$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MwG8mYORet7N-g9zirK6V9jfzko.roa File: MwG8mYORet7N-g9zirK6V9jfzko.roa (raw, json) Hash identifier: 88/XAi+IxnmH9nc00iYYD8gafzOFEcDT4YBHR7kSb0s= Subject key identifier: 33:01:BC:99:83:91:7A:DE:CD:FA:0F:73:8A:B2:BA:57:D8:DF:CE:4A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 245D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MwG8mYORet7N-g9zirK6V9jfzko.roa Signing time: Mon 10 Feb 2025 14:18:34 +0000 ROA not before: Mon 10 Feb 2025 14:18:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 49.159.192.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9309 (0x245d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3301BC9983917ADECDFA0F738AB2BA57D8DFCE4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cb:dd:95:e2:89:a2:70:e6:e7:12:af:1a:3c: db:80:73:41:79:67:bc:fa:cb:a4:34:3f:31:97:3c: 20:4f:4f:21:18:53:f6:e6:a0:f3:33:fa:e4:50:69: 02:d1:e5:5d:a8:0d:bd:d4:a8:11:7f:03:97:71:09: f2:79:8c:12:d8:62:3c:5e:43:84:0d:59:a1:9d:db: 8d:97:d8:3a:b2:72:67:b8:c5:66:15:54:0d:ad:a2: c3:bc:c2:52:e4:33:48:58:92:39:eb:ad:b8:81:cb: f5:3e:57:5e:10:26:a6:91:79:1f:5e:b6:98:ca:ac: f4:a0:4a:1d:98:84:a6:3d:e1:40:9d:45:40:ce:7f: 76:e4:7c:2c:8b:80:98:5b:67:1a:ef:83:6c:ef:95: 2d:2a:1c:6e:79:57:54:4f:de:50:8a:a4:fb:da:eb: 7e:83:2d:8e:f6:45:bc:40:a7:10:fb:50:bc:44:eb: 5a:43:ea:07:2a:7a:08:36:f8:b2:4d:a5:0f:56:b0: 38:75:dc:48:f5:be:91:d9:40:26:da:e0:72:59:17: d5:0f:8c:46:87:04:23:2e:64:d0:92:90:cb:a1:04: ac:1b:3c:9e:58:95:50:76:d2:b7:db:e8:9c:fb:04: 7d:ea:cb:4b:c7:cf:8b:e0:54:50:ba:67:46:39:8e: fa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:01:BC:99:83:91:7A:DE:CD:FA:0F:73:8A:B2:BA:57:D8:DF:CE:4A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MwG8mYORet7N-g9zirK6V9jfzko.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.192.0/20 Signature Algorithm: sha256WithRSAEncryption 91:99:ff:e7:8d:17:46:c1:ff:61:84:af:6f:9e:9c:11:ff:f9: 87:2d:51:cf:f5:cb:6f:eb:71:14:81:d9:ba:df:df:b8:63:83: cd:c7:ba:f0:ac:2d:85:c3:fd:43:10:98:6b:a3:b5:8d:36:86: 2f:aa:be:f2:70:6e:0f:bd:86:a5:84:87:06:ef:3b:c3:1d:03: 2a:0e:1e:11:e6:6b:19:82:86:bc:67:0f:a8:e4:2b:2d:b7:ca: 4f:82:5d:6a:05:b8:dc:35:48:45:2c:d4:f9:0f:1f:51:5b:10: 1a:32:3d:76:66:59:0b:b3:bf:be:1f:73:ff:fd:de:49:fb:1b: 7d:3a:58:ef:ec:64:c3:6f:8d:0d:48:af:0b:1c:61:d3:01:ab: 5b:74:54:26:86:2e:d1:fe:3f:35:f5:62:1e:23:d5:a4:ae:4d: 9a:0a:d0:66:af:4f:b7:c1:bf:33:43:ad:1f:4c:03:3b:0f:da: 18:3e:9b:cd:7c:f1:02:e0:b8:3e:74:10:a3:31:37:cd:de:fc: 22:57:e7:56:bd:22:02:e9:59:8a:2e:0b:f5:a8:89:43:97:66: 5d:84:bb:8e:b1:24:07:ed:c1:8a:69:3a:75:99:d3:c6:54:a3: 5f:73:d5:06:06:8d:44:ea:28:87:a4:a5:44:0a:0e:54:90:b8: a6:b7:63:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJF0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzMDFCQzk5ODM5MTdB REVDREZBMEY3MzhBQjJCQTU3RDhERkNFNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4y92V4omicObnEq8aPNuAc0F5Z7z6y6Q0PzGXPCBPTyEYU/bm oPMz+uRQaQLR5V2oDb3UqBF/A5dxCfJ5jBLYYjxeQ4QNWaGd242X2Dqycme4xWYV VA2tosO8wlLkM0hYkjnrrbiBy/U+V14QJqaReR9etpjKrPSgSh2YhKY94UCdRUDO f3bkfCyLgJhbZxrvg2zvlS0qHG55V1RP3lCKpPva636DLY72RbxApxD7ULxE61pD 6gcqegg2+LJNpQ9WsDh13Ej1vpHZQCba4HJZF9UPjEaHBCMuZNCSkMuhBKwbPJ5Y lVB20rfb6Jz7BH3qy0vHz4vgVFC6Z0Y5jvqPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUMwG8mYORet7N+g9zirK6V9jfzkowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL013RzhtWU9SZXQ3Ti1nOXpp cks2VjlqZnprby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx n8AwDQYJKoZIhvcNAQELBQADggEBAJGZ/+eNF0bB/2GEr2+enBH/+YctUc/1y2/r cRSB2brf37hjg83HuvCsLYXD/UMQmGujtY02hi+qvvJwbg+9hqWEhwbvO8MdAyoO HhHmaxmChrxnD6jkKy23yk+CXWoFuNw1SEUs1PkPH1FbEBoyPXZmWQuzv74fc//9 3kn7G306WO/sZMNvjQ1IrwscYdMBq1t0VCaGLtH+PzX1Yh4j1aSuTZoK0GavT7fB vzNDrR9MAzsP2hg+m8188QLguD50EKMxN83e/CJX51a9IgLpWYouC/WoiUOXZl2E u46xJAftwYppOnWZ08ZUo19z1QYGjUTqKIekpUQKDlSQuKa3Y4U= -----END CERTIFICATE-----Generated at Fri Apr 18 16:47:47 2025 by rpki-client