$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JLioru121S-FKvfNjaKdZLzSoWk.roa File: JLioru121S-FKvfNjaKdZLzSoWk.roa (raw, json) Hash identifier: Mei+eGjzcRZmMlTfdG/86C0IjN2WC+TuWKP/HVWMS5E= Subject key identifier: 24:B8:A8:AE:ED:76:D5:2F:85:2A:F7:CD:8D:A2:9D:64:BC:D2:A1:69 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2401 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JLioru121S-FKvfNjaKdZLzSoWk.roa Signing time: Mon 10 Feb 2025 14:18:10 +0000 ROA not before: Mon 10 Feb 2025 14:18:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 45.64.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9217 (0x2401) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=24B8A8AEED76D52F852AF7CD8DA29D64BCD2A169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:56:3b:c1:2a:36:62:a8:c7:32:02:9f:34:a0: 66:37:34:c8:71:6e:af:95:13:c7:35:ed:31:18:45: d1:38:c0:7b:d8:1b:0a:bf:9e:9b:bf:08:9b:8f:75: 71:94:a9:03:8e:9a:fc:68:d2:64:11:30:e4:ae:4c: 22:2d:b1:99:32:14:06:d8:42:1c:0b:2c:06:10:79: 34:ac:46:07:9b:7e:2f:65:7e:42:e3:e2:61:d7:cd: e2:9a:36:d4:94:89:60:9a:37:99:c2:20:cb:a5:11: f4:02:02:d8:b1:ce:a2:5e:d3:e2:a1:84:e2:6b:59: 5b:92:59:34:b5:d3:98:ad:9e:33:04:61:e0:87:79: 58:ba:cc:73:0b:73:97:f8:d2:4e:7d:05:c4:e6:7d: 53:24:a9:89:2c:b1:3a:06:ce:09:a7:d3:d8:92:f3: 93:6d:ba:06:86:14:49:2c:43:33:31:93:60:64:7c: fc:5f:9b:c6:8b:ec:1b:bf:dc:8e:50:59:eb:67:e4: bd:c1:0d:e4:91:8f:4f:8f:17:ef:72:8c:7a:79:e8: 72:5b:61:25:7d:f8:9a:85:c2:c7:e9:85:6b:a4:9b: 34:c4:e3:a1:df:5d:28:3b:3f:80:db:49:15:02:9d: b4:23:d4:3e:30:de:66:b8:a3:ce:c9:4e:89:06:43: e6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B8:A8:AE:ED:76:D5:2F:85:2A:F7:CD:8D:A2:9D:64:BC:D2:A1:69 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JLioru121S-FKvfNjaKdZLzSoWk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.32.0/22 Signature Algorithm: sha256WithRSAEncryption 56:76:4a:aa:46:3a:c9:6a:e2:75:2a:cb:d5:21:c7:1c:25:77: 8d:b9:14:7f:eb:f2:b6:57:38:d3:da:bd:ac:20:ab:4f:12:b5: b7:8b:14:57:af:12:68:ae:74:9f:2d:d3:73:7d:a1:4c:d9:6a: 49:cc:12:50:91:8f:eb:5d:01:59:c7:f0:0a:10:66:5e:03:6b: f8:a1:15:ed:61:1b:10:78:08:d0:7b:7c:85:22:0e:67:ca:ad: c2:74:52:77:53:f1:62:a2:bd:16:10:d7:3a:6c:5b:53:47:61: ce:5e:89:06:8e:1e:64:14:cd:18:a1:0b:73:1a:be:8a:c4:ab: 8f:d7:58:0d:e4:08:a9:f0:7f:a1:43:07:f0:bd:e5:5f:14:7a: f6:62:9f:c6:ea:ad:dd:7d:d1:d4:5f:56:62:aa:8e:8c:7f:c2: 4a:68:5d:53:98:3a:5b:51:87:ec:c9:32:bd:87:96:8c:07:b6: 1c:f7:14:22:d0:14:a4:3b:5a:9f:aa:00:a9:f4:96:ba:9d:d8: b8:b8:cf:be:f4:f6:b0:48:e9:3f:8c:cc:ca:a4:4d:94:6f:fb: 13:0d:b9:30:59:63:60:d6:77:8e:46:78:ce:bc:f8:17:bf:13: 37:be:ab:e3:5f:0d:aa:cb:fe:71:d0:f8:d0:56:95:83:96:4e: b1:82:da:67 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJAEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI0QjhBOEFFRUQ3NkQ1 MkY4NTJBRjdDRDhEQTI5RDY0QkNEMkExNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjVjvBKjZiqMcyAp80oGY3NMhxbq+VE8c17TEYRdE4wHvYGwq/ npu/CJuPdXGUqQOOmvxo0mQRMOSuTCItsZkyFAbYQhwLLAYQeTSsRgebfi9lfkLj 4mHXzeKaNtSUiWCaN5nCIMulEfQCAtixzqJe0+KhhOJrWVuSWTS105itnjMEYeCH eVi6zHMLc5f40k59BcTmfVMkqYkssToGzgmn09iS85NtugaGFEksQzMxk2BkfPxf m8aL7Bu/3I5QWetn5L3BDeSRj0+PF+9yjHp56HJbYSV9+JqFwsfphWukmzTE46Hf XSg7P4DbSRUCnbQj1D4w3ma4o87JTokGQ+avAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJLioru121S+FKvfNjaKdZLzSoWkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0pMaW9ydTEyMVMtRkt2Zk5q YUtkWkx6U29Xay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIt QCAwDQYJKoZIhvcNAQELBQADggEBAFZ2SqpGOslq4nUqy9Uhxxwld425FH/r8rZX ONPavawgq08StbeLFFevEmiudJ8t03N9oUzZaknMElCRj+tdAVnH8AoQZl4Da/ih Fe1hGxB4CNB7fIUiDmfKrcJ0UndT8WKivRYQ1zpsW1NHYc5eiQaOHmQUzRihC3Ma vorEq4/XWA3kCKnwf6FDB/C95V8UevZin8bqrd190dRfVmKqjox/wkpoXVOYOltR h+zJMr2HlowHthz3FCLQFKQ7Wp+qAKn0lrqd2Li4z7709rBI6T+MzMqkTZRv+xMN uTBZY2DWd45GeM68+Be/Eze+q+NfDarL/nHQ+NBWlYOWTrGC2mc= -----END CERTIFICATE-----Generated at Fri Apr 18 16:54:11 2025 by rpki-client