$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WZwHhk1R0oK7InbDG5Qq8lhW0D4.roa File: WZwHhk1R0oK7InbDG5Qq8lhW0D4.roa (raw, json) Hash identifier: YNjvuDC4xMZeOd+Cc9y+vo4Mu39cySAoldofpYQUi7w= Subject key identifier: 59:9C:07:86:4D:51:D2:82:BB:22:76:C3:1B:94:2A:F2:58:56:D0:3E Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23B5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WZwHhk1R0oK7InbDG5Qq8lhW0D4.roa Signing time: Mon 10 Feb 2025 14:17:50 +0000 ROA not before: Mon 10 Feb 2025 14:17:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 61.56.160.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9141 (0x23b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=599C07864D51D282BB2276C31B942AF25856D03E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0f:78:be:0a:24:1e:9d:5b:41:a1:30:ad:4d: a1:b4:32:62:cb:ed:6f:5a:82:27:d2:47:0d:2b:32: 01:36:50:7c:d9:ae:fe:56:c3:85:24:5f:41:22:2a: 98:7d:d5:5d:83:02:24:d8:e3:ac:b7:56:92:8b:b2: 7a:04:ed:0b:6f:db:3c:52:bc:33:97:55:fa:7a:e4: 4a:8a:1f:71:83:a5:63:52:3e:e7:96:fb:17:64:d7: e8:57:61:43:c1:22:79:2c:a6:d5:c4:bc:47:27:d8: 42:5e:eb:9b:0c:6d:a7:70:ad:8f:9e:a1:89:cd:5e: eb:fa:0b:eb:3b:36:db:f9:d1:fe:c2:08:08:eb:50: 63:06:be:ef:c4:a9:31:38:69:e4:f7:af:0a:47:17: bb:35:1c:5c:8f:53:cb:6f:ce:e5:11:ee:d4:ab:e2: f8:67:0b:a4:30:79:14:a9:88:fe:d5:c1:d6:02:e6: 4e:df:7e:09:27:b1:9f:44:95:06:01:a3:96:18:67: 53:c7:36:34:f3:1b:f5:54:92:4c:9d:ff:84:15:fa: db:0f:a2:78:42:13:a5:8d:88:1b:b5:dd:66:b9:00: a5:14:d7:e2:0b:f1:66:62:ea:a2:30:1a:42:f7:1b: 9e:d6:93:94:63:d3:c5:ff:7c:dd:f5:77:5d:b9:fe: e6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9C:07:86:4D:51:D2:82:BB:22:76:C3:1B:94:2A:F2:58:56:D0:3E X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WZwHhk1R0oK7InbDG5Qq8lhW0D4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.160.0/20 Signature Algorithm: sha256WithRSAEncryption 96:dd:54:cc:11:3a:27:d3:fa:9b:d6:05:9e:c5:09:ff:c4:2c: f1:03:46:23:99:89:9d:b9:1f:5b:32:78:e5:99:a4:9e:95:a4: 06:a1:84:62:9e:19:05:82:12:48:59:cd:ed:fa:c6:7d:5a:d0: af:d2:d0:14:05:7c:11:c4:22:29:2e:fd:cc:20:9d:50:8e:fa: 49:60:1f:3f:b3:69:27:bc:e7:76:82:1d:0b:dd:22:a4:6b:80: eb:66:4d:4d:45:79:f2:ea:24:72:8b:fa:84:cc:20:05:bb:e1: 25:fc:44:88:f6:f9:d4:8c:08:60:59:c0:dd:58:59:3b:7c:a6: ee:0b:79:d4:73:b8:45:f3:41:ed:00:58:aa:59:23:7f:56:9a: 93:66:55:65:55:f0:98:63:ce:fa:83:55:99:c6:62:36:1e:2f: 17:25:4b:59:05:de:d6:d0:b1:38:51:d3:ec:3a:d3:20:ef:73: 61:3b:4e:a8:ff:16:be:8d:e0:26:3d:8b:bb:d2:05:d1:e0:e6: 2f:f4:1f:0f:69:d3:54:7f:a1:aa:e3:6c:8c:49:44:bf:d8:98: b1:cb:c9:92:5e:a5:e5:49:3c:a6:77:ad:39:7a:b8:93:5a:c1: c1:2f:44:00:33:27:b7:2f:5c:0f:15:27:bb:cf:32:5a:11:ec: 0c:d6:7c:d2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI7UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU5OUMwNzg2NEQ1MUQy ODJCQjIyNzZDMzFCOTQyQUYyNTg1NkQwM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6D3i+CiQenVtBoTCtTaG0MmLL7W9agifSRw0rMgE2UHzZrv5W w4UkX0EiKph91V2DAiTY46y3VpKLsnoE7Qtv2zxSvDOXVfp65EqKH3GDpWNSPueW +xdk1+hXYUPBInksptXEvEcn2EJe65sMbadwrY+eoYnNXuv6C+s7Ntv50f7CCAjr UGMGvu/EqTE4aeT3rwpHF7s1HFyPU8tvzuUR7tSr4vhnC6QweRSpiP7VwdYC5k7f fgknsZ9ElQYBo5YYZ1PHNjTzG/VUkkyd/4QV+tsPonhCE6WNiBu13Wa5AKUU1+IL 8WZi6qIwGkL3G57Wk5Rj08X/fN31d125/ua7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUWZwHhk1R0oK7InbDG5Qq8lhW0D4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1dad0hoazFSMG9LN0luYkRH NVFxOGxoVzBENC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OKAwDQYJKoZIhvcNAQELBQADggEBAJbdVMwROifT+pvWBZ7FCf/ELPEDRiOZiZ25 H1syeOWZpJ6VpAahhGKeGQWCEkhZze36xn1a0K/S0BQFfBHEIiku/cwgnVCO+klg Hz+zaSe853aCHQvdIqRrgOtmTU1FefLqJHKL+oTMIAW74SX8RIj2+dSMCGBZwN1Y WTt8pu4LedRzuEXzQe0AWKpZI39WmpNmVWVV8JhjzvqDVZnGYjYeLxclS1kF3tbQ sThR0+w60yDvc2E7Tqj/Fr6N4CY9i7vSBdHg5i/0Hw9p01R/oarjbIxJRL/YmLHL yZJepeVJPKZ3rTl6uJNawcEvRAAzJ7cvXA8VJ7vPMloR7AzWfNI= -----END CERTIFICATE-----Generated at Fri Apr 18 16:54:12 2025 by rpki-client