$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SbGHutSOQrVrn1Chg0HoOJ1XrqE.roa File: SbGHutSOQrVrn1Chg0HoOJ1XrqE.roa (raw, json) Hash identifier: eY+wS8zHw2/nI6PfaVO6RRIuGDWvC0WFBqMoCHQXsPI= Subject key identifier: 49:B1:87:BA:D4:8E:42:B5:6B:9F:50:A1:83:41:E8:38:9D:57:AE:A1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24B1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SbGHutSOQrVrn1Chg0HoOJ1XrqE.roa Signing time: Mon 10 Feb 2025 14:18:53 +0000 ROA not before: Mon 10 Feb 2025 14:18:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 123.0.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9393 (0x24b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=49B187BAD48E42B56B9F50A18341E8389D57AEA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:41:58:97:00:c9:6f:ef:5b:46:55:7f:40:10: e1:63:3a:69:83:4e:5d:49:8e:e0:37:3d:de:fe:8b: e4:f0:f5:88:2c:e1:fb:84:74:17:dc:d2:5b:56:a9: aa:59:f8:71:f5:48:fa:a4:fd:d4:d1:41:f3:23:a0: 6d:53:b4:fe:a0:dc:c0:f6:d0:64:68:4a:ca:03:35: 60:3c:ef:3b:7a:18:95:49:e5:68:c0:da:89:5a:b4: 40:c2:12:8a:fd:4c:68:cb:29:b6:a4:ae:53:a4:cb: 42:d4:e7:1c:b5:37:a9:a3:94:69:5b:38:cb:96:e8: 49:5a:87:69:37:7c:12:a9:2d:fa:13:d5:29:61:e7: d2:62:dd:1c:e8:39:9b:3d:e9:6b:0e:c0:46:0a:4f: 6c:0a:17:33:68:b4:5c:6f:61:ce:7d:6c:28:73:9d: 40:a4:07:b2:57:19:ed:f3:5c:35:8e:db:2f:bd:3e: 31:9a:7d:24:17:0f:7e:3b:de:7b:4c:10:a7:5d:a4: 15:2f:a9:b9:95:4c:f3:76:1c:77:f1:0e:ec:31:f3: 41:ac:87:d2:dc:14:00:7d:4d:46:21:f6:1b:4a:f7: e3:6e:7a:2c:c6:33:29:d2:40:20:7a:78:b7:5f:9a: 5d:8a:8f:08:55:15:45:08:51:86:54:54:e0:37:a6: f0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B1:87:BA:D4:8E:42:B5:6B:9F:50:A1:83:41:E8:38:9D:57:AE:A1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SbGHutSOQrVrn1Chg0HoOJ1XrqE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.42.0/24 Signature Algorithm: sha256WithRSAEncryption 06:80:c7:c8:c1:74:f9:69:7f:e5:7d:60:82:ca:bb:f9:44:bc: f2:15:9f:72:fc:81:a3:a0:8f:ea:42:09:68:65:b6:1f:ca:18: d8:bd:62:3e:10:18:e2:61:bd:5d:dc:f1:3f:29:2f:0a:64:33: f1:43:0e:8c:51:cc:e4:fb:b9:57:af:13:d6:21:29:fc:e3:68: c0:b4:98:49:26:98:01:a5:90:4c:09:15:ee:2f:27:38:99:ee: 12:01:68:35:d5:aa:e4:d8:a6:51:10:e2:d0:9f:2e:2d:1c:73: a3:33:9c:f1:0e:03:8e:22:b0:11:da:bc:cd:6b:9f:1e:a5:31: 86:15:9f:8e:97:54:ae:76:4e:b4:14:f1:08:b1:4e:0a:4f:13: d0:91:b8:d0:8b:92:fe:42:b9:d1:2f:16:57:39:0b:9b:ef:71: 6b:89:45:43:9d:64:19:db:0a:f0:8d:0b:37:63:54:0a:c7:89: 7a:b0:c4:f6:84:96:8b:72:12:c4:d0:e9:17:d8:3d:2a:89:f8: ea:db:00:7b:27:91:cd:aa:7e:5d:29:77:9e:6f:15:e2:f0:ee: 4b:54:12:0d:51:6f:2d:f1:77:05:f4:84:d8:68:30:c2:9c:e9: 9c:81:16:d2:42:c0:0f:bb:60:8d:12:45:9d:a9:2f:c3:24:66: 4f:d8:0c:1f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJLEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5QjE4N0JBRDQ4RTQy QjU2QjlGNTBBMTgzNDFFODM4OUQ1N0FFQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmQViXAMlv71tGVX9AEOFjOmmDTl1JjuA3Pd7+i+Tw9Ygs4fuE dBfc0ltWqapZ+HH1SPqk/dTRQfMjoG1TtP6g3MD20GRoSsoDNWA87zt6GJVJ5WjA 2olatEDCEor9TGjLKbakrlOky0LU5xy1N6mjlGlbOMuW6Elah2k3fBKpLfoT1Slh 59Ji3RzoOZs96WsOwEYKT2wKFzNotFxvYc59bChznUCkB7JXGe3zXDWO2y+9PjGa fSQXD3473ntMEKddpBUvqbmVTPN2HHfxDuwx80Gsh9LcFAB9TUYh9htK9+NueizG MynSQCB6eLdfml2KjwhVFUUIUYZUVOA3pvBXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSbGHutSOQrVrn1Chg0HoOJ1XrqEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1NiR0h1dFNPUXJWcm4xQ2hn MEhvT0oxWHJxRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 ACowDQYJKoZIhvcNAQELBQADggEBAAaAx8jBdPlpf+V9YILKu/lEvPIVn3L8gaOg j+pCCWhlth/KGNi9Yj4QGOJhvV3c8T8pLwpkM/FDDoxRzOT7uVevE9YhKfzjaMC0 mEkmmAGlkEwJFe4vJziZ7hIBaDXVquTYplEQ4tCfLi0cc6MznPEOA44isBHavM1r nx6lMYYVn46XVK52TrQU8QixTgpPE9CRuNCLkv5CudEvFlc5C5vvcWuJRUOdZBnb CvCNCzdjVArHiXqwxPaElotyEsTQ6RfYPSqJ+OrbAHsnkc2qfl0pd55vFeLw7ktU Eg1Rby3xdwX0hNhoMMKc6ZyBFtJCwA+7YI0SRZ2pL8MkZk/YDB8= -----END CERTIFICATE-----Generated at Fri Apr 18 16:42:39 2025 by rpki-client