$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KSloPXY6CuRcXFfY3-ha9WDMPII.roa File: KSloPXY6CuRcXFfY3-ha9WDMPII.roa (raw, json) Hash identifier: M9DXjRYGsFQVXM92x9WwQ0rirYlXGMqvc9e6jzjWU8A= Subject key identifier: 29:29:68:3D:76:3A:0A:E4:5C:5C:57:D8:DF:E8:5A:F5:60:CC:3C:82 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 244D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KSloPXY6CuRcXFfY3-ha9WDMPII.roa Signing time: Mon 10 Feb 2025 14:18:29 +0000 ROA not before: Mon 10 Feb 2025 14:18:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 124.6.0.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9293 (0x244d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2929683D763A0AE45C5C57D8DFE85AF560CC3C82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:59:97:62:cd:81:c6:b4:eb:4f:ae:45:68:97: fa:b3:b8:b1:db:17:e2:ad:66:5d:50:fb:63:2b:bf: d4:4b:36:c9:b7:7b:fd:8d:f6:9b:ab:73:b3:76:fe: f0:5e:50:2a:d3:e4:28:db:f8:de:3b:a7:f0:7a:21: 0f:44:e8:15:68:db:8d:5d:c5:51:1c:5b:c1:b8:fd: b6:47:16:16:40:ca:7b:b6:1e:5f:96:a1:1d:d7:d0: 9c:d6:19:66:31:b6:cf:40:3a:99:5e:f6:9d:1b:10: 0f:57:4d:4e:86:2e:de:79:a3:50:0d:ee:c3:78:02: 91:5e:33:e8:40:61:79:40:6a:de:98:2f:a1:57:60: f2:3b:a9:c6:ef:6a:99:a4:d7:e4:ea:5c:63:1d:cf: 64:4f:77:68:66:c1:44:3e:ad:bf:ec:b8:c3:10:e3: f3:e4:46:18:13:7a:cf:38:11:d5:e5:26:73:55:f0: b6:9b:5a:8a:b3:37:5f:ed:16:8b:bb:5c:ca:40:95: c6:e7:39:f5:69:32:8d:11:b0:68:63:5a:31:ef:86: 37:cb:50:7e:fd:60:e8:e0:d3:ca:10:ae:82:42:43: 27:31:40:1a:7b:39:29:5b:dc:16:96:4f:e0:25:e9: 4d:62:e2:76:5e:f2:d9:c6:cf:8b:16:3e:32:b4:70: 70:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:29:68:3D:76:3A:0A:E4:5C:5C:57:D8:DF:E8:5A:F5:60:CC:3C:82 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KSloPXY6CuRcXFfY3-ha9WDMPII.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.6.0.0/19 Signature Algorithm: sha256WithRSAEncryption 25:1b:5d:5c:ec:18:b4:f8:f4:32:af:e7:c6:70:ce:04:0b:2b: f0:68:5a:a7:e2:78:33:a3:1d:02:c2:21:be:5e:46:46:59:13: 68:1f:5a:a4:13:9f:eb:c2:b5:0a:44:88:d6:0f:95:25:88:4e: 53:19:73:da:6c:74:8d:1c:ad:76:6a:49:0a:e6:05:53:0f:98: 16:ad:3b:8d:a3:3a:30:71:09:bd:49:ef:db:8d:49:ec:7d:45: 2c:3f:dc:35:6e:24:d4:82:54:29:85:36:14:79:9f:77:2c:42: b2:99:d0:b9:1e:76:f2:da:3c:0a:38:a8:ad:5a:39:d2:dd:46: b3:28:de:35:88:1e:a5:fd:d2:84:b5:39:f2:a4:b0:47:0c:ed: ee:a2:af:6d:93:f2:64:f1:bf:2b:c0:46:12:89:51:32:bd:61: 1d:07:a6:35:fc:7d:a2:10:c1:f4:b1:fc:49:04:c6:37:6c:1b: e3:d2:c1:9c:91:b0:8c:1b:a8:d8:c3:0f:1b:01:ea:8f:b1:86: 0d:db:d9:da:73:22:6b:b8:58:3e:4a:8c:5e:cf:5b:47:84:65: bb:18:42:cc:0b:bf:aa:1f:08:27:92:74:e3:f2:13:eb:30:9b: 45:de:a0:65:79:ab:aa:88:16:77:cf:f4:9e:1f:9d:d7:d4:16: 37:2b:b1:3e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJE0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI5Mjk2ODNENzYzQTBB RTQ1QzVDNTdEOERGRTg1QUY1NjBDQzNDODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrWZdizYHGtOtPrkVol/qzuLHbF+KtZl1Q+2Mrv9RLNsm3e/2N 9purc7N2/vBeUCrT5Cjb+N47p/B6IQ9E6BVo241dxVEcW8G4/bZHFhZAynu2Hl+W oR3X0JzWGWYxts9AOple9p0bEA9XTU6GLt55o1AN7sN4ApFeM+hAYXlAat6YL6FX YPI7qcbvapmk1+TqXGMdz2RPd2hmwUQ+rb/suMMQ4/PkRhgTes84EdXlJnNV8Lab WoqzN1/tFou7XMpAlcbnOfVpMo0RsGhjWjHvhjfLUH79YOjg08oQroJCQycxQBp7 OSlb3BaWT+Al6U1i4nZe8tnGz4sWPjK0cHBXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKSloPXY6CuRcXFfY3+ha9WDMPIIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0tTbG9QWFk2Q3VSY1hGZlkz LWhhOVdETVBJSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8 BgAwDQYJKoZIhvcNAQELBQADggEBACUbXVzsGLT49DKv58ZwzgQLK/BoWqfieDOj HQLCIb5eRkZZE2gfWqQTn+vCtQpEiNYPlSWITlMZc9psdI0crXZqSQrmBVMPmBat O42jOjBxCb1J79uNSex9RSw/3DVuJNSCVCmFNhR5n3csQrKZ0LkedvLaPAo4qK1a OdLdRrMo3jWIHqX90oS1OfKksEcM7e6ir22T8mTxvyvARhKJUTK9YR0HpjX8faIQ wfSx/EkExjdsG+PSwZyRsIwbqNjDDxsB6o+xhg3b2dpzImu4WD5KjF7PW0eEZbsY QswLv6ofCCeSdOPyE+swm0XeoGV5q6qIFnfP9J4fndfUFjcrsT4= -----END CERTIFICATE-----Generated at Fri Apr 18 16:44:51 2025 by rpki-client