$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HpRZOrbtYmMjXqBXeLgMZdSyeAg.roa File: HpRZOrbtYmMjXqBXeLgMZdSyeAg.roa (raw, json) Hash identifier: 1qiscjMyyt6D5rpLatySH5qjTHleeqp6xo+eiMtZ29E= Subject key identifier: 1E:94:59:3A:B6:ED:62:63:23:5E:A0:57:78:B8:0C:65:D4:B2:78:08 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 239A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HpRZOrbtYmMjXqBXeLgMZdSyeAg.roa Signing time: Mon 10 Feb 2025 14:17:44 +0000 ROA not before: Mon 10 Feb 2025 14:17:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 180.218.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9114 (0x239a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:44 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1E94593AB6ED6263235EA05778B80C65D4B27808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9d:94:4c:c9:be:3d:9d:39:f0:0d:f2:fe:71: be:56:7e:82:c3:81:1a:5f:39:fa:4d:f2:7a:44:01: 73:a3:35:ec:21:47:5d:0c:96:de:22:ae:c5:8d:bd: fd:50:53:3a:47:25:99:cd:ad:c5:71:19:f6:15:b0: fe:da:8a:08:cc:d9:29:16:d1:7b:38:05:7f:81:59: 28:4a:34:51:6c:8a:55:69:05:40:a0:9f:20:21:d7: de:b2:b0:b6:d0:a9:56:fa:bd:8e:52:48:ea:d3:f3: c7:f6:f6:f6:55:f7:e8:56:e5:16:a8:ed:c8:27:1e: 51:ce:a1:67:12:c2:84:3c:fa:7f:8c:82:da:fb:b5: d5:48:35:8d:b4:c1:cd:c4:5b:b6:ad:1d:4f:b6:ef: 17:fe:f8:f9:e4:57:03:6d:80:ce:b3:c1:cf:ab:33: 6a:5f:39:08:80:fb:e6:11:b4:cd:a0:f0:67:08:9c: b6:23:c3:ff:e5:d4:29:b3:4a:ad:d4:f5:f7:8c:28: 02:f0:ea:d4:44:21:39:df:33:5b:7e:48:72:3e:af: 2f:d8:91:ad:a1:60:69:f7:0e:03:2d:bd:12:b1:de: 66:dd:34:d2:ee:20:c6:bd:1a:d0:e7:7e:d4:b4:f4: 96:32:f2:9f:0f:81:0c:41:b5:80:d3:e1:0b:cb:56: 8c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:94:59:3A:B6:ED:62:63:23:5E:A0:57:78:B8:0C:65:D4:B2:78:08 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HpRZOrbtYmMjXqBXeLgMZdSyeAg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.248.0/21 Signature Algorithm: sha256WithRSAEncryption 0b:0c:55:b1:d3:05:ac:0b:3b:f4:bc:7b:61:f7:31:d1:44:07: ae:a5:15:cd:c8:8a:c1:ee:2f:40:86:81:95:25:fd:45:fc:75: b3:4c:13:47:ab:0f:b3:20:75:29:83:77:02:84:16:b9:00:f8: 18:3f:3b:04:f5:b3:6a:30:79:6f:cc:73:90:e4:ae:8e:16:77: dd:f8:86:20:3a:32:02:d8:9e:53:ed:82:cd:7b:90:ce:68:85: 2c:17:8f:99:4d:5b:c0:b8:39:f9:e8:85:62:f8:2a:33:e5:87: fd:ce:25:39:75:32:ca:c5:fe:7d:9a:bc:e0:8e:2f:c6:6f:3e: 1a:f2:60:af:0d:b8:16:08:dd:0d:e8:f5:df:75:89:53:13:79: a2:a3:67:96:1f:b9:50:4b:ce:79:ac:d1:bc:83:19:77:b7:c6: 4d:ae:57:10:fc:cc:64:c5:de:de:c5:7a:53:b2:76:56:4d:eb: a8:95:36:e7:ba:58:42:9a:a9:43:34:91:b2:28:ff:cd:76:de: 6c:ce:99:fa:6b:62:39:35:eb:a1:70:53:3d:bf:57:f5:a4:b5: 7b:c8:ed:27:9a:71:6c:8f:6b:e7:42:bc:0a:34:44:b3:ae:25: ee:c1:63:b8:dc:13:00:39:af:16:b5:62:a1:8f:32:15:ea:35: bd:43:c5:6c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI5owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFOTQ1OTNBQjZFRDYy NjMyMzVFQTA1Nzc4QjgwQzY1RDRCMjc4MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmnZRMyb49nTnwDfL+cb5WfoLDgRpfOfpN8npEAXOjNewhR10M lt4irsWNvf1QUzpHJZnNrcVxGfYVsP7aigjM2SkW0Xs4BX+BWShKNFFsilVpBUCg nyAh196ysLbQqVb6vY5SSOrT88f29vZV9+hW5Rao7cgnHlHOoWcSwoQ8+n+Mgtr7 tdVINY20wc3EW7atHU+27xf++PnkVwNtgM6zwc+rM2pfOQiA++YRtM2g8GcInLYj w//l1CmzSq3U9feMKALw6tREITnfM1t+SHI+ry/Yka2hYGn3DgMtvRKx3mbdNNLu IMa9GtDnftS09JYy8p8PgQxBtYDT4QvLVozpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUHpRZOrbtYmMjXqBXeLgMZdSyeAgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0hwUlpPcmJ0WW1NalhxQlhl TGdNWmRTeWVBZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2vgwDQYJKoZIhvcNAQELBQADggEBAAsMVbHTBawLO/S8e2H3MdFEB66lFc3IisHu L0CGgZUl/UX8dbNME0erD7MgdSmDdwKEFrkA+Bg/OwT1s2oweW/Mc5Dkro4Wd934 hiA6MgLYnlPtgs17kM5ohSwXj5lNW8C4OfnohWL4KjPlh/3OJTl1MsrF/n2avOCO L8ZvPhryYK8NuBYI3Q3o9d91iVMTeaKjZ5YfuVBLznms0byDGXe3xk2uVxD8zGTF 3t7FelOydlZN66iVNue6WEKaqUM0kbIo/8123mzOmfprYjk166FwUz2/V/WktXvI 7SeacWyPa+dCvAo0RLOuJe7BY7jcEwA5rxa1YqGPMhXqNb1DxWw= -----END CERTIFICATE-----Generated at Fri Apr 18 16:51:37 2025 by rpki-client