$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/M5RnViaHgpzwN5PtT9W0roTdj8Y.roa File: M5RnViaHgpzwN5PtT9W0roTdj8Y.roa (raw, json) Hash identifier: kOK8dgAQzPOl0U34jE3GoUrev88Ii641mAMqi8jf6lo= Subject key identifier: 33:94:67:56:26:87:82:9C:F0:37:93:ED:4F:D5:B4:AE:84:DD:8F:C6 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2440 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/M5RnViaHgpzwN5PtT9W0roTdj8Y.roa Signing time: Mon 10 Feb 2025 14:18:26 +0000 ROA not before: Mon 10 Feb 2025 14:18:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 49.159.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9280 (0x2440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=339467562687829CF03793ED4FD5B4AE84DD8FC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4f:44:df:8a:b3:cb:1c:ee:a7:f3:08:bb:1c: 31:57:6f:93:ef:c7:49:d2:c6:bc:ed:52:0c:c1:34: f4:b4:d3:03:a0:74:7a:b0:50:0a:d7:50:12:d6:3b: de:05:ab:62:64:79:ae:ed:65:d0:40:94:d4:61:7b: d9:a8:1c:ef:fc:ee:4d:6b:3a:d1:ad:45:da:e8:ab: 2f:93:13:66:6f:60:1c:87:12:2c:a6:cf:bb:c9:05: 18:bc:54:2e:6a:5a:e0:69:62:d8:1b:21:e7:67:9a: 92:c6:8c:fa:53:f8:14:1c:8a:b9:19:e6:59:97:6b: e3:c7:fa:f2:41:ab:05:81:d2:18:a2:5e:e8:a9:7c: 94:dc:1d:5f:04:f1:4f:60:0e:f6:31:c5:dd:e1:f4: 81:cc:bb:57:f0:9f:6c:a4:4f:0c:a9:07:20:6d:e0: f8:27:c3:21:ec:c3:a8:ff:8e:66:4b:eb:95:e9:40: 77:b2:34:2f:2f:81:d9:32:cc:ad:a2:51:96:e2:85: 58:c9:c4:65:2d:02:3a:43:6d:7f:46:2d:ed:7f:b2: 91:62:1e:2a:4b:e6:32:09:54:89:45:f4:56:f7:98: 77:58:93:33:46:7e:fa:13:d1:da:b5:6d:c9:9d:6e: f6:b8:ef:67:78:22:d9:18:86:bc:69:fa:96:f0:92: 9f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:94:67:56:26:87:82:9C:F0:37:93:ED:4F:D5:B4:AE:84:DD:8F:C6 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/M5RnViaHgpzwN5PtT9W0roTdj8Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.252.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:14:1f:c5:9d:72:e9:d6:ab:4e:cb:30:cd:33:25:11:ee:0c: a9:7e:04:d4:0a:8a:5d:a7:a2:5a:76:53:96:46:60:59:d1:9e: 70:dd:d0:b3:fc:e6:38:06:70:8b:4d:07:b2:d8:cd:22:cb:e7: e7:7d:1c:24:bd:30:31:41:64:3c:9b:ea:54:98:86:c2:15:74: d4:10:b6:eb:f8:48:3e:9b:49:28:06:aa:d4:5f:ef:1b:f0:2d: 06:93:a7:c4:b5:99:89:1e:db:fb:57:d6:39:0f:52:fc:e4:41: 38:cc:50:fb:d6:c1:7c:a1:dd:75:7a:6f:95:db:36:93:c7:8d: 01:f2:13:50:11:49:5d:e8:27:fc:ae:83:ed:d1:10:64:50:3a: 98:cb:7e:16:92:53:b2:24:5f:3c:b1:b5:33:d9:c2:60:7a:f6: 44:a2:c0:49:6c:dc:0e:7f:d1:17:89:91:e5:94:12:ff:b6:be: a8:2d:c6:c0:fd:fe:e0:f6:74:9b:ba:f3:b7:da:b5:42:7f:e1: 58:6b:61:2a:ff:01:43:b6:7a:b3:42:8c:bd:2b:43:d8:09:0b: 55:87:81:60:7c:80:5e:ef:70:ab:f6:37:28:15:4c:c3:b1:4e: 9e:e9:ce:3c:6d:27:42:a2:20:e1:16:cb:37:0f:13:93:77:7a: 84:fa:c4:f2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJEAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzOTQ2NzU2MjY4Nzgy OUNGMDM3OTNFRDRGRDVCNEFFODRERDhGQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/T0TfirPLHO6n8wi7HDFXb5Pvx0nSxrztUgzBNPS00wOgdHqw UArXUBLWO94Fq2Jkea7tZdBAlNRhe9moHO/87k1rOtGtRdroqy+TE2ZvYByHEiym z7vJBRi8VC5qWuBpYtgbIednmpLGjPpT+BQcirkZ5lmXa+PH+vJBqwWB0hiiXuip fJTcHV8E8U9gDvYxxd3h9IHMu1fwn2ykTwypByBt4PgnwyHsw6j/jmZL65XpQHey NC8vgdkyzK2iUZbihVjJxGUtAjpDbX9GLe1/spFiHipL5jIJVIlF9Fb3mHdYkzNG fvoT0dq1bcmdbva472d4ItkYhrxp+pbwkp8VAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUM5RnViaHgpzwN5PtT9W0roTdj8YwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL001Um5WaWFIZ3B6d041UHRU OVcwcm9UZGo4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n/wwDQYJKoZIhvcNAQELBQADggEBABwUH8WdcunWq07LMM0zJRHuDKl+BNQKil2n olp2U5ZGYFnRnnDd0LP85jgGcItNB7LYzSLL5+d9HCS9MDFBZDyb6lSYhsIVdNQQ tuv4SD6bSSgGqtRf7xvwLQaTp8S1mYke2/tX1jkPUvzkQTjMUPvWwXyh3XV6b5Xb NpPHjQHyE1ARSV3oJ/yug+3REGRQOpjLfhaSU7IkXzyxtTPZwmB69kSiwEls3A5/ 0ReJkeWUEv+2vqgtxsD9/uD2dJu687fatUJ/4VhrYSr/AUO2erNCjL0rQ9gJC1WH gWB8gF7vcKv2NygVTMOxTp7pzjxtJ0KiIOEWyzcPE5N3eoT6xPI= -----END CERTIFICATE-----Generated at Thu Apr 17 21:07:13 2025 by rpki-client