$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KHfn4qhjGyvr_Lq1MLmj2PwsATk.roa File: KHfn4qhjGyvr_Lq1MLmj2PwsATk.roa (raw, json) Hash identifier: 6LynsUeQ2mUcA6YkZrpHWvMvi3PRvUFQmct6SYmA5fg= Subject key identifier: 28:77:E7:E2:A8:63:1B:2B:EB:FC:BA:B5:30:B9:A3:D8:FC:2C:01:39 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23CC Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KHfn4qhjGyvr_Lq1MLmj2PwsATk.roa Signing time: Mon 10 Feb 2025 14:17:56 +0000 ROA not before: Mon 10 Feb 2025 14:17:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9164 (0x23cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2877E7E2A8631B2BEBFCBAB530B9A3D8FC2C0139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:36:83:5f:80:86:95:ec:10:7e:35:cc:db:bf: 97:90:bb:b8:7b:5a:77:a1:fd:5f:f2:8c:de:63:24: 85:18:a3:a2:d9:72:7b:bb:9f:46:ae:21:4d:4d:40: 99:24:29:65:53:6e:79:cf:04:e0:ec:d0:2b:df:1e: 69:09:fa:28:4d:91:cc:23:c9:47:26:57:26:1d:0c: cd:e5:46:b8:37:a3:13:33:54:16:82:a0:df:bf:b3: 16:c0:61:5e:46:37:9c:43:22:89:39:e6:73:c1:03: 48:22:9c:af:73:21:04:10:f8:40:38:d9:ef:65:0d: 27:d6:52:7d:60:29:f8:5c:e1:75:de:e3:0f:19:91: 56:ad:d8:2c:6f:17:67:5a:43:ca:52:26:d6:81:60: 03:6d:3c:43:a8:25:e2:cf:0c:fb:61:1d:c2:46:e0: 03:2b:f7:99:ae:74:45:1a:eb:59:20:fc:c6:51:72: 8d:93:55:15:d4:2c:34:b9:06:81:51:43:6f:f3:2f: 6e:9f:00:4d:50:ec:db:b0:1f:28:2a:79:9b:2e:3c: 7f:d0:06:dd:c7:67:dc:bb:09:32:d6:fb:21:7f:5c: e8:f6:f2:b2:ca:f6:eb:57:ff:56:ad:b1:77:ee:07: 26:59:67:41:59:af:3f:13:e2:16:48:eb:50:f7:94: 71:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:77:E7:E2:A8:63:1B:2B:EB:FC:BA:B5:30:B9:A3:D8:FC:2C:01:39 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KHfn4qhjGyvr_Lq1MLmj2PwsATk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.0.0/21 Signature Algorithm: sha256WithRSAEncryption 45:d8:b1:56:1a:50:15:eb:94:f1:a6:98:d7:cc:a4:5c:52:94: 71:10:39:a3:81:41:a8:a6:fe:a6:02:e0:15:60:ea:50:cf:e9: 35:9f:21:cc:ef:ea:fe:85:92:20:e9:d4:24:65:8c:c1:97:a0: c3:db:15:5c:9e:9f:a1:30:ed:6b:6f:4e:be:03:da:41:1a:37: ec:08:ea:df:d5:68:81:eb:f3:37:0e:28:12:70:ba:20:da:af: af:34:81:a4:e1:9b:6a:4e:6e:12:18:df:30:ef:f7:22:cb:1e: 29:58:07:61:5a:f4:29:eb:06:6b:2b:c7:58:46:ca:50:66:a8: 6f:b0:42:45:46:af:5c:34:92:18:4c:38:49:53:af:77:5f:ce: 46:7f:64:20:d4:46:8f:f0:d7:1d:64:e8:dd:1c:53:63:4f:7b: 83:42:35:0e:d1:51:1d:4b:78:c3:de:08:2b:1b:02:40:67:7f: 23:04:21:93:25:6e:1c:bf:cb:78:f3:05:66:23:9d:80:c6:9e: 57:de:a3:4a:9e:21:53:1f:fa:70:90:6d:5c:c1:50:69:e7:5a: c1:2c:70:bb:8b:69:1d:35:6f:1e:37:2b:51:6d:79:4d:b9:95: 22:b5:b2:5c:fa:bd:fe:01:89:39:ec:9c:33:84:f2:27:75:54: 9d:f8:72:3f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI8wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI4NzdFN0UyQTg2MzFC MkJFQkZDQkFCNTMwQjlBM0Q4RkMyQzAxMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVNoNfgIaV7BB+Nczbv5eQu7h7Wneh/V/yjN5jJIUYo6LZcnu7 n0auIU1NQJkkKWVTbnnPBODs0CvfHmkJ+ihNkcwjyUcmVyYdDM3lRrg3oxMzVBaC oN+/sxbAYV5GN5xDIok55nPBA0ginK9zIQQQ+EA42e9lDSfWUn1gKfhc4XXe4w8Z kVat2CxvF2daQ8pSJtaBYANtPEOoJeLPDPthHcJG4AMr95mudEUa61kg/MZRco2T VRXULDS5BoFRQ2/zL26fAE1Q7NuwHygqeZsuPH/QBt3HZ9y7CTLW+yF/XOj28rLK 9utX/1atsXfuByZZZ0FZrz8T4hZI61D3lHEhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKHfn4qhjGyvr/Lq1MLmj2PwsATkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0tIZm40cWhqR3l2cl9McTFN TG1qMlB3c0FUay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx ngAwDQYJKoZIhvcNAQELBQADggEBAEXYsVYaUBXrlPGmmNfMpFxSlHEQOaOBQaim /qYC4BVg6lDP6TWfIczv6v6FkiDp1CRljMGXoMPbFVyen6Ew7WtvTr4D2kEaN+wI 6t/VaIHr8zcOKBJwuiDar680gaThm2pObhIY3zDv9yLLHilYB2Fa9CnrBmsrx1hG ylBmqG+wQkVGr1w0khhMOElTr3dfzkZ/ZCDURo/w1x1k6N0cU2NPe4NCNQ7RUR1L eMPeCCsbAkBnfyMEIZMlbhy/y3jzBWYjnYDGnlfeo0qeIVMf+nCQbVzBUGnnWsEs cLuLaR01bx43K1FteU25lSK1slz6vf4BiTnsnDOE8id1VJ34cj8= -----END CERTIFICATE-----Generated at Thu Apr 17 20:56:47 2025 by rpki-client