:0e:96:41:95:50:80:eb: ed:f9:9b:a6:55:2e:a4:2b:c7:1a:13:2d:01:09:2a: bd:43:d0:ec:2d:dd:96:48:43:50:80:66:27:f6:38: 01:82:74:04:3e:77:aa:78:69:a4:02:c2:c8:11:0a: f9:23:4c:2c:9c:b6:8d:88:91:0e:b5:69:f7:84:06: 48:e9:7b:76:f8:10:3c:37:b5:c2:97:9f:7a:8f:4c: bb:32:1a:b7:1d:37:37:0c:e5:06:86:6a:e9:be:10: 69:6b:80:a8:6a:7a:0c:0a:81:0b:f9:6a:d8:80:e5: 46:9f:cc:bd:b2:57:65:98:0d:02:7d:83:ce:d6:f1: a7:0d:3a:f1:3e:40:43:e6:6c:84:0e:95:2e:22:65: 87:c8:6d:dc:4b:72:28:4d:e1:f3:e6:08:64:cc:57: 67:4c:2a:60:b4:4a:d3:b5:5f:04:d5:7d:cf:52:91: 1c:0a:c4:e5:b1:f6:27:84:1c:23:3d:6e:ef:5e:8f: 0f:1e:d7:f4:e4:d1:59:20:20:49:b9:5a:3f:94:22: 0b:e9:2a:96:b6:3d:b7:33:ca:1e:1c:67:e5:98:b2: 5d:63:d6:0f:81:9d:1f:ce:1c:af:26:c3:e5:41:21: 7e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DD:36:14:4C:10:67:54:35:9A:7F:F7:60:E0:80:DE:F8:39:B8:19 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Gt02FEwQZ1Q1mn_3YOCA3vg5uBk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.80.0/21 Signature Algorithm: sha256WithRSAEncryption 15:87:86:56:0f:ec:2d:a3:e2:d8:a5:04:44:02:ee:a1:19:31: e9:a6:d4:aa:df:ff:be:19:19:23:5e:0b:5f:c4:62:fb:44:07: 67:f7:d6:8c:91:0f:8e:89:8d:f0:b4:6a:e0:26:7b:6f:fa:4a: a7:32:4d:63:e4:0f:59:3d:60:8a:59:46:e4:7d:d9:16:5f:e3: 3a:02:fc:11:22:ce:8a:f2:aa:0a:a2:c6:bd:42:e1:77:9d:99: a3:c0:77:60:2c:3f:e0:30:23:a6:d0:82:ce:d6:3a:7b:c2:d3: 2e:24:c5:d8:1d:82:d2:50:1b:ac:23:92:6d:5a:7a:7c:19:f5: b8:50:90:d5:59:db:e7:78:e0:52:cd:59:73:51:6c:b1:08:f7: 9d:6b:2d:f3:2d:e8:88:a8:de:bf:31:48:0d:fc:6e:3f:33:59: 3b:c2:f3:ee:46:d1:99:88:b8:6e:24:85:43:ff:e6:e1:e5:0b: fc:0d:9c:39:f5:d1:a6:26:ae:da:66:72:88:a9:26:f8:ec:f0: fc:75:0d:66:a8:71:fd:64:a0:c1:06:d0:63:89:0f:5d:ce:8a: 22:f4:cf:2e:d7:c8:12:ec:ec:9b:57:9a:e5:30:55:d9:34:cb: 78:80:5d:71:1c:2f:7d:e0:9a:a9:ae:97:cb:05:00:86:72:5d: 07:70:9e:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJIMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFBREQzNjE0NEMxMDY3 NTQzNTlBN0ZGNzYwRTA4MERFRjgzOUI4MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJkP4wOtgAUuldGYO3jEcS13rXHH+uDpZBlVCA6+35m6ZVLqQr xxoTLQEJKr1D0Owt3ZZIQ1CAZif2OAGCdAQ+d6p4aaQCwsgRCvkjTCycto2IkQ61 afeEBkjpe3b4EDw3tcKXn3qPTLsyGrcdNzcM5QaGaum+EGlrgKhqegwKgQv5atiA 5UafzL2yV2WYDQJ9g87W8acNOvE+QEPmbIQOlS4iZYfIbdxLcihN4fPmCGTMV2dM KmC0StO1XwTVfc9SkRwKxOWx9ieEHCM9bu9ejw8e1/Tk0VkgIEm5Wj+UIgvpKpa2 Pbczyh4cZ+WYsl1j1g+BnR/OHK8mw+VBIX7BAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGt02FEwQZ1Q1mn/3YOCA3vg5uBkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0d0MDJGRXdRWjFRMW1uXzNZ T0NBM3ZnNXVCay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nlAwDQYJKoZIhvcNAQELBQADggEBABWHhlYP7C2j4tilBEQC7qEZMemm1Krf/74Z GSNeC1/EYvtEB2f31oyRD46JjfC0auAme2/6SqcyTWPkD1k9YIpZRuR92RZf4zoC /BEizoryqgqixr1C4XedmaPAd2AsP+AwI6bQgs7WOnvC0y4kxdgdgtJQG6wjkm1a enwZ9bhQkNVZ2+d44FLNWXNRbLEI951rLfMt6Iio3r8xSA38bj8zWTvC8+5G0ZmI uG4khUP/5uHlC/wNnDn10aYmrtpmcoipJvjs8Px1DWaocf1koMEG0GOJD13OiiL0 zy7XyBLs7JtXmuUwVdk0y3iAXXEcL33gmqmul8sFAIZyXQdwntk= -----END CERTIFICATE-----Generated at Fri Apr 18 16:54:10 2025 by rpki-client