$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YkRbPy0h384Mfru3whaUXrZOHd0.roa File: YkRbPy0h384Mfru3whaUXrZOHd0.roa (raw, json) Hash identifier: O0TrAwmTz/k7sIkbCDYJtbUwGr5Bpx7WVC+/tYyQVr8= Subject key identifier: 62:44:5B:3F:2D:21:DF:CE:0C:7E:BB:B7:C2:16:94:5E:B6:4E:1D:DD Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24AB Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YkRbPy0h384Mfru3whaUXrZOHd0.roa Signing time: Mon 10 Feb 2025 14:18:52 +0000 ROA not before: Mon 10 Feb 2025 14:18:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9387 (0x24ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=62445B3F2D21DFCE0C7EBBB7C216945EB64E1DDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e0:dd:68:c6:4d:e4:fd:52:1b:cb:c2:09:29: e1:e2:4b:19:86:6d:be:99:89:db:41:89:be:7a:d0: 22:ba:de:b5:91:36:84:79:05:f2:9a:00:02:dd:44: a3:9d:6d:10:6b:fc:6d:51:f2:b7:4e:98:ae:42:02: 40:f0:ec:07:1f:2a:e5:73:45:2a:96:fa:bf:20:05: 87:4f:f2:48:25:99:eb:54:6b:e8:5d:05:75:5b:32: bd:b4:84:4e:f9:9c:00:84:62:7c:de:1a:09:9b:74: 22:1c:d8:f7:fb:c8:79:a2:24:35:0f:9e:e1:11:9d: 03:9d:9a:3e:60:4b:88:b6:4d:ce:fe:cb:38:7f:68: 5a:21:f7:8b:66:05:c3:b4:da:22:93:10:e8:90:4b: 45:f7:22:f2:5c:f3:f1:a2:5f:39:e9:10:a5:b9:7c: 07:34:fc:a8:6b:ab:80:dc:44:d8:1d:b0:21:44:d5: 9f:ae:09:a4:b1:60:8e:b3:3d:76:6a:3c:fe:d9:ed: 9e:fb:d8:53:66:0b:f4:67:2e:53:56:52:3f:40:c4: 99:3d:7d:33:45:8a:21:40:6a:bc:96:7c:17:ad:93: ab:77:5f:bd:13:1c:71:10:b1:d9:bd:9f:58:79:ac: 55:62:58:e2:a3:9e:55:39:b1:39:77:8c:26:af:cf: 76:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:44:5B:3F:2D:21:DF:CE:0C:7E:BB:B7:C2:16:94:5E:B6:4E:1D:DD X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YkRbPy0h384Mfru3whaUXrZOHd0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.160.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:85:ab:04:91:34:a7:f6:d0:8d:bd:fb:dc:9b:fe:90:0b:38: 5f:bb:39:61:df:4f:e2:5c:0a:4a:6d:a9:20:86:ca:12:8c:32: a2:58:66:1a:b0:91:b1:e7:54:f4:33:73:67:4c:f9:c8:bf:ef: 62:f5:da:d4:c3:f7:b5:24:8f:0a:1e:16:b5:33:2d:79:d4:d0: 26:fe:86:03:62:da:55:67:2b:73:81:22:fd:b4:be:0c:8e:14: de:73:98:87:2c:39:20:44:b6:51:d1:7c:38:01:70:cb:3d:02: 78:40:f4:ae:a1:82:5a:1d:80:ad:4f:c0:1e:ee:2a:b1:06:42: a2:54:b9:ae:76:96:ae:84:42:c7:01:b2:37:cb:43:b7:5a:ea: 8a:cb:a8:57:d7:af:dd:88:d1:53:04:cb:11:fb:65:f2:2c:78: 4c:9b:ff:e6:ba:30:40:65:51:d0:1b:ac:24:5f:80:c2:e6:72: 10:83:4f:9d:22:b2:be:0f:9c:f3:9d:cb:e7:69:20:fc:bc:e7: c9:31:1a:cc:6d:7d:45:c4:31:d7:ee:dc:ef:c5:9d:a7:63:2d: d3:dd:63:fe:90:f7:56:fa:f6:61:65:40:07:37:ca:96:25:d2: e1:1b:e5:99:06:14:fe:8f:69:bb:7d:2d:fe:d5:48:f6:f3:c3: c5:9d:ef:e2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJKswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYyNDQ1QjNGMkQyMURG Q0UwQzdFQkJCN0MyMTY5NDVFQjY0RTFEREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC24N1oxk3k/VIby8IJKeHiSxmGbb6ZidtBib560CK63rWRNoR5 BfKaAALdRKOdbRBr/G1R8rdOmK5CAkDw7AcfKuVzRSqW+r8gBYdP8kglmetUa+hd BXVbMr20hE75nACEYnzeGgmbdCIc2Pf7yHmiJDUPnuERnQOdmj5gS4i2Tc7+yzh/ aFoh94tmBcO02iKTEOiQS0X3IvJc8/GiXznpEKW5fAc0/Khrq4DcRNgdsCFE1Z+u CaSxYI6zPXZqPP7Z7Z772FNmC/RnLlNWUj9AxJk9fTNFiiFAaryWfBetk6t3X70T HHEQsdm9n1h5rFViWOKjnlU5sTl3jCavz3YNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYkRbPy0h384Mfru3whaUXrZOHd0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1lrUmJQeTBoMzg0TWZydTN3 aGFVWHJaT0hkMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n6AwDQYJKoZIhvcNAQELBQADggEBAE2FqwSRNKf20I29+9yb/pALOF+7OWHfT+Jc CkptqSCGyhKMMqJYZhqwkbHnVPQzc2dM+ci/72L12tTD97UkjwoeFrUzLXnU0Cb+ hgNi2lVnK3OBIv20vgyOFN5zmIcsOSBEtlHRfDgBcMs9AnhA9K6hglodgK1PwB7u KrEGQqJUua52lq6EQscBsjfLQ7da6orLqFfXr92I0VMEyxH7ZfIseEyb/+a6MEBl UdAbrCRfgMLmchCDT50isr4PnPOdy+dpIPy858kxGsxtfUXEMdfu3O/FnadjLdPd Y/6Q91b69mFlQAc3ypYl0uEb5ZkGFP6Pabt9Lf7VSPbzw8Wd7+I= -----END CERTIFICATE-----Generated at Fri Apr 18 16:46:02 2025 by rpki-client