$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Kbdd0GfDPogHlRvN_x35kc-zyIQ.roa File: Kbdd0GfDPogHlRvN_x35kc-zyIQ.roa (raw, json) Hash identifier: +7tAULk1rf12vvCxCOGDcf+khBypF6vmgnf6txfOX2Y= Subject key identifier: 29:B7:5D:D0:67:C3:3E:88:07:95:1B:CD:FF:1D:F9:91:CF:B3:C8:84 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 240C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Kbdd0GfDPogHlRvN_x35kc-zyIQ.roa Signing time: Mon 10 Feb 2025 14:18:12 +0000 ROA not before: Mon 10 Feb 2025 14:18:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9228 (0x240c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=29B75DD067C33E8807951BCDFF1DF991CFB3C884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:94:a6:d4:b4:a7:01:19:7e:e4:6b:5a:78:83: cb:09:27:e0:7b:26:fa:a4:00:28:f0:90:03:72:ba: 4d:42:d9:6e:e0:72:52:96:39:21:ea:7c:82:ab:69: 18:53:00:2d:1c:46:e7:52:c6:be:6f:1c:8e:b8:97: ad:38:10:93:ec:16:93:ca:42:15:25:72:f1:60:97: dc:77:17:6a:74:a8:eb:f6:c1:ac:43:a5:bc:47:a9: 96:cf:ea:bc:a6:d4:5a:82:95:f5:41:19:94:8c:9d: 33:07:d0:52:22:33:12:8d:ce:06:54:47:51:e4:0e: 02:34:26:6f:e2:b4:fd:f1:4f:c5:ae:59:84:a3:46: 6a:f2:2e:c1:2e:54:f8:57:5d:bd:b8:20:34:52:09: f5:79:65:d7:31:e9:71:f8:ce:e4:ad:cc:84:33:ad: af:e6:8d:be:08:f7:ac:d1:88:1d:3f:48:11:26:c6: c3:ae:18:67:ec:4a:1b:ef:29:d9:82:06:96:c4:39: 84:43:d1:a1:de:26:6b:6a:ab:db:1f:fa:fa:49:53: e3:a5:c1:e0:e3:21:d7:22:3b:3c:31:c1:ab:64:0e: f8:bb:17:6a:38:6f:f1:4d:fa:e6:d5:11:e0:14:07: d9:b3:95:cb:61:ba:96:41:b3:82:cf:5d:db:8b:1b: a8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B7:5D:D0:67:C3:3E:88:07:95:1B:CD:FF:1D:F9:91:CF:B3:C8:84 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Kbdd0GfDPogHlRvN_x35kc-zyIQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.136.0/21 Signature Algorithm: sha256WithRSAEncryption 00:5e:7f:e3:00:09:42:0b:2f:84:6e:79:fa:85:ae:d5:40:4c: 8b:23:4c:09:88:86:b3:23:eb:7e:5f:79:e3:2f:7b:55:ab:45: 80:56:b1:ba:de:c4:32:97:c5:8d:60:dc:c5:7a:ed:4d:44:20: 32:eb:2a:cf:6d:0b:5c:f8:d4:e2:fe:5d:e7:57:a0:a1:2e:ea: 57:7a:38:67:d9:d4:15:82:fa:9c:de:c7:fc:2d:88:d8:65:08: 5e:d0:b8:d7:44:45:ee:1d:be:47:31:31:56:e4:80:fb:af:d0: 74:cc:a0:6e:9c:b8:9d:33:f2:4a:53:c6:29:ab:15:2a:02:46: 7f:07:9b:dd:55:a8:76:40:a7:93:d6:fe:3a:58:2b:b5:84:48: d1:f7:b3:29:25:7b:ec:ba:b2:9b:77:a4:4e:78:e4:19:4e:10: 8e:2c:94:14:c8:98:b6:83:ea:67:66:30:94:cb:ce:f3:09:cd: 3f:51:53:10:bb:27:01:f8:85:d0:4e:fc:66:c0:29:53:ad:0d: bf:d5:08:61:c4:04:f0:43:e2:e4:7b:29:ad:b4:86:fb:ee:f4: 92:64:8f:78:00:1b:6e:56:13:75:ed:74:d8:d2:fa:a0:1d:bb: 05:d8:f4:68:71:b5:e4:2e:b6:ab:72:5f:6b:ac:4b:a9:7f:5b: 3d:47:4c:87 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJAwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI5Qjc1REQwNjdDMzNF ODgwNzk1MUJDREZGMURGOTkxQ0ZCM0M4ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDilKbUtKcBGX7ka1p4g8sJJ+B7JvqkACjwkANyuk1C2W7gclKW OSHqfIKraRhTAC0cRudSxr5vHI64l604EJPsFpPKQhUlcvFgl9x3F2p0qOv2waxD pbxHqZbP6rym1FqClfVBGZSMnTMH0FIiMxKNzgZUR1HkDgI0Jm/itP3xT8WuWYSj RmryLsEuVPhXXb24IDRSCfV5Zdcx6XH4zuStzIQzra/mjb4I96zRiB0/SBEmxsOu GGfsShvvKdmCBpbEOYRD0aHeJmtqq9sf+vpJU+OlweDjIdciOzwxwatkDvi7F2o4 b/FN+ubVEeAUB9mzlcthupZBs4LPXduLG6jhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKbdd0GfDPogHlRvN/x35kc+zyIQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0tiZGQwR2ZEUG9nSGxSdk5f eDM1a2MtenlJUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2ogwDQYJKoZIhvcNAQELBQADggEBAABef+MACUILL4RuefqFrtVATIsjTAmIhrMj 635feeMve1WrRYBWsbrexDKXxY1g3MV67U1EIDLrKs9tC1z41OL+XedXoKEu6ld6 OGfZ1BWC+pzex/wtiNhlCF7QuNdERe4dvkcxMVbkgPuv0HTMoG6cuJ0z8kpTximr FSoCRn8Hm91VqHZAp5PW/jpYK7WESNH3sykle+y6spt3pE545BlOEI4slBTImLaD 6mdmMJTLzvMJzT9RUxC7JwH4hdBO/GbAKVOtDb/VCGHEBPBD4uR7Ka20hvvu9JJk j3gAG25WE3XtdNjS+qAduwXY9GhxteQutqtyX2usS6l/Wz1HTIc= -----END CERTIFICATE-----Generated at Fri Apr 18 16:44:45 2025 by rpki-client