$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O4UQADzOQjpNGhWsz2_fE7jxkMo.roa File: O4UQADzOQjpNGhWsz2_fE7jxkMo.roa (raw, json) Hash identifier: svfN47nnOo7gzw1NTtgnHOcUqBh7xzU8swv+jVdiqhc= Subject key identifier: 3B:85:10:00:3C:CE:42:3A:4D:1A:15:AC:CF:6F:DF:13:B8:F1:90:CA Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24C3 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O4UQADzOQjpNGhWsz2_fE7jxkMo.roa Signing time: Mon 10 Feb 2025 14:18:58 +0000 ROA not before: Mon 10 Feb 2025 14:18:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 49.158.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9411 (0x24c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3B8510003CCE423A4D1A15ACCF6FDF13B8F190CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c1:98:8b:5a:32:0f:51:a6:b0:93:7e:b1:1d: 04:0a:5e:8d:d6:f4:13:7c:dc:1f:90:89:d9:da:cf: ad:f4:d1:88:88:b3:6a:75:ce:15:b0:3c:17:b9:8f: 00:67:c0:cc:97:db:ae:b6:ed:33:82:94:10:33:50: 01:6c:be:aa:80:98:0a:e5:ee:f0:d8:e3:b4:f3:77: 37:d0:0b:77:b4:35:d9:64:5c:89:6b:11:fd:27:76: 60:ab:5d:50:2a:03:b5:db:34:c2:6d:d5:ea:45:6c: 3a:2e:04:0b:11:88:36:d5:87:31:2a:79:02:be:6f: a7:e9:14:ac:80:6d:d8:49:9c:d5:9a:99:6e:88:36: 98:98:41:c9:5e:ab:22:89:f4:0d:33:25:e9:35:16: ab:39:82:27:4b:8f:57:ba:fa:d8:25:cd:39:51:89: 20:28:9d:d2:7a:cd:dd:59:41:a1:39:f1:cd:c4:2e: 66:82:c0:39:b3:65:95:d4:af:71:ae:eb:ee:6e:82: c1:03:ec:5e:83:3b:7e:b2:56:80:2a:78:19:0b:35: 3d:8a:7f:36:62:b6:8c:c6:63:c3:0e:02:80:68:4a: 9b:45:f9:35:a3:e8:8f:f9:bd:5a:5a:5a:0c:34:81: b8:93:47:e8:ec:f1:cb:e1:a3:34:cf:b9:28:6a:93: b6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:85:10:00:3C:CE:42:3A:4D:1A:15:AC:CF:6F:DF:13:B8:F1:90:CA X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O4UQADzOQjpNGhWsz2_fE7jxkMo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.128.0/22 Signature Algorithm: sha256WithRSAEncryption 86:60:53:72:f5:7f:f8:fd:2c:52:c6:5f:75:ad:85:a6:04:cb: 4e:48:81:be:75:76:1a:c5:db:48:7f:69:6e:b1:4b:b2:68:0b: c3:1f:97:a3:b1:71:37:81:45:60:30:f4:2d:ca:ba:35:09:76: 71:4e:33:a9:80:c5:1d:bf:ac:15:4d:93:50:3f:a6:7b:89:3a: 11:87:54:58:49:0a:f3:87:38:ef:2e:0d:90:e8:8b:ca:d6:41: 17:ca:28:af:23:83:be:d1:e7:86:dd:21:be:25:4d:6e:2f:12: 9d:84:85:c1:77:24:25:5e:4e:b4:b7:fb:b3:4b:5c:80:76:2e: 6c:64:bd:cd:70:f2:98:00:71:8a:8b:09:14:46:ef:99:49:7c: 10:3c:ab:2d:32:93:a6:f5:02:6c:4c:fd:b1:97:37:49:14:b2: 3f:6b:50:2e:a8:3d:f0:b7:29:fa:cc:42:a4:77:5a:02:a9:f4: d5:de:18:a1:c4:02:d0:33:8d:d5:35:03:99:c1:44:c7:77:02: a5:a0:41:a7:6e:8a:7b:27:16:98:ed:ae:9c:2e:95:1f:10:d0: e7:8b:6b:3a:13:f3:a1:02:2a:b9:93:c1:60:64:16:6f:dc:c0: 6f:84:58:60:5c:95:c3:0c:ae:19:c0:a2:ac:4d:5c:12:b3:a0: 7c:20:6b:7f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJMMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCODUxMDAwM0NDRTQy M0E0RDFBMTVBQ0NGNkZERjEzQjhGMTkwQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClwZiLWjIPUaawk36xHQQKXo3W9BN83B+Qidnaz6300YiIs2p1 zhWwPBe5jwBnwMyX26627TOClBAzUAFsvqqAmArl7vDY47TzdzfQC3e0NdlkXIlr Ef0ndmCrXVAqA7XbNMJt1epFbDouBAsRiDbVhzEqeQK+b6fpFKyAbdhJnNWamW6I NpiYQcleqyKJ9A0zJek1Fqs5gidLj1e6+tglzTlRiSAondJ6zd1ZQaE58c3ELmaC wDmzZZXUr3Gu6+5ugsED7F6DO36yVoAqeBkLNT2KfzZitozGY8MOAoBoSptF+TWj 6I/5vVpaWgw0gbiTR+js8cvhozTPuShqk7bdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUO4UQADzOQjpNGhWsz2/fE7jxkMowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL080VVFBRHpPUWpwTkdoV3N6 Ml9mRTdqeGtNby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx noAwDQYJKoZIhvcNAQELBQADggEBAIZgU3L1f/j9LFLGX3WthaYEy05Igb51dhrF 20h/aW6xS7JoC8Mfl6OxcTeBRWAw9C3KujUJdnFOM6mAxR2/rBVNk1A/pnuJOhGH VFhJCvOHOO8uDZDoi8rWQRfKKK8jg77R54bdIb4lTW4vEp2EhcF3JCVeTrS3+7NL XIB2Lmxkvc1w8pgAcYqLCRRG75lJfBA8qy0yk6b1AmxM/bGXN0kUsj9rUC6oPfC3 KfrMQqR3WgKp9NXeGKHEAtAzjdU1A5nBRMd3AqWgQaduinsnFpjtrpwulR8Q0OeL azoT86ECKrmTwWBkFm/cwG+EWGBclcMMrhnAoqxNXBKzoHwga38= -----END CERTIFICATE-----Generated at Thu Apr 17 21:04:28 2025 by rpki-client