$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/I4Up-4bjAsYW9D0u47racUY059I.roa File: I4Up-4bjAsYW9D0u47racUY059I.roa (raw, json) Hash identifier: R3EosyshrUHgSpmMAXM2wJ4J6cZeVQxwD1zW/ZG1dkg= Subject key identifier: 23:85:29:FB:86:E3:02:C6:16:F4:3D:2E:E3:BA:DA:71:46:34:E7:D2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24CB Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/I4Up-4bjAsYW9D0u47racUY059I.roa Signing time: Mon 10 Feb 2025 14:19:01 +0000 ROA not before: Mon 10 Feb 2025 14:19:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9419 (0x24cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:19:01 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=238529FB86E302C616F43D2EE3BADA714634E7D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:40:96:7d:96:f0:a6:69:de:f7:72:b5:55:73: a3:77:8f:5a:72:00:93:9a:2c:eb:d0:eb:9d:cb:c9: 0a:97:00:22:e0:14:da:5d:d1:a4:81:b6:2e:2b:92: f9:62:c5:28:37:1e:de:a4:81:5e:4f:8d:cf:cb:ae: b3:92:6b:9b:2d:d3:71:9f:2b:2c:20:ac:fe:81:ea: 39:b4:fa:31:43:b6:88:c6:7e:6c:dd:01:f8:cc:b5: 1a:7c:04:3f:c0:ea:02:3d:57:64:74:76:b3:14:7e: 65:db:08:b6:8d:f8:1f:5d:8f:27:4a:b4:4c:f4:a6: db:94:bf:7d:6d:64:c3:04:61:ae:31:61:70:53:63: 35:85:aa:15:ac:b5:bf:d7:6a:13:9e:ba:c6:f8:05: 8d:c8:97:64:30:93:31:bd:55:92:38:fd:ea:26:c8: 5a:19:1a:d3:d1:48:3b:29:49:5c:c4:46:a3:a2:26: b4:8c:ba:92:c5:4d:15:89:b3:66:c6:d9:a4:48:70: 0e:90:17:af:ce:b5:8e:a6:06:88:7a:56:b9:63:11: 76:97:91:4d:76:48:46:2c:cd:11:61:c0:a2:dd:97: 83:47:f5:94:5e:b3:bf:af:27:a1:ec:e5:2a:00:d4: 39:79:1f:b5:e0:40:d1:c6:4f:3d:79:16:e4:77:31: ce:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:85:29:FB:86:E3:02:C6:16:F4:3D:2E:E3:BA:DA:71:46:34:E7:D2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/I4Up-4bjAsYW9D0u47racUY059I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.40.0/21 Signature Algorithm: sha256WithRSAEncryption 69:d5:27:3d:eb:f1:1f:68:66:e8:86:a4:a5:22:f0:47:28:ed: 60:f4:6c:02:90:0d:d2:53:01:a2:05:de:a4:f2:53:38:3c:58: 0f:66:50:6d:dc:a0:2b:cb:21:1d:a1:3d:08:e8:42:ae:26:52: 71:92:16:fd:a0:ce:4b:0d:33:04:5a:e5:25:66:fd:d2:ee:48: fe:33:e2:6b:c8:2c:ba:f0:d9:5b:c2:4b:ba:b7:87:21:12:cc: d1:92:56:67:21:89:34:13:79:32:78:4a:06:b5:53:3d:ea:98: 92:08:a5:36:f7:2b:f6:64:3d:3e:ad:0c:c8:58:77:6e:f1:39: e5:b2:67:84:7a:fa:81:b8:65:ce:19:6b:5a:a7:38:26:11:5e: 3d:41:ac:aa:25:27:1e:8a:e4:f9:bd:aa:41:66:c9:b2:e8:fd: 11:29:54:dd:55:9e:81:4c:96:50:6b:e6:71:02:52:a7:7f:c5: b3:2d:ca:61:eb:61:05:3c:30:17:04:55:f4:06:70:33:41:75: 51:2c:b7:97:51:55:a5:9f:ba:14:98:a8:33:db:8d:ba:d7:ec: 4c:25:ac:13:31:b2:66:fc:ff:89:2e:50:10:7a:d7:5f:ab:1f: 00:90:21:7a:e5:f5:49:96:4e:a3:6f:f6:2d:db:71:56:8d:ed: d8:f8:60:57 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJMswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE5MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIzODUyOUZCODZFMzAy QzYxNkY0M0QyRUUzQkFEQTcxNDYzNEU3RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3QJZ9lvCmad73crVVc6N3j1pyAJOaLOvQ653LyQqXACLgFNpd 0aSBti4rkvlixSg3Ht6kgV5Pjc/LrrOSa5st03GfKywgrP6B6jm0+jFDtojGfmzd AfjMtRp8BD/A6gI9V2R0drMUfmXbCLaN+B9djydKtEz0ptuUv31tZMMEYa4xYXBT YzWFqhWstb/XahOeusb4BY3Il2QwkzG9VZI4/eomyFoZGtPRSDspSVzERqOiJrSM upLFTRWJs2bG2aRIcA6QF6/OtY6mBoh6VrljEXaXkU12SEYszRFhwKLdl4NH9ZRe s7+vJ6Hs5SoA1Dl5H7XgQNHGTz15FuR3Mc65AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUI4Up+4bjAsYW9D0u47racUY059IwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0k0VXAtNGJqQXNZVzlEMHU0 N3JhY1VZMDU5SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nygwDQYJKoZIhvcNAQELBQADggEBAGnVJz3r8R9oZuiGpKUi8Eco7WD0bAKQDdJT AaIF3qTyUzg8WA9mUG3coCvLIR2hPQjoQq4mUnGSFv2gzksNMwRa5SVm/dLuSP4z 4mvILLrw2VvCS7q3hyESzNGSVmchiTQTeTJ4Sga1Uz3qmJIIpTb3K/ZkPT6tDMhY d27xOeWyZ4R6+oG4Zc4Za1qnOCYRXj1BrKolJx6K5Pm9qkFmybLo/REpVN1VnoFM llBr5nECUqd/xbMtymHrYQU8MBcEVfQGcDNBdVEst5dRVaWfuhSYqDPbjbrX7Ewl rBMxsmb8/4kuUBB611+rHwCQIXrl9UmWTqNv9i3bcVaN7dj4YFc= -----END CERTIFICATE-----Generated at Fri Apr 18 16:47:44 2025 by rpki-client