$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JDTXJ2MuFaYdT33RPT-cpzEeWmo.roa File: JDTXJ2MuFaYdT33RPT-cpzEeWmo.roa (raw, json) Hash identifier: CBLCEq56fTamD+BX4CFR0BdGUxsm5OpnBmT2nwScKgk= Subject key identifier: 24:34:D7:27:63:2E:15:A6:1D:4F:7D:D1:3D:3F:9C:A7:31:1E:5A:6A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 242D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JDTXJ2MuFaYdT33RPT-cpzEeWmo.roa Signing time: Mon 10 Feb 2025 14:18:22 +0000 ROA not before: Mon 10 Feb 2025 14:18:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 61.61.208.0/24 maxlen: 29 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9261 (0x242d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:22 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2434D727632E15A61D4F7DD13D3F9CA7311E5A6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:71:a5:bd:73:68:ab:1c:c2:da:1a:20:51:91: 28:5d:58:64:65:e4:fa:f6:bd:6c:57:14:74:8c:b6: 17:a8:ba:d6:f2:68:5c:5a:41:60:ba:03:a9:2e:2c: 37:d1:af:77:3b:6b:6f:c8:84:7c:61:d9:48:8d:59: 39:12:87:37:81:cc:cb:58:e6:b3:c4:c8:6f:f2:84: 28:fc:46:94:89:82:b7:b1:21:ac:4e:ff:a6:3b:e1: 66:50:32:af:78:d3:22:2e:47:7a:11:66:0e:92:cb: 82:ed:f6:21:57:a0:df:8f:2e:35:d7:73:56:cf:8c: 9f:d6:ba:7d:7a:5e:54:40:16:16:3e:f6:f3:e2:10: bf:d0:d4:3c:88:53:6b:12:4d:11:35:f4:4b:1b:6b: b9:fa:bd:f3:99:85:46:21:ab:48:1c:03:d2:97:8d: a8:1d:60:1e:47:16:67:85:09:f8:c0:00:35:d2:f2: 56:43:61:ac:ab:4b:c2:b8:2a:75:6a:d0:38:a6:37: 9e:bc:ca:1c:c7:85:49:f6:44:d6:d9:94:89:06:05: c1:e8:ee:a3:49:b3:77:1f:e6:29:4d:1b:2c:ea:5c: 8e:9a:d6:9c:66:1b:de:7a:c6:1e:66:35:ec:37:93: e8:15:c7:92:6c:df:34:43:0f:12:95:a8:ec:3b:02: d1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:34:D7:27:63:2E:15:A6:1D:4F:7D:D1:3D:3F:9C:A7:31:1E:5A:6A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JDTXJ2MuFaYdT33RPT-cpzEeWmo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.208.0/24 Signature Algorithm: sha256WithRSAEncryption 67:9d:13:ca:81:ad:7e:af:29:e1:a2:47:e1:91:8c:c6:29:e4: 16:d2:d2:66:12:34:76:52:b5:9a:9f:7d:01:61:64:df:d0:03: 00:ad:e8:d1:62:54:e2:b0:76:2c:b1:1a:e9:94:fb:22:ca:b2: 1a:72:07:b3:06:e9:b2:f4:9f:01:83:5c:34:d0:8a:0a:30:e1: 24:4c:b7:24:02:61:89:bc:14:b9:f1:06:72:f4:1f:5c:6d:0f: 3d:9b:4d:0f:f9:a3:73:bc:90:4e:89:60:65:ad:f4:d1:ae:7e: 12:5f:5d:b2:bc:fd:ad:6a:57:d4:78:11:64:8a:7e:06:c0:f0: cf:b2:42:09:4a:b5:9d:4a:a9:04:0b:6f:c9:61:ab:58:31:a3: 99:ff:a7:9d:21:45:94:41:c9:c7:61:db:60:ea:a1:6f:61:da: c1:da:8e:ac:12:e2:5f:ea:2f:4f:51:89:2a:16:57:dd:fb:58: 25:02:51:67:42:31:2f:28:8a:ff:eb:57:c5:ac:59:53:0d:7b: 7b:db:9d:b8:ef:b5:f9:89:3e:c3:83:80:17:b7:8e:e3:43:d6: 38:06:6a:7a:8f:d4:e9:7f:58:9b:d2:4d:c9:8b:d7:75:3d:14: 68:b3:dd:49:41:a4:06:be:a1:7e:7c:14:6c:45:7b:b0:1e:5b: 1d:8e:fb:4f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJC0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI0MzRENzI3NjMyRTE1 QTYxRDRGN0REMTNEM0Y5Q0E3MzExRTVBNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQcaW9c2irHMLaGiBRkShdWGRl5Pr2vWxXFHSMtheoutbyaFxa QWC6A6kuLDfRr3c7a2/IhHxh2UiNWTkShzeBzMtY5rPEyG/yhCj8RpSJgrexIaxO /6Y74WZQMq940yIuR3oRZg6Sy4Lt9iFXoN+PLjXXc1bPjJ/Wun16XlRAFhY+9vPi EL/Q1DyIU2sSTRE19Esba7n6vfOZhUYhq0gcA9KXjagdYB5HFmeFCfjAADXS8lZD YayrS8K4KnVq0DimN568yhzHhUn2RNbZlIkGBcHo7qNJs3cf5ilNGyzqXI6a1pxm G956xh5mNew3k+gVx5Js3zRDDxKVqOw7AtFTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJDTXJ2MuFaYdT33RPT+cpzEeWmowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0pEVFhKMk11RmFZZFQzM1JQ VC1jcHpFZVdtby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 PdAwDQYJKoZIhvcNAQELBQADggEBAGedE8qBrX6vKeGiR+GRjMYp5BbS0mYSNHZS tZqffQFhZN/QAwCt6NFiVOKwdiyxGumU+yLKshpyB7MG6bL0nwGDXDTQigow4SRM tyQCYYm8FLnxBnL0H1xtDz2bTQ/5o3O8kE6JYGWt9NGufhJfXbK8/a1qV9R4EWSK fgbA8M+yQglKtZ1KqQQLb8lhq1gxo5n/p50hRZRBycdh22DqoW9h2sHajqwS4l/q L09RiSoWV937WCUCUWdCMS8oiv/rV8WsWVMNe3vbnbjvtfmJPsODgBe3juND1jgG anqP1Ol/WJvSTcmL13U9FGiz3UlBpAa+oX58FGxFe7AeWx2O+08= -----END CERTIFICATE-----Generated at Fri Apr 18 16:44:28 2025 by rpki-client