$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RFXCAaZRpOLuXYqCs3Ifu3-ev-s.roa File: RFXCAaZRpOLuXYqCs3Ifu3-ev-s.roa (raw, json) Hash identifier: VqoZ01IT6y4N1PLD2JaEql1zG3Hk2A7feWEPqEbMXKk= Subject key identifier: 44:55:C2:01:A6:51:A4:E2:EE:5D:8A:82:B3:72:1F:BB:7F:9E:BF:EB Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 237D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RFXCAaZRpOLuXYqCs3Ifu3-ev-s.roa Signing time: Mon 10 Feb 2025 14:17:38 +0000 ROA not before: Mon 10 Feb 2025 14:17:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 103.225.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9085 (0x237d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4455C201A651A4E2EE5D8A82B3721FBB7F9EBFEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:74:32:8f:fb:08:b8:29:b5:11:63:7c:01:bb: 6c:5c:70:b8:60:9e:e8:89:6c:82:0e:78:b2:c8:75: cd:5c:4b:d9:4d:8b:24:6d:92:2f:3c:16:9a:58:43: 80:32:7c:b5:a8:b5:46:fa:de:3a:42:f6:ca:09:ae: 7f:bb:14:cb:4a:07:10:4a:f8:b5:19:8e:cb:f3:ef: e3:ce:b7:91:05:3e:f6:85:bc:91:e2:cf:29:f8:ec: b7:74:8e:bf:70:8f:3e:c1:48:9c:0e:69:4b:34:21: 48:39:31:f6:9e:6d:f0:8e:af:02:fc:05:bf:79:59: 1e:ea:22:d1:bd:18:8c:8f:d9:36:be:ca:58:d8:06: 07:5c:23:7c:57:25:ef:ba:85:7f:40:26:88:ec:ad: 07:be:a7:d0:9e:cf:53:17:b5:32:50:ea:b7:0b:ad: 2c:3e:62:b2:37:8d:a6:08:49:ac:82:15:54:12:f8: 74:dd:27:bf:5f:e6:c4:94:94:85:67:6e:34:d9:03: c3:f5:67:0c:a0:ea:8f:2f:be:98:fc:75:b7:df:de: ba:2d:49:50:a9:46:ee:42:eb:20:f6:84:b6:f9:56: 83:c8:ee:fc:36:5f:ee:c6:a4:74:47:21:9a:90:33: 57:93:67:00:a7:2f:5e:11:62:f5:a4:00:1a:4b:c6: c8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:55:C2:01:A6:51:A4:E2:EE:5D:8A:82:B3:72:1F:BB:7F:9E:BF:EB X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RFXCAaZRpOLuXYqCs3Ifu3-ev-s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.225.0.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:f9:45:cb:7d:7a:29:d5:52:12:43:47:6e:6d:de:27:21:0a: e4:aa:56:67:94:c6:3b:27:31:20:26:48:ef:e9:84:58:3a:cb: c7:be:ef:fc:6b:45:bd:a1:eb:6c:b4:1f:6d:61:7a:5c:c4:7b: a9:fa:1d:21:6b:d1:f5:8a:4f:80:c4:a5:1d:63:7b:cc:28:00: 9e:76:af:68:7d:50:4d:4c:d4:ad:ac:a3:37:44:f9:2f:cf:de: cb:64:1f:78:3c:6d:4d:22:ee:83:8c:1b:c8:35:14:b8:b8:a4: 25:1b:3d:9f:a1:d0:0b:a8:44:f7:c9:56:d4:cf:b9:07:07:74: 85:5e:39:66:53:f9:dc:9e:16:8e:95:16:d0:5f:6d:9e:98:95: f8:a8:8d:87:69:e3:d2:48:49:ea:74:64:de:8d:fb:76:e5:fa: 28:ca:c0:58:b7:cb:97:3e:e4:86:8f:40:e5:b0:d1:61:ca:73: ef:98:91:5e:76:bb:51:02:38:4a:c4:46:d0:a2:1d:3a:dd:65: 50:ad:0c:c2:8e:ab:f5:89:f7:de:6f:82:09:bc:0c:d6:da:bc: d9:b9:c1:41:c0:a9:cb:ee:43:ad:d5:9f:06:b4:92:51:64:5e: 32:c1:bc:58:70:78:4f:61:10:82:94:41:fe:3c:cd:f9:16:06: 8a:14:17:8b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI30wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ0NTVDMjAxQTY1MUE0 RTJFRTVEOEE4MkIzNzIxRkJCN0Y5RUJGRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCydDKP+wi4KbURY3wBu2xccLhgnuiJbIIOeLLIdc1cS9lNiyRt ki88FppYQ4AyfLWotUb63jpC9soJrn+7FMtKBxBK+LUZjsvz7+POt5EFPvaFvJHi zyn47Ld0jr9wjz7BSJwOaUs0IUg5MfaebfCOrwL8Bb95WR7qItG9GIyP2Ta+yljY BgdcI3xXJe+6hX9AJojsrQe+p9Cez1MXtTJQ6rcLrSw+YrI3jaYISayCFVQS+HTd J79f5sSUlIVnbjTZA8P1Zwyg6o8vvpj8dbff3rotSVCpRu5C6yD2hLb5VoPI7vw2 X+7GpHRHIZqQM1eTZwCnL14RYvWkABpLxsi5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQURFXCAaZRpOLuXYqCs3Ifu3+ev+swHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1JGWENBYVpScE9MdVhZcUNz M0lmdTMtZXYtcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn 4QAwDQYJKoZIhvcNAQELBQADggEBAA35Rct9einVUhJDR25t3ichCuSqVmeUxjsn MSAmSO/phFg6y8e+7/xrRb2h62y0H21helzEe6n6HSFr0fWKT4DEpR1je8woAJ52 r2h9UE1M1K2sozdE+S/P3stkH3g8bU0i7oOMG8g1FLi4pCUbPZ+h0AuoRPfJVtTP uQcHdIVeOWZT+dyeFo6VFtBfbZ6YlfiojYdp49JISep0ZN6N+3bl+ijKwFi3y5c+ 5IaPQOWw0WHKc++YkV52u1ECOErERtCiHTrdZVCtDMKOq/WJ995vggm8DNbavNm5 wUHAqcvuQ63Vnwa0klFkXjLBvFhweE9hEIKUQf48zfkWBooUF4s= -----END CERTIFICATE-----Generated at Fri Apr 18 16:47:20 2025 by rpki-client