$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LW-8ogdSwNsvkv6_qlRirIYPxQ4.roa File: LW-8ogdSwNsvkv6_qlRirIYPxQ4.roa (raw, json) Hash identifier: WNYXsDQ3CFpXHqRpYOESUPmq3xTVAjJHcyKoAzaTceU= Subject key identifier: 2D:6F:BC:A2:07:52:C0:DB:2F:92:FE:BF:AA:54:62:AC:86:0F:C5:0E Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 240A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LW-8ogdSwNsvkv6_qlRirIYPxQ4.roa Signing time: Mon 10 Feb 2025 14:18:12 +0000 ROA not before: Mon 10 Feb 2025 14:18:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9226 (0x240a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2D6FBCA20752C0DB2F92FEBFAA5462AC860FC50E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:71:3e:77:18:78:ca:b8:fb:cd:3d:0b:26:e3: 02:61:39:cc:c0:cc:c0:52:7a:86:8c:0e:25:9c:e5: fa:c5:f3:a6:e1:68:5b:b2:3e:16:16:04:76:e1:f1: 46:f9:af:d3:ea:41:b0:7c:1f:81:e5:34:27:44:41: 5f:e3:63:26:8c:28:05:8b:0e:d8:89:00:33:1e:5b: 20:f5:8c:26:f8:a2:f2:ae:20:19:ba:8c:e3:52:4b: 25:9e:36:ad:77:61:4d:bd:f9:f1:eb:11:92:83:95: d8:b4:44:69:75:09:9d:92:3b:50:2f:f4:45:10:43: 3a:ca:cf:e0:1e:66:46:fd:74:8d:09:53:c7:7e:ff: 83:48:9c:e6:b5:c3:12:0f:f7:de:a7:b5:9e:a8:c2: 85:13:98:dd:89:42:46:8f:5e:86:5a:38:e9:4b:15: 6a:5a:27:de:09:fe:1b:ad:68:2c:e0:bc:b1:6b:d3: af:f8:10:92:64:71:c8:fe:f3:45:a9:55:5b:df:58: c7:eb:c3:50:a2:53:15:80:50:da:0f:a5:c8:6e:17: eb:47:2b:77:4d:8d:ba:9e:1e:5e:8a:94:8d:71:b4: 29:a3:55:26:16:19:3a:38:4b:48:14:6c:e1:ec:c0: 0b:69:4e:4c:83:58:75:fb:18:5e:54:ca:51:21:da: f5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:6F:BC:A2:07:52:C0:DB:2F:92:FE:BF:AA:54:62:AC:86:0F:C5:0E X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LW-8ogdSwNsvkv6_qlRirIYPxQ4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.32.0/21 Signature Algorithm: sha256WithRSAEncryption 83:97:9d:df:bd:5d:6d:45:90:5b:45:fc:e2:9e:d2:81:fb:9d: fc:31:de:c5:fd:a2:9c:5d:82:4e:3a:bd:d4:3c:50:c7:ef:d7: 49:d3:91:d0:eb:e3:ad:5b:27:df:32:3f:0d:90:95:41:bc:0f: 46:cd:64:25:72:e0:3c:d1:18:7c:35:aa:37:5a:10:fc:00:77: 9c:5e:7b:81:bf:9d:9f:43:24:3d:7d:d8:97:b3:b3:db:a5:75: 02:85:da:1e:07:94:01:9e:b9:11:62:1b:61:21:a5:38:0f:c7: e4:8a:50:ba:7f:9d:4e:e4:6b:30:96:f2:21:b0:51:f2:ad:ee: 04:ec:5e:c2:22:67:ed:65:df:93:9c:c4:32:d2:b0:cb:6d:3a: 7b:dc:1f:ed:92:2a:50:1b:15:56:25:a3:d4:50:64:46:d0:62: 76:bb:39:fc:c6:d8:55:e9:7c:d9:e6:a2:a8:52:23:68:29:72: ac:40:f0:f8:80:86:c4:54:da:09:21:ce:7a:69:78:54:88:07: c2:f3:f4:fb:ba:02:eb:70:4c:b4:01:f1:b6:73:9d:c6:66:b1: a5:d5:2f:d5:2c:76:67:69:fb:90:f1:34:72:3d:d8:6f:ee:cc: 8f:9d:e8:7a:86:ad:33:ea:a4:44:f7:05:ba:4e:06:df:ed:e7: b3:9e:d2:57 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJAowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJENkZCQ0EyMDc1MkMw REIyRjkyRkVCRkFBNTQ2MkFDODYwRkM1MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD8cT53GHjKuPvNPQsm4wJhOczAzMBSeoaMDiWc5frF86bhaFuy PhYWBHbh8Ub5r9PqQbB8H4HlNCdEQV/jYyaMKAWLDtiJADMeWyD1jCb4ovKuIBm6 jONSSyWeNq13YU29+fHrEZKDldi0RGl1CZ2SO1Av9EUQQzrKz+AeZkb9dI0JU8d+ /4NInOa1wxIP996ntZ6owoUTmN2JQkaPXoZaOOlLFWpaJ94J/hutaCzgvLFr06/4 EJJkccj+80WpVVvfWMfrw1CiUxWAUNoPpchuF+tHK3dNjbqeHl6KlI1xtCmjVSYW GTo4S0gUbOHswAtpTkyDWHX7GF5UylEh2vUNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULW+8ogdSwNsvkv6/qlRirIYPxQ4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0xXLThvZ2RTd05zdmt2Nl9x bFJpcklZUHhRNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nyAwDQYJKoZIhvcNAQELBQADggEBAIOXnd+9XW1FkFtF/OKe0oH7nfwx3sX9opxd gk46vdQ8UMfv10nTkdDr461bJ98yPw2QlUG8D0bNZCVy4DzRGHw1qjdaEPwAd5xe e4G/nZ9DJD192Jezs9uldQKF2h4HlAGeuRFiG2EhpTgPx+SKULp/nU7kazCW8iGw UfKt7gTsXsIiZ+1l35OcxDLSsMttOnvcH+2SKlAbFVYlo9RQZEbQYna7OfzG2FXp fNnmoqhSI2gpcqxA8PiAhsRU2gkhznppeFSIB8Lz9Pu6AutwTLQB8bZzncZmsaXV L9Usdmdp+5DxNHI92G/uzI+d6HqGrTPqpET3BbpOBt/t57Oe0lc= -----END CERTIFICATE-----Generated at Fri Apr 18 16:37:35 2025 by rpki-client