$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VQXzVDHw8oP2P-a5TTAvw9jUZMI.roa File: VQXzVDHw8oP2P-a5TTAvw9jUZMI.roa (raw, json) Hash identifier: cZQMgK7UlAFvJaXliOOMzkl+YX98+OB1Cbkl6HdElRU= Subject key identifier: 55:05:F3:54:31:F0:F2:83:F6:3F:E6:B9:4D:30:2F:C3:D8:D4:64:C2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 239E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VQXzVDHw8oP2P-a5TTAvw9jUZMI.roa Signing time: Mon 10 Feb 2025 14:17:45 +0000 ROA not before: Mon 10 Feb 2025 14:17:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 123.0.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9118 (0x239e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5505F35431F0F283F63FE6B94D302FC3D8D464C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4c:5c:f7:1c:4f:27:28:71:87:a4:35:c3:b2: 59:04:2e:b6:64:8c:49:10:7e:9a:7b:c5:62:b0:4d: c2:ae:04:e3:75:14:62:c5:5a:6b:56:c8:09:b3:d0: 5d:5b:24:6e:5c:e0:4c:bc:e9:af:d4:05:5e:a5:10: 9d:f3:de:b3:26:60:4c:48:51:9c:04:37:b4:56:f0: 0e:96:25:06:12:e3:2b:3f:c0:40:27:5e:01:9c:8a: 74:c6:02:f8:8e:95:2e:36:e1:bb:41:17:ca:d7:7b: 97:70:65:cf:33:69:32:46:53:cf:8a:29:3f:07:3c: 2f:89:64:1a:e8:e6:e5:11:24:9b:70:14:1b:53:1e: ef:10:21:4b:fb:54:4e:1d:b6:c2:b5:94:85:a9:14: 5f:ea:7a:a9:41:26:44:c5:8b:16:ff:1e:e6:3f:58: 83:0f:03:d4:8b:3f:ec:f5:93:24:8c:fe:4e:5f:38: b8:3c:52:6c:b6:77:3d:89:1b:07:94:bc:dc:cd:70: e7:d5:c1:c3:bc:d9:5d:86:3c:27:9b:75:47:15:5a: ff:6e:34:27:bb:4c:eb:ee:f8:66:92:7d:92:84:f7: f8:8c:07:4f:82:c6:c6:58:1b:1e:39:80:2a:80:19: 6c:a4:fe:8d:94:8e:80:08:f7:ec:5d:d4:63:df:41: 59:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:05:F3:54:31:F0:F2:83:F6:3F:E6:B9:4D:30:2F:C3:D8:D4:64:C2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VQXzVDHw8oP2P-a5TTAvw9jUZMI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.32.0/19 Signature Algorithm: sha256WithRSAEncryption 7e:95:a6:98:8c:e3:da:d7:b5:11:98:f5:dc:1d:b0:4f:27:eb: 18:b4:b6:a5:7a:70:2d:b4:5e:8b:a7:7d:d1:5e:4a:1f:1c:f2: 3f:64:b5:72:90:f0:ae:05:04:a6:19:0a:a7:ae:49:fb:ec:7c: 36:ad:d6:fe:ff:a1:b0:30:6d:10:10:0f:9a:73:52:c3:04:e4: 64:df:be:06:da:66:cf:56:17:6e:19:58:aa:11:74:aa:bf:d2: 3e:c0:99:23:13:54:ec:7e:5b:b8:4c:a4:1e:9e:f1:c4:31:41: 93:f6:d4:71:1b:59:fe:4b:4a:e1:0a:85:5a:72:e2:a9:3f:b3: 8c:7e:65:78:ab:3b:df:76:41:68:cb:7a:0c:b9:62:4b:ba:68: bb:62:27:af:ef:88:32:46:4b:1f:29:98:cd:8a:39:01:93:d6: 5b:20:ce:d7:09:de:dd:61:a9:66:ee:fd:27:97:da:08:14:d8: c9:c9:a8:81:ac:eb:e6:b1:4a:62:bd:6b:85:86:d6:04:13:e0: 48:35:23:5b:44:e7:63:15:2b:6c:b3:ef:d4:29:4a:87:75:1a: ee:ef:82:57:6f:dc:92:c5:63:aa:40:f7:65:5a:de:40:f4:16: 61:8d:c4:89:e9:86:9b:19:ba:25:c3:64:36:54:76:2f:86:91: 68:9b:fe:b2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI54wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1MDVGMzU0MzFGMEYy ODNGNjNGRTZCOTREMzAyRkMzRDhENDY0QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCTFz3HE8nKHGHpDXDslkELrZkjEkQfpp7xWKwTcKuBON1FGLF WmtWyAmz0F1bJG5c4Ey86a/UBV6lEJ3z3rMmYExIUZwEN7RW8A6WJQYS4ys/wEAn XgGcinTGAviOlS424btBF8rXe5dwZc8zaTJGU8+KKT8HPC+JZBro5uURJJtwFBtT Hu8QIUv7VE4dtsK1lIWpFF/qeqlBJkTFixb/HuY/WIMPA9SLP+z1kySM/k5fOLg8 Umy2dz2JGweUvNzNcOfVwcO82V2GPCebdUcVWv9uNCe7TOvu+GaSfZKE9/iMB0+C xsZYGx45gCqAGWyk/o2UjoAI9+xd1GPfQVmHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUVQXzVDHw8oP2P+a5TTAvw9jUZMIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1ZRWHpWREh3OG9QMlAtYTVU VEF2dzlqVVpNSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 ACAwDQYJKoZIhvcNAQELBQADggEBAH6VppiM49rXtRGY9dwdsE8n6xi0tqV6cC20 XounfdFeSh8c8j9ktXKQ8K4FBKYZCqeuSfvsfDat1v7/obAwbRAQD5pzUsME5GTf vgbaZs9WF24ZWKoRdKq/0j7AmSMTVOx+W7hMpB6e8cQxQZP21HEbWf5LSuEKhVpy 4qk/s4x+ZXirO992QWjLegy5Yku6aLtiJ6/viDJGSx8pmM2KOQGT1lsgztcJ3t1h qWbu/SeX2ggU2MnJqIGs6+axSmK9a4WG1gQT4Eg1I1tE52MVK2yz79QpSod1Gu7v gldv3JLFY6pA92Va3kD0FmGNxInphpsZuiXDZDZUdi+GkWib/rI= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:15 2025 by rpki-client