$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Qmo5s8J8ptioZfeZOQKmOfdawRI.roa File: Qmo5s8J8ptioZfeZOQKmOfdawRI.roa (raw, json) Hash identifier: OoNu5XxyhKf+jEiQer+LCk7ekZRn64/bI5x4goOXSWc= Subject key identifier: 42:6A:39:B3:C2:7C:A6:D8:A8:65:F7:99:39:02:A6:39:F7:5A:C1:12 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2445 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Qmo5s8J8ptioZfeZOQKmOfdawRI.roa Signing time: Mon 10 Feb 2025 14:18:27 +0000 ROA not before: Mon 10 Feb 2025 14:18:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 61.58.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9285 (0x2445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=426A39B3C27CA6D8A865F7993902A639F75AC112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cf:02:d6:dd:ac:36:28:c6:58:ba:32:4d:e1: 98:22:2a:89:95:e4:64:fa:a8:c6:09:52:79:8b:17: 65:d0:89:29:ed:87:34:29:7d:fa:94:d1:1c:34:ce: 46:d7:37:56:5b:4d:6a:a5:2a:8f:12:c9:ba:9d:c2: bd:20:32:ed:13:60:d3:4d:ce:de:c0:c2:c3:bb:92: 90:01:8c:5b:d8:1b:21:78:c4:61:74:11:1a:27:38: ef:84:ab:30:7e:8b:43:da:66:f8:2e:52:6d:84:ae: 06:91:5c:31:35:57:7c:5d:56:00:57:0a:09:d6:8f: 08:eb:b3:8f:b8:0a:a6:5f:1d:7d:da:1a:b5:f5:81: a9:b9:09:49:ef:99:ad:80:e8:3c:a1:45:a9:22:85: b5:73:bc:db:ed:a3:10:33:64:5f:4d:29:ec:06:fa: 32:e5:43:96:5f:66:7a:f3:49:0d:94:db:8b:36:be: e6:c8:be:3d:92:df:f7:25:f9:e9:ba:79:c5:fb:fc: fd:f6:49:f8:40:60:1a:26:06:b5:46:ed:38:24:c2: 00:25:b3:4a:b6:78:5a:af:a3:23:3e:6a:d9:97:6e: b7:b5:56:48:bb:7c:46:8c:ec:37:51:36:df:dc:56: 50:7a:c3:d4:dd:c3:89:bc:f9:cb:e7:48:53:20:c3: 80:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:6A:39:B3:C2:7C:A6:D8:A8:65:F7:99:39:02:A6:39:F7:5A:C1:12 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Qmo5s8J8ptioZfeZOQKmOfdawRI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.120.0/22 Signature Algorithm: sha256WithRSAEncryption 72:4d:d5:14:8c:b6:3b:de:a4:d0:09:7e:6e:87:44:15:b7:2e: 11:48:d4:34:d2:f5:42:9a:f8:88:b8:0a:3b:59:ea:68:0f:ce: b9:f4:fb:83:ef:59:78:d4:3c:3e:71:41:3a:31:21:eb:7c:fa: 7d:c2:fc:6f:bf:26:91:f1:52:f1:cb:19:e0:d2:af:f7:ae:b0: c5:07:c2:72:b3:0b:78:b8:99:45:e3:e0:4a:f7:a6:9f:52:8d: f7:a7:17:8d:db:6f:f7:cc:f2:1e:d5:53:25:62:e0:5a:13:fe: dc:25:f1:a2:2f:45:3f:a1:51:43:ec:6d:45:1b:b6:42:ee:a9: e4:99:2a:cd:f3:03:da:ad:74:c4:33:1d:1a:40:3f:43:ee:60: fa:99:5a:49:3a:58:0b:16:d4:a1:67:8c:cf:46:3a:dd:40:a4: 4e:35:e3:cc:c2:08:15:9e:80:5c:1a:9e:7d:87:96:0c:c0:7c: a3:e5:9a:b8:66:35:06:07:40:28:54:08:55:db:a9:99:ef:3c: 79:8e:b6:c4:39:ba:ea:e0:7f:b7:05:87:7d:07:eb:74:bb:42: 9b:28:be:a1:d8:09:4c:93:3a:88:bc:38:9c:69:f8:c5:c0:4f: 9d:26:5a:3d:99:59:ec:b2:8a:eb:b6:d3:1d:75:63:ec:9a:51: 8a:38:e5:2f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJEUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQyNkEzOUIzQzI3Q0E2 RDhBODY1Rjc5OTM5MDJBNjM5Rjc1QUMxMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDazwLW3aw2KMZYujJN4ZgiKomV5GT6qMYJUnmLF2XQiSnthzQp ffqU0Rw0zkbXN1ZbTWqlKo8Sybqdwr0gMu0TYNNNzt7AwsO7kpABjFvYGyF4xGF0 ERonOO+EqzB+i0PaZvguUm2ErgaRXDE1V3xdVgBXCgnWjwjrs4+4CqZfHX3aGrX1 gam5CUnvma2A6DyhRakihbVzvNvtoxAzZF9NKewG+jLlQ5ZfZnrzSQ2U24s2vubI vj2S3/cl+em6ecX7/P32SfhAYBomBrVG7TgkwgAls0q2eFqvoyM+atmXbre1Vki7 fEaM7DdRNt/cVlB6w9Tdw4m8+cvnSFMgw4B5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQmo5s8J8ptioZfeZOQKmOfdawRIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1FtbzVzOEo4cHRpb1pmZVpP UUttT2ZkYXdSSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 OngwDQYJKoZIhvcNAQELBQADggEBAHJN1RSMtjvepNAJfm6HRBW3LhFI1DTS9UKa +Ii4CjtZ6mgPzrn0+4PvWXjUPD5xQToxIet8+n3C/G+/JpHxUvHLGeDSr/eusMUH wnKzC3i4mUXj4Er3pp9SjfenF43bb/fM8h7VUyVi4FoT/twl8aIvRT+hUUPsbUUb tkLuqeSZKs3zA9qtdMQzHRpAP0PuYPqZWkk6WAsW1KFnjM9GOt1ApE4148zCCBWe gFwann2HlgzAfKPlmrhmNQYHQChUCFXbqZnvPHmOtsQ5uurgf7cFh30H63S7Qpso vqHYCUyTOoi8OJxp+MXAT50mWj2ZWeyyiuu20x11Y+yaUYo45S8= -----END CERTIFICATE-----Generated at Fri Apr 18 16:48:23 2025 by rpki-client