$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JIHImfD2JmO_5aPhhySLFtgXyhU.roa File: JIHImfD2JmO_5aPhhySLFtgXyhU.roa (raw, json) Hash identifier: e7xXiCMnsdQ+3ywAEuB8SUZB21w99VlWOeUt10kejJY= Subject key identifier: 24:81:C8:99:F0:F6:26:63:BF:E5:A3:E1:87:24:8B:16:D8:17:CA:15 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24BB Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JIHImfD2JmO_5aPhhySLFtgXyhU.roa Signing time: Mon 10 Feb 2025 14:18:56 +0000 ROA not before: Mon 10 Feb 2025 14:18:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 122.100.72.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9403 (0x24bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2481C899F0F62663BFE5A3E187248B16D817CA15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:96:87:87:85:4a:e2:5f:8a:4b:22:8f:44:92: 49:e2:d2:c7:e7:d9:fd:da:fe:6e:59:e8:6a:7d:30: 0d:6f:a4:99:7a:44:a2:e5:d8:eb:09:7c:b9:99:e7: b0:6c:26:14:16:61:50:4d:be:2c:53:6e:ed:e9:e6: c4:61:0e:30:c0:1b:ff:5f:77:47:52:df:30:c7:ec: 87:bd:50:d8:a5:b9:1d:d0:6a:a2:a7:24:0a:03:05: 4b:da:4c:63:3b:8e:23:ad:b0:5f:95:83:d9:43:48: 0e:b8:c5:f1:3a:2a:dc:89:cc:62:b4:c6:ce:4d:27: 0d:8e:45:1e:44:48:db:ae:f7:ed:95:4d:de:bf:5c: d6:3a:86:96:f5:2b:e6:46:a5:04:dd:8b:6a:31:c7: a3:e4:25:64:6e:43:b3:44:1b:fb:49:f3:31:fd:9f: 6d:9d:c4:1f:4d:3d:76:de:77:af:21:85:48:cb:88: db:22:2a:ab:17:82:ef:f4:b4:24:d0:a4:ab:a4:1a: 59:88:4c:86:44:19:76:5b:58:15:bf:53:61:01:10: 36:94:74:4d:99:7f:8d:e7:2b:4c:6d:7b:d3:1f:11: ae:5e:18:0a:d7:0a:c5:0e:4f:51:bd:c0:e2:10:a6: 9d:ff:a5:8a:7d:77:0f:ef:85:fe:01:fe:4b:bb:10: ab:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:81:C8:99:F0:F6:26:63:BF:E5:A3:E1:87:24:8B:16:D8:17:CA:15 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JIHImfD2JmO_5aPhhySLFtgXyhU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.72.0/21 Signature Algorithm: sha256WithRSAEncryption 13:9f:9e:73:5d:ea:e1:31:89:a2:3d:cc:a4:b8:5f:6e:39:f9: d0:4d:61:ed:9a:37:cb:cc:1d:48:c7:8d:cb:cf:53:af:6d:6e: c2:ee:d2:0f:33:1c:61:8f:84:5d:46:12:97:98:7b:1d:47:ef: 3f:29:07:c1:e0:52:bb:3a:53:33:fc:9f:cc:8b:1b:93:11:cd: 5a:d7:4d:71:48:e7:df:b3:ba:b9:c0:2f:55:95:ed:24:0b:21: 87:86:f2:e6:fd:58:32:65:a9:08:f0:16:d8:0e:64:b1:bc:e1: dc:b4:a7:bf:a4:de:48:f1:00:7e:ec:51:28:f7:35:70:6f:b4: 5b:4c:54:d4:cb:1c:7d:a4:a6:82:e7:a6:33:10:cd:59:10:0c: a8:16:8b:ba:a7:6e:59:0c:af:bc:a1:50:d6:99:26:ee:98:d9: 68:a3:c4:28:c1:5f:df:cd:b2:79:38:27:b2:c5:20:dc:44:b9: 5c:68:71:6c:e5:4b:37:ac:82:10:23:7b:16:cc:a0:8c:84:4c: bb:dd:5e:55:c4:dd:6d:73:86:99:04:ff:b4:51:98:4b:22:df: dc:39:aa:0f:c5:24:b2:36:bb:77:87:4f:44:7a:3f:10:13:c6: a3:48:c3:7c:1d:67:ec:43:31:1b:7d:6f:64:b0:19:6f:37:b8: ee:62:a7:cf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJLswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI0ODFDODk5RjBGNjI2 NjNCRkU1QTNFMTg3MjQ4QjE2RDgxN0NBMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwloeHhUriX4pLIo9Ekkni0sfn2f3a/m5Z6Gp9MA1vpJl6RKLl 2OsJfLmZ57BsJhQWYVBNvixTbu3p5sRhDjDAG/9fd0dS3zDH7Ie9UNiluR3QaqKn JAoDBUvaTGM7jiOtsF+Vg9lDSA64xfE6KtyJzGK0xs5NJw2ORR5ESNuu9+2VTd6/ XNY6hpb1K+ZGpQTdi2oxx6PkJWRuQ7NEG/tJ8zH9n22dxB9NPXbed68hhUjLiNsi KqsXgu/0tCTQpKukGlmITIZEGXZbWBW/U2EBEDaUdE2Zf43nK0xte9MfEa5eGArX CsUOT1G9wOIQpp3/pYp9dw/vhf4B/ku7EKvPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJIHImfD2JmO/5aPhhySLFtgXyhUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0pJSEltZkQySm1PXzVhUGho eVNMRnRnWHloVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 ZEgwDQYJKoZIhvcNAQELBQADggEBABOfnnNd6uExiaI9zKS4X245+dBNYe2aN8vM HUjHjcvPU69tbsLu0g8zHGGPhF1GEpeYex1H7z8pB8HgUrs6UzP8n8yLG5MRzVrX TXFI59+zurnAL1WV7SQLIYeG8ub9WDJlqQjwFtgOZLG84dy0p7+k3kjxAH7sUSj3 NXBvtFtMVNTLHH2kpoLnpjMQzVkQDKgWi7qnblkMr7yhUNaZJu6Y2WijxCjBX9/N snk4J7LFINxEuVxocWzlSzesghAjexbMoIyETLvdXlXE3W1zhpkE/7RRmEsi39w5 qg/FJLI2u3eHT0R6PxATxqNIw3wdZ+xDMRt9b2SwGW83uO5ip88= -----END CERTIFICATE-----Generated at Thu Apr 17 21:03:38 2025 by rpki-client