$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MupdNlGZKC9Sv4f-ibqpdRdPH-g.roa File: MupdNlGZKC9Sv4f-ibqpdRdPH-g.roa (raw, json) Hash identifier: VICex//Uxo4zuLxWS5czxtvuTo5pab5aHJOMkL6F8HI= Subject key identifier: 32:EA:5D:36:51:99:28:2F:52:BF:87:FE:89:BA:A9:75:17:4F:1F:E8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23AB Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MupdNlGZKC9Sv4f-ibqpdRdPH-g.roa Signing time: Mon 10 Feb 2025 14:17:48 +0000 ROA not before: Mon 10 Feb 2025 14:17:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9131 (0x23ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=32EA5D365199282F52BF87FE89BAA975174F1FE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3d:9f:d6:4b:44:cc:a9:3e:ce:35:0a:0a:73: b5:91:ea:bd:ef:66:be:9b:45:4d:d9:2f:e6:c8:7b: 0b:dd:31:97:af:26:e1:40:f1:8d:48:0b:ad:3c:f8: 07:3a:49:0f:62:f6:77:bb:0f:fc:aa:e1:f0:60:c4: 72:07:5f:93:9e:43:f0:14:f2:70:31:e1:48:03:05: 1f:cb:9c:2a:f3:f3:0e:0d:f4:31:28:a6:50:93:fa: a7:d1:9d:61:32:36:e4:2e:bb:fb:f8:36:ca:1b:04: 97:95:28:94:2d:0b:81:49:30:f0:78:ab:96:c9:93: 51:4f:d9:a3:00:6f:19:eb:db:8b:b9:14:ef:27:95: 6a:98:69:89:a2:3e:61:1a:8c:50:8b:29:16:50:00: 16:96:ce:b8:13:0d:85:d4:45:7d:5c:a3:63:3b:e4: c5:fb:27:9a:b1:a6:d5:ad:4b:22:b3:e6:b5:e5:c1: f0:8b:e4:a1:4f:dd:3f:b5:57:5d:18:2d:32:ec:e0: b4:24:28:f8:c8:2d:49:23:76:a8:05:dd:17:47:85: c5:f2:fb:f4:f6:50:2b:12:71:f6:a7:8d:18:00:d1: d5:5c:3a:e5:c6:df:2e:8c:f1:07:63:58:15:42:15: 23:ef:c1:a1:91:1c:fc:3e:01:bd:db:26:22:78:bd: 9d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:EA:5D:36:51:99:28:2F:52:BF:87:FE:89:BA:A9:75:17:4F:1F:E8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MupdNlGZKC9Sv4f-ibqpdRdPH-g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.168.0/22 Signature Algorithm: sha256WithRSAEncryption 21:64:64:1d:5b:c3:dc:73:36:f0:27:1c:f9:db:02:0a:b4:8f: 13:68:08:de:7b:aa:27:5e:ee:6f:7f:b1:05:bf:d1:d7:6f:3c: 3d:34:3b:f3:92:5a:9f:e4:f2:1a:a0:44:84:cc:b2:8c:a8:ff: 57:38:af:26:e0:72:6c:b5:30:96:45:c0:3c:99:42:61:d9:f9: 83:c8:0b:76:91:c0:08:f8:07:90:b3:7d:51:9b:f1:6c:2d:6f: 52:01:41:0c:61:46:cb:7a:01:17:ef:b8:f3:68:d7:fb:70:fc: e3:ca:db:4e:b8:df:67:cc:50:4f:40:42:51:18:04:00:7c:82: 03:5d:8f:03:99:56:97:8a:d2:3f:e8:fc:ed:69:9b:4a:f7:35: 14:34:e3:2c:fa:a5:19:35:d3:fe:aa:86:42:35:1a:67:e7:eb: 26:1a:9d:55:1f:aa:6e:76:f7:3c:aa:d9:bc:63:df:33:67:ce: af:e8:a2:6b:f2:4a:cf:fd:33:16:a0:a9:d1:e7:55:d2:11:e6: d5:41:3f:e3:5d:ef:5e:34:74:a5:b3:8c:3e:fa:9e:19:63:93: 1a:6d:1c:52:e3:3d:2f:e7:6a:1b:64:8a:0b:ea:5d:52:70:4f: 06:06:1f:c5:bd:69:75:52:f2:32:99:8c:75:d5:63:d0:36:6d: b3:c9:3f:69 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI6swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMyRUE1RDM2NTE5OTI4 MkY1MkJGODdGRTg5QkFBOTc1MTc0RjFGRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2PZ/WS0TMqT7ONQoKc7WR6r3vZr6bRU3ZL+bIewvdMZevJuFA 8Y1IC608+Ac6SQ9i9ne7D/yq4fBgxHIHX5OeQ/AU8nAx4UgDBR/LnCrz8w4N9DEo plCT+qfRnWEyNuQuu/v4NsobBJeVKJQtC4FJMPB4q5bJk1FP2aMAbxnr24u5FO8n lWqYaYmiPmEajFCLKRZQABaWzrgTDYXURX1co2M75MX7J5qxptWtSyKz5rXlwfCL 5KFP3T+1V10YLTLs4LQkKPjILUkjdqgF3RdHhcXy+/T2UCsScfanjRgA0dVcOuXG 3y6M8QdjWBVCFSPvwaGRHPw+Ab3bJiJ4vZ3pAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUMupdNlGZKC9Sv4f+ibqpdRdPH+gwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL011cGRObEdaS0M5U3Y0Zi1p YnFwZFJkUEgtZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2qgwDQYJKoZIhvcNAQELBQADggEBACFkZB1bw9xzNvAnHPnbAgq0jxNoCN57qide 7m9/sQW/0ddvPD00O/OSWp/k8hqgRITMsoyo/1c4rybgcmy1MJZFwDyZQmHZ+YPI C3aRwAj4B5CzfVGb8Wwtb1IBQQxhRst6ARfvuPNo1/tw/OPK206432fMUE9AQlEY BAB8ggNdjwOZVpeK0j/o/O1pm0r3NRQ04yz6pRk10/6qhkI1Gmfn6yYanVUfqm52 9zyq2bxj3zNnzq/oomvySs/9MxagqdHnVdIR5tVBP+Nd7140dKWzjD76nhljkxpt HFLjPS/nahtkigvqXVJwTwYGH8W9aXVS8jKZjHXVY9A2bbPJP2k= -----END CERTIFICATE-----Generated at Fri Apr 18 16:30:47 2025 by rpki-client