$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/X7o7QUAMbi5k2NhdaREl2G2z6gM.roa File: X7o7QUAMbi5k2NhdaREl2G2z6gM.roa (raw, json) Hash identifier: BiZvBz8GLYhA8Jz4xoH05J2YJfbk9+elCdQv/FCYYKU= Subject key identifier: 5F:BA:3B:41:40:0C:6E:2E:64:D8:D8:5D:69:11:25:D8:6D:B3:EA:03 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2384 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/X7o7QUAMbi5k2NhdaREl2G2z6gM.roa Signing time: Mon 10 Feb 2025 14:17:39 +0000 ROA not before: Mon 10 Feb 2025 14:17:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 122.100.88.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9092 (0x2384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5FBA3B41400C6E2E64D8D85D691125D86DB3EA03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5d:f8:d0:15:81:0d:63:bc:2c:d2:b6:02:9c: d2:e7:19:3e:25:d0:35:e0:2e:d8:72:d7:09:d7:c4: 99:26:bc:e5:8d:3b:0b:2d:dc:11:2c:b0:5b:82:28: 3d:26:2a:4b:cf:e7:fc:22:fd:7c:83:68:a4:e8:3a: d2:e7:4d:85:99:b8:c2:59:7a:75:d3:64:30:f9:9e: 7e:90:66:01:88:f7:89:6a:9e:ea:12:71:52:1e:f4: a2:52:6e:e3:93:ad:12:6c:ab:df:fe:d4:4d:b6:6b: e2:45:b0:cc:00:12:86:97:52:44:f1:79:22:b2:95: 52:8d:df:fd:7d:07:fa:54:fc:67:68:70:14:d8:9b: bc:17:07:00:1c:e8:89:5d:50:b5:eb:45:f9:68:b4: ea:d8:ec:02:4e:ea:d3:f9:11:b0:f0:13:23:4e:47: 0c:64:99:85:a3:ae:a2:2c:7d:c0:44:87:70:1a:0f: 7d:1e:d8:6f:5e:aa:1f:c7:57:84:d1:b6:89:38:1f: 63:a6:0c:6c:73:01:6b:40:a5:15:cc:1b:e5:4a:25: 8b:57:3b:bc:05:90:79:10:2a:a7:a4:e1:d2:f1:29: 2c:46:48:ba:16:57:b5:fa:67:a7:d7:62:c5:b1:04: 2c:c6:e6:2d:5a:b9:68:92:84:8a:6e:27:6c:a9:e2: 47:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:BA:3B:41:40:0C:6E:2E:64:D8:D8:5D:69:11:25:D8:6D:B3:EA:03 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/X7o7QUAMbi5k2NhdaREl2G2z6gM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.88.0/21 Signature Algorithm: sha256WithRSAEncryption 5e:c4:73:03:a6:d1:a1:05:76:d2:cf:d3:3b:91:e6:89:76:b4: 95:4f:e6:de:cb:bd:5d:58:c0:b9:ab:52:57:1a:04:98:d2:a3: 64:20:3d:e7:4f:41:2a:cf:23:14:c3:b4:bf:e0:ce:22:d0:09: 3d:00:73:86:d1:59:22:d5:f5:44:7f:34:3b:be:93:bb:3c:63: b9:0b:eb:d1:e6:f0:04:79:9d:6c:fa:79:d7:d6:17:7c:12:63: 46:84:df:61:c0:62:26:80:78:df:02:b1:72:a2:b3:3c:e7:25: e3:fa:05:3f:23:a0:5e:d7:57:c9:e0:5f:ab:11:cd:00:a1:79: c9:45:8f:23:64:9d:be:6c:38:4c:6d:b0:40:77:19:b1:fa:a5: cb:de:b9:7e:2a:d1:1e:b2:43:72:1e:e1:f1:74:a5:a8:60:df: 4a:ca:f2:bc:69:75:df:77:42:bc:b1:8e:74:be:2c:a5:18:d4: 15:f2:5e:22:8f:ab:70:a5:bf:fe:8a:ca:2e:54:82:2b:fd:e6: d2:fe:79:e5:f5:1b:8d:37:a6:c1:f8:2d:64:44:3d:79:e4:50: 02:75:f0:8a:af:1d:de:7b:d1:8a:54:09:84:26:99:50:ae:d2: d8:5c:a7:f1:6f:c2:34:60:0a:e5:8a:69:3f:42:ef:3f:bc:00: 38:bc:05:9c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI4QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVGQkEzQjQxNDAwQzZF MkU2NEQ4RDg1RDY5MTEyNUQ4NkRCM0VBMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0XfjQFYENY7ws0rYCnNLnGT4l0DXgLthy1wnXxJkmvOWNOwst 3BEssFuCKD0mKkvP5/wi/XyDaKToOtLnTYWZuMJZenXTZDD5nn6QZgGI94lqnuoS cVIe9KJSbuOTrRJsq9/+1E22a+JFsMwAEoaXUkTxeSKylVKN3/19B/pU/GdocBTY m7wXBwAc6IldULXrRflotOrY7AJO6tP5EbDwEyNORwxkmYWjrqIsfcBEh3AaD30e 2G9eqh/HV4TRtok4H2OmDGxzAWtApRXMG+VKJYtXO7wFkHkQKqek4dLxKSxGSLoW V7X6Z6fXYsWxBCzG5i1auWiShIpuJ2yp4kffAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUX7o7QUAMbi5k2NhdaREl2G2z6gMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1g3bzdRVUFNYmk1azJOaGRh UkVsMkcyejZnTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 ZFgwDQYJKoZIhvcNAQELBQADggEBAF7EcwOm0aEFdtLP0zuR5ol2tJVP5t7LvV1Y wLmrUlcaBJjSo2QgPedPQSrPIxTDtL/gziLQCT0Ac4bRWSLV9UR/NDu+k7s8Y7kL 69Hm8AR5nWz6edfWF3wSY0aE32HAYiaAeN8CsXKiszznJeP6BT8joF7XV8ngX6sR zQCheclFjyNknb5sOExtsEB3GbH6pcveuX4q0R6yQ3Ie4fF0pahg30rK8rxpdd93 QryxjnS+LKUY1BXyXiKPq3Clv/6Kyi5Ugiv95tL+eeX1G403psH4LWREPXnkUAJ1 8IqvHd570YpUCYQmmVCu0thcp/FvwjRgCuWKaT9C7z+8ADi8BZw= -----END CERTIFICATE-----Generated at Thu Apr 17 21:01:46 2025 by rpki-client