$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/T7cnjohOe5Hw_MrOY8LHMNb2q0M.roa File: T7cnjohOe5Hw_MrOY8LHMNb2q0M.roa (raw, json) Hash identifier: WHjYT/xON/8ajOuNysi/KmAFKD9UG4TuuwZCvRUlRBU= Subject key identifier: 4F:B7:27:8E:88:4E:7B:91:F0:FC:CA:CE:63:C2:C7:30:D6:F6:AB:43 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2441 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/T7cnjohOe5Hw_MrOY8LHMNb2q0M.roa Signing time: Mon 10 Feb 2025 14:18:26 +0000 ROA not before: Mon 10 Feb 2025 14:18:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9281 (0x2441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4FB7278E884E7B91F0FCCACE63C2C730D6F6AB43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a7:8b:1b:24:33:68:aa:b8:9f:27:ff:37:5f: f5:b3:83:82:9b:2e:40:8a:7f:75:6d:35:3f:19:2b: fd:33:2a:18:80:4a:8d:e7:4f:d4:55:60:d8:e9:4f: a1:5b:b2:c8:92:17:26:8c:fd:eb:ea:0c:a9:70:8e: bf:40:40:6b:5b:93:c2:c3:19:9d:73:cd:96:f9:65: a6:e6:a0:4e:5d:4b:e6:5b:ba:08:cb:06:f9:d8:b4: dc:a6:11:11:3c:ab:87:0b:71:0b:c1:b5:2c:4b:19: 4e:6f:27:c5:00:3a:03:a9:af:88:fb:cd:8f:0d:30: ed:3f:95:68:7b:ca:b1:b2:4a:b4:f3:11:88:30:98: 33:e3:ee:a3:97:39:72:55:af:cf:53:37:b0:e8:30: f2:f3:95:a6:8b:ef:7e:e0:f0:06:81:b6:d4:57:4b: 61:19:f0:56:40:76:0a:d5:b5:76:1b:e5:1a:09:a5: 46:a0:32:3e:93:1d:e5:36:c2:b0:4f:2a:3f:13:a7: e3:92:c5:66:9a:cd:40:09:0c:ff:ee:70:28:a3:5e: 06:49:17:77:9d:94:74:63:0e:af:c7:2a:e1:49:f5: f9:57:f5:bd:2b:53:11:02:28:6f:c5:cb:24:19:04: 1e:07:02:95:16:73:34:5a:36:e3:6b:ed:eb:24:ec: 73:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B7:27:8E:88:4E:7B:91:F0:FC:CA:CE:63:C2:C7:30:D6:F6:AB:43 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/T7cnjohOe5Hw_MrOY8LHMNb2q0M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.64.0/21 Signature Algorithm: sha256WithRSAEncryption 8d:02:31:1c:a1:5a:65:11:31:2d:63:dd:c3:5d:9f:01:a6:41: 8b:1b:70:89:d1:2d:f3:ac:7a:63:f5:92:aa:ee:c5:9e:01:c1: c3:c0:bf:6e:8c:b8:e2:7f:ff:a6:9e:e1:6e:2b:31:70:86:d4: ce:15:70:88:7c:bb:8e:78:01:3b:73:a6:dd:54:01:3d:9c:5b: 25:9e:5a:2d:7a:8b:cd:88:ab:86:57:fb:29:2e:c8:da:85:67: c7:92:d1:a4:eb:38:3a:25:63:77:42:ef:13:24:cd:35:f9:85: 8b:df:25:74:b3:9a:95:eb:e1:dd:dd:49:a3:26:82:64:19:be: 55:dd:34:dc:98:ed:04:d6:b7:1c:25:2f:a4:58:96:f7:ba:1a: 60:1a:be:19:ec:be:5f:79:84:cd:7c:26:d8:3a:81:a3:52:dd: eb:73:b8:e2:38:96:bf:0d:76:38:1a:f5:51:1f:ea:5a:04:9d: b8:ab:d9:eb:c0:31:06:36:53:a9:58:6c:6d:ad:9b:c4:b1:f1: 5c:d4:5e:bc:4f:e3:15:be:7e:40:13:ce:2d:35:27:dd:89:53: 02:65:62:dc:55:d9:d4:f6:d0:23:29:6f:ac:3c:46:90:d1:f3: 6b:96:02:92:58:63:12:f5:c6:5b:cf:9d:9d:b3:22:b3:26:c6: 76:ab:df:e9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJEEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRGQjcyNzhFODg0RTdC OTFGMEZDQ0FDRTYzQzJDNzMwRDZGNkFCNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSp4sbJDNoqrifJ/83X/Wzg4KbLkCKf3VtNT8ZK/0zKhiASo3n T9RVYNjpT6FbssiSFyaM/evqDKlwjr9AQGtbk8LDGZ1zzZb5ZabmoE5dS+ZbugjL BvnYtNymERE8q4cLcQvBtSxLGU5vJ8UAOgOpr4j7zY8NMO0/lWh7yrGySrTzEYgw mDPj7qOXOXJVr89TN7DoMPLzlaaL737g8AaBttRXS2EZ8FZAdgrVtXYb5RoJpUag Mj6THeU2wrBPKj8Tp+OSxWaazUAJDP/ucCijXgZJF3edlHRjDq/HKuFJ9flX9b0r UxECKG/FyyQZBB4HApUWczRaNuNr7esk7HNxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUT7cnjohOe5Hw/MrOY8LHMNb2q0MwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1Q3Y25qb2hPZTVId19Nck9Z OExITU5iMnEwTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2kAwDQYJKoZIhvcNAQELBQADggEBAI0CMRyhWmURMS1j3cNdnwGmQYsbcInRLfOs emP1kqruxZ4BwcPAv26MuOJ//6ae4W4rMXCG1M4VcIh8u454ATtzpt1UAT2cWyWe Wi16i82Iq4ZX+ykuyNqFZ8eS0aTrODolY3dC7xMkzTX5hYvfJXSzmpXr4d3dSaMm gmQZvlXdNNyY7QTWtxwlL6RYlve6GmAavhnsvl95hM18Jtg6gaNS3etzuOI4lr8N djga9VEf6loEnbir2evAMQY2U6lYbG2tm8Sx8VzUXrxP4xW+fkATzi01J92JUwJl YtxV2dT20CMpb6w8RpDR82uWApJYYxL1xlvPnZ2zIrMmxnar3+k= -----END CERTIFICATE-----Generated at Thu Apr 17 21:01:43 2025 by rpki-client