$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Lj5C9eD1bvnxLb7MUp19yLoQGXo.roa File: Lj5C9eD1bvnxLb7MUp19yLoQGXo.roa (raw, json) Hash identifier: sGkGbPcA0zt8yoDYAXhL83hOMKeTHyZNbzf1XFf4sw8= Subject key identifier: 2E:3E:42:F5:E0:F5:6E:F9:F1:2D:BE:CC:52:9D:7D:C8:BA:10:19:7A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 246A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Lj5C9eD1bvnxLb7MUp19yLoQGXo.roa Signing time: Mon 10 Feb 2025 14:18:36 +0000 ROA not before: Mon 10 Feb 2025 14:18:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.144.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 03:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9322 (0x246a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:36 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2E3E42F5E0F56EF9F12DBECC529D7DC8BA10197A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:81:a4:be:bc:7b:0e:22:d4:f6:4f:98:28:b9: 84:ef:91:4c:63:93:23:79:e3:b0:09:5a:65:34:2b: 40:da:f8:b3:9a:a7:ef:e3:8e:59:11:02:a1:e6:5b: 40:51:36:79:dc:1a:57:a7:66:9b:eb:a0:a5:71:ab: 6d:63:89:d1:da:67:3e:30:74:e8:45:9b:07:ac:af: 8e:f6:48:6c:75:09:06:d3:68:a6:23:da:92:2e:b5: da:77:cc:ba:a6:e7:73:6b:b0:c0:85:d9:ae:3e:23: 47:4b:c6:38:4f:e3:ae:49:3e:03:e6:b4:5c:00:d7: 73:8f:8a:75:f1:0b:58:c2:4e:2a:55:60:49:5c:12: 6c:01:35:8f:99:78:23:cc:8b:73:97:21:43:fe:69: 10:e0:7a:e6:80:1e:fb:15:bb:84:1c:6b:25:99:5b: a1:43:c0:8d:9b:66:41:0d:7a:6e:30:3e:fc:6f:11: 19:1f:4c:87:98:55:f0:73:af:b9:f6:2f:da:cd:c6: 32:cd:3b:5a:25:53:87:70:16:c6:cb:08:ef:25:c4: 76:6d:97:72:e9:8e:c6:db:f8:97:5c:cc:1d:e0:94: e4:46:a8:60:eb:c4:1e:79:4f:ae:5c:04:b6:0d:ad: d9:6b:1f:dc:59:6d:64:3d:be:2b:be:c1:9d:07:69: 99:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:3E:42:F5:E0:F5:6E:F9:F1:2D:BE:CC:52:9D:7D:C8:BA:10:19:7A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Lj5C9eD1bvnxLb7MUp19yLoQGXo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.144.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:3b:13:cc:fb:fb:34:2e:86:0a:b0:df:1d:4a:c3:11:3a:4c: ed:e9:96:14:63:90:e6:95:a7:8b:e3:93:4c:78:f6:46:4b:95: e9:23:34:31:9f:60:90:80:bb:0a:26:4b:e0:15:b3:ed:40:43: 7c:ce:44:e2:31:f0:76:01:5a:b9:21:4c:19:bb:1b:0a:30:33: 65:94:b4:07:c4:21:8c:7c:f9:b1:1e:96:e6:21:63:4f:bd:c2: b7:3e:97:52:ec:a9:01:0f:5a:3e:11:a1:56:f4:9a:90:a9:76: 8b:29:1a:59:b2:e2:3a:0c:5f:93:2f:49:e5:fb:66:52:ac:c5: 69:6c:f4:2f:d5:d7:3b:8b:fe:fb:a4:0a:16:89:70:9d:a3:19: 4a:0c:c3:4b:72:90:ab:37:13:c3:2b:8f:65:c9:ff:c7:1a:b6: 39:24:e7:73:7b:78:42:4a:c1:09:2c:fa:8f:1d:58:2e:e0:e8: 37:85:50:79:61:c3:a0:bf:7a:95:5e:9f:5c:15:d0:14:1e:ed: 4e:1d:69:37:a1:3f:d4:07:46:c5:4d:af:0f:9f:02:25:70:d9: 31:d9:4d:cc:ef:7d:d3:22:c6:55:9b:5e:1a:86:5c:fd:76:26: 87:a4:dd:97:85:9a:be:33:ed:bb:fd:f5:86:9b:6f:20:f9:19: 61:14:b3:cd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJGowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFM0U0MkY1RTBGNTZF RjlGMTJEQkVDQzUyOUQ3REM4QkExMDE5N0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9gaS+vHsOItT2T5gouYTvkUxjkyN547AJWmU0K0Da+LOap+/j jlkRAqHmW0BRNnncGlenZpvroKVxq21jidHaZz4wdOhFmwesr472SGx1CQbTaKYj 2pIutdp3zLqm53NrsMCF2a4+I0dLxjhP465JPgPmtFwA13OPinXxC1jCTipVYElc EmwBNY+ZeCPMi3OXIUP+aRDgeuaAHvsVu4QcayWZW6FDwI2bZkENem4wPvxvERkf TIeYVfBzr7n2L9rNxjLNO1olU4dwFsbLCO8lxHZtl3Lpjsbb+JdczB3glORGqGDr xB55T65cBLYNrdlrH9xZbWQ9viu+wZ0HaZmvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULj5C9eD1bvnxLb7MUp19yLoQGXowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0xqNUM5ZUQxYnZueExiN01V cDE5eUxvUUdYby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2pAwDQYJKoZIhvcNAQELBQADggEBAI87E8z7+zQuhgqw3x1KwxE6TO3plhRjkOaV p4vjk0x49kZLlekjNDGfYJCAuwomS+AVs+1AQ3zOROIx8HYBWrkhTBm7GwowM2WU tAfEIYx8+bEeluYhY0+9wrc+l1LsqQEPWj4RoVb0mpCpdospGlmy4joMX5MvSeX7 ZlKsxWls9C/V1zuL/vukChaJcJ2jGUoMw0tykKs3E8Mrj2XJ/8catjkk53N7eEJK wQks+o8dWC7g6DeFUHlhw6C/epVen1wV0BQe7U4daTehP9QHRsVNrw+fAiVw2THZ TczvfdMixlWbXhqGXP12Joek3ZeFmr4z7bv99YabbyD5GWEUs80= -----END CERTIFICATE-----Generated at Tue Apr 22 03:11:33 2025 by rpki-client