$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JT5WNHvyKsiaLUfJz9SPezLDa90.roa File: JT5WNHvyKsiaLUfJz9SPezLDa90.roa (raw, json) Hash identifier: xP8rgK3KwmGR5dkMwgOAGibOf1uOcm7FRedh7cAVRmM= Subject key identifier: 25:3E:56:34:7B:F2:2A:C8:9A:2D:47:C9:CF:D4:8F:7B:32:C3:6B:DD Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23A9 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JT5WNHvyKsiaLUfJz9SPezLDa90.roa Signing time: Mon 10 Feb 2025 14:17:47 +0000 ROA not before: Mon 10 Feb 2025 14:17:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 49.159.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9129 (0x23a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=253E56347BF22AC89A2D47C9CFD48F7B32C36BDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:be:07:0b:95:96:a4:bf:e5:8e:04:9c:25:7d: dd:32:b6:f1:9e:4e:7d:28:3e:c1:61:1e:a9:c4:be: 3c:52:67:bf:64:1c:b5:ca:d8:30:82:e9:d7:0f:4d: 79:3a:49:fa:cf:c2:b8:fa:63:02:29:ac:b9:33:22: b4:4c:62:37:75:0e:89:37:2b:71:26:db:39:fc:82: bb:6b:8d:ef:4c:57:64:5a:ae:bc:66:53:d6:d9:e9: 11:4e:80:31:4d:95:48:ca:1a:76:9a:c9:de:b5:4f: 11:ea:58:1c:15:16:ab:4b:fc:78:e6:a5:92:b8:0b: 66:e4:de:1e:fa:f5:4a:2e:06:51:fd:3a:2c:d6:47: b9:51:1c:4b:a4:6f:97:33:f9:7b:74:dd:4d:2a:38: 1e:f1:bf:b3:eb:ee:e7:60:14:b8:aa:5d:eb:1a:ca: 05:ab:21:84:4b:8f:9f:63:66:6b:cf:5d:1e:cf:0f: 70:ed:06:34:61:83:8b:bb:3f:54:fe:44:f4:5c:d5: e1:73:ed:4c:0b:cc:9c:ad:e9:41:7c:76:8f:f7:75: 18:8f:58:b8:45:d4:2e:ab:5d:03:af:9e:51:d3:f4: 1a:03:72:1f:76:d4:36:ac:cc:0b:85:d9:15:cf:80: f0:14:55:fc:34:8b:58:70:0c:c4:f5:d4:69:a6:e9: 47:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3E:56:34:7B:F2:2A:C8:9A:2D:47:C9:CF:D4:8F:7B:32:C3:6B:DD X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JT5WNHvyKsiaLUfJz9SPezLDa90.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.92.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:71:70:2d:bf:18:ae:0d:7c:67:63:dd:51:88:ba:3e:6f:70: 0f:ff:aa:12:e2:6d:14:8e:ba:a1:1f:cb:09:6b:34:c6:14:5b: 2c:ce:d2:55:70:02:a7:cc:4e:17:42:11:9c:12:14:ed:2d:84: ab:68:d1:29:26:70:f3:c1:3b:ae:70:4a:81:08:da:91:2d:3e: 9f:71:aa:e3:68:10:64:3a:17:3c:5b:05:ea:ac:ff:cb:0d:5b: 45:fd:bd:3c:c2:8a:15:06:7d:02:1a:59:13:a0:ce:e3:5d:11: 75:a1:60:2b:9f:25:16:9e:cb:f3:e8:15:1d:70:b4:92:13:2e: 3d:50:cb:61:1b:8a:87:d8:21:d2:2a:2f:b5:00:08:ab:c6:85: 0e:46:3a:28:f6:c9:27:25:6b:93:fe:da:b1:f5:13:16:85:ab: 22:e0:3e:2d:3d:41:a1:93:f3:17:2c:f4:90:9e:26:8d:1e:cd: db:0b:ff:1e:99:93:0e:d2:21:24:81:e4:32:e7:eb:27:04:00: ad:3d:2a:b4:52:92:f3:d1:7d:86:df:9c:29:0d:7e:1f:09:2b: 2c:b1:36:8e:20:ad:3f:0e:28:55:8e:7a:b5:6d:f0:40:98:e4: 91:33:6e:76:81:5c:f2:ea:11:73:3a:08:2a:5a:45:30:64:30: 54:40:e4:6d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI1M0U1NjM0N0JGMjJB Qzg5QTJENDdDOUNGRDQ4RjdCMzJDMzZCREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfvgcLlZakv+WOBJwlfd0ytvGeTn0oPsFhHqnEvjxSZ79kHLXK 2DCC6dcPTXk6SfrPwrj6YwIprLkzIrRMYjd1Dok3K3Em2zn8grtrje9MV2Rarrxm U9bZ6RFOgDFNlUjKGnaayd61TxHqWBwVFqtL/HjmpZK4C2bk3h769UouBlH9OizW R7lRHEukb5cz+Xt03U0qOB7xv7Pr7udgFLiqXesaygWrIYRLj59jZmvPXR7PD3Dt BjRhg4u7P1T+RPRc1eFz7UwLzJyt6UF8do/3dRiPWLhF1C6rXQOvnlHT9BoDch92 1DaszAuF2RXPgPAUVfw0i1hwDMT11Gmm6Ud3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJT5WNHvyKsiaLUfJz9SPezLDa90wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0pUNVdOSHZ5S3NpYUxVZkp6 OVNQZXpMRGE5MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n1wwDQYJKoZIhvcNAQELBQADggEBACxxcC2/GK4NfGdj3VGIuj5vcA//qhLibRSO uqEfywlrNMYUWyzO0lVwAqfMThdCEZwSFO0thKto0SkmcPPBO65wSoEI2pEtPp9x quNoEGQ6FzxbBeqs/8sNW0X9vTzCihUGfQIaWROgzuNdEXWhYCufJRaey/PoFR1w tJITLj1Qy2EbiofYIdIqL7UACKvGhQ5GOij2yScla5P+2rH1ExaFqyLgPi09QaGT 8xcs9JCeJo0ezdsL/x6Zkw7SISSB5DLn6ycEAK09KrRSkvPRfYbfnCkNfh8JKyyx No4grT8OKFWOerVt8ECY5JEzbnaBXPLqEXM6CCpaRTBkMFRA5G0= -----END CERTIFICATE-----Generated at Fri Apr 18 16:45:11 2025 by rpki-client