$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OodfmWs6SR2DvUh3CjoLuJgL2hg.roa File: OodfmWs6SR2DvUh3CjoLuJgL2hg.roa (raw, json) Hash identifier: mhezI8SfUffoxgAoWvB1vyMvHnSuHpNeEBZWw53vjTw= Subject key identifier: 3A:87:5F:99:6B:3A:49:1D:83:BD:48:77:0A:3A:0B:B8:98:0B:DA:18 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2470 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OodfmWs6SR2DvUh3CjoLuJgL2hg.roa Signing time: Mon 10 Feb 2025 14:18:37 +0000 ROA not before: Mon 10 Feb 2025 14:18:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 122.100.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9328 (0x2470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3A875F996B3A491D83BD48770A3A0BB8980BDA18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7e:8a:cc:06:45:8f:d7:ec:2c:62:08:13:2a: 81:1a:68:a0:57:e4:45:49:02:8c:05:18:d1:95:35: 27:28:c8:af:5e:a1:75:71:02:df:f6:77:c9:34:f6: e6:93:27:e6:0e:ee:56:a0:0f:ab:68:b8:da:cd:54: 67:b7:7c:b1:50:63:b2:a9:eb:3f:8b:34:f1:58:31: f1:9b:ab:4b:2c:f9:c2:2b:a2:85:30:79:89:6f:8f: 79:28:2c:20:c9:d5:9d:9a:3c:4c:8c:e6:b5:53:e7: fd:bc:3e:38:e0:28:70:62:b8:87:ec:57:1b:c3:86: a5:cf:c4:a1:86:28:a7:86:c6:af:e5:32:a5:85:11: 6e:e3:12:b7:7a:6a:d3:44:1e:e6:42:71:c4:2f:ea: d4:0c:cf:d1:3f:bc:93:ec:c2:c2:0b:4a:b0:23:da: f0:dc:b1:36:41:cd:5e:fb:19:ab:fc:5e:42:55:38: 2e:e9:08:b8:11:a2:cf:05:ed:10:18:a0:79:a8:e3: 87:57:06:39:35:5f:0d:3c:a0:59:26:2d:3f:32:6a: 9b:1e:50:8d:78:c6:a2:dd:50:64:66:ac:ed:fe:63: 4f:38:40:9b:ce:44:fc:30:80:d6:09:dc:39:a2:76: 97:10:34:a6:db:2e:f9:40:33:82:d6:71:18:83:f6: e8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:87:5F:99:6B:3A:49:1D:83:BD:48:77:0A:3A:0B:B8:98:0B:DA:18 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OodfmWs6SR2DvUh3CjoLuJgL2hg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.96.0/21 Signature Algorithm: sha256WithRSAEncryption 05:9c:90:20:9b:1f:ac:a3:24:75:54:fb:45:74:f7:77:b4:97: 1b:0d:39:99:c6:52:a9:6e:6c:69:5a:ab:ef:0e:95:29:a3:21: aa:ac:76:75:62:fe:35:4a:e8:4e:77:a8:1d:6f:43:8d:58:ba: 05:55:26:11:9d:c5:6c:ca:8f:8f:7e:f5:01:c0:23:1b:f0:5b: ad:bf:4b:25:7d:d5:c2:20:5f:19:93:91:c1:3d:e0:d1:9d:04: e3:29:8d:62:47:66:13:52:7e:e1:aa:52:42:f4:0b:7e:d8:46: fd:fd:0f:ea:5c:56:55:9f:b1:62:bd:79:a4:2e:58:69:7f:cc: 45:e1:b1:03:e9:61:df:57:7c:64:02:71:94:ed:cf:e2:c7:fe: 80:6d:47:31:39:f0:65:07:40:2a:2f:b1:58:b9:ae:54:1c:ab: 54:24:43:a4:2a:67:09:db:44:47:72:93:77:a4:97:8f:24:f4: a4:d1:0f:10:b6:10:ab:32:31:4f:31:82:7f:ed:a7:e4:00:81: 4f:0c:b3:34:80:ce:20:54:60:36:7c:d9:84:23:fd:01:8a:5d: bb:d7:e3:fb:7e:fa:ba:04:4d:52:10:82:43:43:1d:b9:53:36: 16:fa:e7:3f:de:dc:b7:c9:a5:2f:b7:72:fa:e6:31:95:fa:3a: e9:bb:34:c1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJHAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNBODc1Rjk5NkIzQTQ5 MUQ4M0JENDg3NzBBM0EwQkI4OTgwQkRBMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfforMBkWP1+wsYggTKoEaaKBX5EVJAowFGNGVNScoyK9eoXVx At/2d8k09uaTJ+YO7lagD6touNrNVGe3fLFQY7Kp6z+LNPFYMfGbq0ss+cIrooUw eYlvj3koLCDJ1Z2aPEyM5rVT5/28PjjgKHBiuIfsVxvDhqXPxKGGKKeGxq/lMqWF EW7jErd6atNEHuZCccQv6tQMz9E/vJPswsILSrAj2vDcsTZBzV77Gav8XkJVOC7p CLgRos8F7RAYoHmo44dXBjk1Xw08oFkmLT8yapseUI14xqLdUGRmrO3+Y084QJvO RPwwgNYJ3DmidpcQNKbbLvlAM4LWcRiD9uhJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOodfmWs6SR2DvUh3CjoLuJgL2hgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09vZGZtV3M2U1IyRHZVaDND am9MdUpnTDJoZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 ZGAwDQYJKoZIhvcNAQELBQADggEBAAWckCCbH6yjJHVU+0V093e0lxsNOZnGUqlu bGlaq+8OlSmjIaqsdnVi/jVK6E53qB1vQ41YugVVJhGdxWzKj49+9QHAIxvwW62/ SyV91cIgXxmTkcE94NGdBOMpjWJHZhNSfuGqUkL0C37YRv39D+pcVlWfsWK9eaQu WGl/zEXhsQPpYd9XfGQCcZTtz+LH/oBtRzE58GUHQCovsVi5rlQcq1QkQ6QqZwnb REdyk3ekl48k9KTRDxC2EKsyMU8xgn/tp+QAgU8MszSAziBUYDZ82YQj/QGKXbvX 4/t++roETVIQgkNDHblTNhb65z/e3LfJpS+3cvrmMZX6Oum7NME= -----END CERTIFICATE-----Generated at Fri Apr 18 16:26:42 2025 by rpki-client