$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RS7ywVZ8yki0Des5bl7XjLVpijw.roa File: RS7ywVZ8yki0Des5bl7XjLVpijw.roa (raw, json) Hash identifier: olf1vKCoNBnbLriGoVWI5Vjgw4pGfPzEUGYLkbz+O2o= Subject key identifier: 45:2E:F2:C1:56:7C:CA:48:B4:0D:EB:39:6E:5E:D7:8C:B5:69:8A:3C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 237C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RS7ywVZ8yki0Des5bl7XjLVpijw.roa Signing time: Mon 10 Feb 2025 14:17:38 +0000 ROA not before: Mon 10 Feb 2025 14:17:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9084 (0x237c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=452EF2C1567CCA48B40DEB396E5ED78CB5698A3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3b:0b:44:9a:4f:39:b4:29:90:b6:1c:3a:28: d7:77:32:7a:b1:6a:87:f6:7e:05:45:62:d9:cf:db: 18:92:f2:ef:ca:8a:b0:f9:36:1b:99:3c:19:f5:8c: 7f:36:88:03:de:1f:41:da:09:ba:af:ce:2a:b4:e1: c0:5d:75:8e:2e:75:5f:b6:a2:23:9f:1e:22:ab:73: f7:e1:72:34:35:59:81:42:a2:9d:01:b2:d0:ca:f4: 0b:78:ed:f9:68:ea:05:d9:c5:61:02:c3:d4:4d:e3: 4d:cd:7f:77:d5:40:d3:df:e4:15:5f:a5:d4:2f:df: 62:50:46:d1:d0:3c:77:62:31:32:9d:dd:44:83:b9: 63:2b:6b:67:d9:0f:ef:37:39:af:5d:f9:9d:86:c1: f7:1c:94:b2:f8:30:e6:56:23:b5:24:f0:e3:f8:70: 40:29:94:14:48:cd:1f:23:f6:7a:a4:69:00:61:ca: bb:5e:2a:ce:38:18:57:59:fa:4f:3e:18:d8:bb:e5: aa:5a:80:82:9f:7e:51:8e:e8:41:ca:f3:c6:d4:09: 03:25:11:8d:d2:31:55:5d:87:4b:f7:b5:76:11:60: ac:d7:0f:b4:af:e0:f4:68:32:5a:08:0c:d9:67:b6: 29:38:70:6a:65:48:b5:2c:13:41:ff:3c:ec:47:4c: 12:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:2E:F2:C1:56:7C:CA:48:B4:0D:EB:39:6E:5E:D7:8C:B5:69:8A:3C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RS7ywVZ8yki0Des5bl7XjLVpijw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.24.0/21 Signature Algorithm: sha256WithRSAEncryption 0e:2b:c9:20:62:48:a4:68:03:ef:11:66:43:13:f2:37:37:66: 52:08:fc:97:c7:29:c2:a8:cf:6f:14:03:4f:fd:c3:1f:17:73: ae:22:c0:df:7a:fd:83:01:b5:e2:a7:81:7c:b0:5e:db:a1:ae: c9:e8:37:50:27:a1:b2:3c:ec:5d:12:53:88:2a:6b:45:f3:9b: a7:82:08:37:7a:40:bb:d5:0e:36:d6:fb:47:aa:46:a1:66:30: b1:5c:43:fd:cd:36:c8:07:d6:f0:32:21:13:54:98:15:ab:2e: 64:59:c1:83:f7:60:5d:c1:f6:68:45:2a:89:36:b5:a1:a7:24: f5:49:53:fa:06:e9:d1:a6:05:e5:7f:09:60:e8:b8:47:6f:be: 1d:86:11:1e:72:94:b3:b8:ac:0b:e9:17:29:44:99:7e:ab:d3: 5e:03:a2:45:93:88:f5:91:b6:22:9b:ef:25:17:a4:8d:f9:77: 0f:42:d7:98:aa:8e:7b:79:bf:79:e1:d2:c3:c7:f4:0c:a7:77: a1:75:c6:73:49:38:e5:27:7a:f8:84:19:8f:56:71:6c:da:3a: 94:c7:30:6c:c4:6b:6f:da:09:9b:44:66:dc:2f:5f:76:54:2b: 34:cb:f4:3d:42:4d:4a:34:8a:f9:8f:de:d2:5e:16:b4:a3:df: 7e:e9:81:b6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI3wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ1MkVGMkMxNTY3Q0NB NDhCNDBERUIzOTZFNUVENzhDQjU2OThBM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMOwtEmk85tCmQthw6KNd3Mnqxaof2fgVFYtnP2xiS8u/KirD5 NhuZPBn1jH82iAPeH0HaCbqvziq04cBddY4udV+2oiOfHiKrc/fhcjQ1WYFCop0B stDK9At47flo6gXZxWECw9RN403Nf3fVQNPf5BVfpdQv32JQRtHQPHdiMTKd3USD uWMra2fZD+83Oa9d+Z2GwfcclLL4MOZWI7Uk8OP4cEAplBRIzR8j9nqkaQBhyrte Ks44GFdZ+k8+GNi75apagIKfflGO6EHK88bUCQMlEY3SMVVdh0v3tXYRYKzXD7Sv 4PRoMloIDNlntik4cGplSLUsE0H/POxHTBJ/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQURS7ywVZ8yki0Des5bl7XjLVpijwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1JTN3l3Vlo4eWtpMERlczVi bDdYakxWcGlqdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nxgwDQYJKoZIhvcNAQELBQADggEBAA4rySBiSKRoA+8RZkMT8jc3ZlII/JfHKcKo z28UA0/9wx8Xc64iwN96/YMBteKngXywXtuhrsnoN1AnobI87F0SU4gqa0Xzm6eC CDd6QLvVDjbW+0eqRqFmMLFcQ/3NNsgH1vAyIRNUmBWrLmRZwYP3YF3B9mhFKok2 taGnJPVJU/oG6dGmBeV/CWDouEdvvh2GER5ylLO4rAvpFylEmX6r014DokWTiPWR tiKb7yUXpI35dw9C15iqjnt5v3nh0sPH9Aynd6F1xnNJOOUneviEGY9WcWzaOpTH MGzEa2/aCZtEZtwvX3ZUKzTL9D1CTUo0ivmP3tJeFrSj337pgbY= -----END CERTIFICATE-----Generated at Fri Apr 18 16:45:59 2025 by rpki-client