$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Uv3fZV-BBT5z1Q8nZ4h2zmBc-dc.roa File: Uv3fZV-BBT5z1Q8nZ4h2zmBc-dc.roa (raw, json) Hash identifier: UMTAmr9vbobcNnlad8wOt0ns+Psk69siS8KEgUhGltE= Subject key identifier: 52:FD:DF:65:5F:81:05:3E:73:D5:0F:27:67:88:76:CE:60:5C:F9:D7 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 237A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Uv3fZV-BBT5z1Q8nZ4h2zmBc-dc.roa Signing time: Mon 10 Feb 2025 14:17:37 +0000 ROA not before: Mon 10 Feb 2025 14:17:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9082 (0x237a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=52FDDF655F81053E73D50F27678876CE605CF9D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b1:37:69:3f:fa:0f:b8:a5:8b:e2:53:ea:cd: e8:8a:a3:38:7b:1f:42:bb:08:e3:cc:5e:67:4d:cb: 0b:d6:51:9a:3b:05:30:16:79:2b:d4:78:7c:4a:1e: 8c:ac:22:fd:58:06:12:58:68:48:6f:56:12:e1:0a: 07:26:e9:78:68:df:64:73:d3:bb:35:7c:ed:a1:cc: f4:34:9f:99:f6:fa:f7:dc:c5:e8:a4:a1:d4:13:d8: 66:ef:f2:75:45:25:2c:0c:83:92:18:04:d5:8d:44: 9f:03:c9:20:58:17:91:48:26:8b:85:02:b4:fb:a4: 80:e1:8b:8e:bf:d8:cb:31:46:5e:26:59:62:36:eb: 26:9a:e5:00:1f:3d:8f:3f:82:84:db:f0:c5:fc:bc: 6b:35:e4:55:a8:b7:1c:ff:da:a6:6c:1c:bf:a7:71: ec:47:d4:80:80:30:ed:d4:9d:d3:1e:bf:79:0f:94: 3e:b1:dd:c0:44:4b:77:fe:64:0a:a9:24:24:e3:35: 89:7c:ac:f6:d9:8f:ec:c2:56:3a:94:ba:9d:02:e7: 80:d9:6b:d5:c1:9a:97:9e:75:3c:8c:ed:ea:4b:f6: 31:f5:07:05:e2:3b:a7:53:a5:db:ec:f3:1d:1a:b5: 77:bd:64:74:6b:6a:6b:12:88:cb:23:ad:af:53:99: a0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:FD:DF:65:5F:81:05:3E:73:D5:0F:27:67:88:76:CE:60:5C:F9:D7 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Uv3fZV-BBT5z1Q8nZ4h2zmBc-dc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.0.0/16 Signature Algorithm: sha256WithRSAEncryption 70:0f:89:e2:cf:4b:af:ef:e5:81:49:c2:54:93:1e:dd:ec:41: 0d:d9:4f:29:74:f9:af:34:cb:3d:f6:f0:9d:41:e5:37:92:d0: 04:86:52:14:a0:d6:84:a0:20:38:8b:7e:a4:b1:12:92:b6:9d: 25:0c:d8:a0:0a:0e:29:51:1e:cc:53:fa:86:ee:d6:6d:64:07: 76:42:42:25:5d:13:93:06:e3:1e:01:12:89:b6:9a:c2:68:01: de:35:d2:21:8e:87:33:df:5d:6c:63:e2:84:00:9e:64:51:da: f6:e5:f1:8a:9a:7e:c9:e7:ef:18:ec:f2:04:a4:d0:26:23:31: d7:0e:91:c4:05:65:dd:bb:1f:09:ab:f7:cd:c8:7d:e6:e9:dd: b6:07:47:67:1f:a3:cd:12:46:7e:1a:0e:51:4f:a3:2f:18:df: 77:07:2d:6a:2c:02:29:b9:6a:a5:0c:18:6f:fa:5e:63:09:b7: 46:03:64:f4:da:35:39:fe:d6:74:6b:c3:9e:07:34:f1:d0:a0: cb:50:e6:dc:52:48:3e:15:be:a2:38:00:23:86:aa:62:be:5b: 35:4b:16:55:e4:8e:0c:90:62:75:ff:03:ad:58:bc:d2:a1:31: a4:d9:d8:55:89:57:a4:4a:d0:22:9e:08:14:61:84:11:a1:39: 61:d4:ce:44 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICI3owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyRkRERjY1NUY4MTA1 M0U3M0Q1MEYyNzY3ODg3NkNFNjA1Q0Y5RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFsTdpP/oPuKWL4lPqzeiKozh7H0K7COPMXmdNywvWUZo7BTAW eSvUeHxKHoysIv1YBhJYaEhvVhLhCgcm6Xho32Rz07s1fO2hzPQ0n5n2+vfcxeik odQT2Gbv8nVFJSwMg5IYBNWNRJ8DySBYF5FIJouFArT7pIDhi46/2MsxRl4mWWI2 6yaa5QAfPY8/goTb8MX8vGs15FWotxz/2qZsHL+ncexH1ICAMO3UndMev3kPlD6x 3cBES3f+ZAqpJCTjNYl8rPbZj+zCVjqUup0C54DZa9XBmpeedTyM7epL9jH1BwXi O6dTpdvs8x0atXe9ZHRramsSiMsjra9TmaDdAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUUv3fZV+BBT5z1Q8nZ4h2zmBc+dcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1V2M2ZaVi1CQlQ1ejFROG5a NGgyem1CYy1kYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwAx nzANBgkqhkiG9w0BAQsFAAOCAQEAcA+J4s9Lr+/lgUnCVJMe3exBDdlPKXT5rzTL PfbwnUHlN5LQBIZSFKDWhKAgOIt+pLESkradJQzYoAoOKVEezFP6hu7WbWQHdkJC JV0TkwbjHgESibaawmgB3jXSIY6HM99dbGPihACeZFHa9uXxipp+yefvGOzyBKTQ JiMx1w6RxAVl3bsfCav3zch95undtgdHZx+jzRJGfhoOUU+jLxjfdwctaiwCKblq pQwYb/peYwm3RgNk9No1Of7WdGvDngc08dCgy1Dm3FJIPhW+ojgAI4aqYr5bNUsW VeSODJBidf8DrVi80qExpNnYVYlXpErQIp4IFGGEEaE5YdTORA== -----END CERTIFICATE-----Generated at Thu Apr 17 21:03:45 2025 by rpki-client