$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZMTO8hsqZz1Ag1CgYydXQra4Nu4.roa File: ZMTO8hsqZz1Ag1CgYydXQra4Nu4.roa (raw, json) Hash identifier: 9XqCbhGhMVXoemKeEVZGn4oii5ubEOQkcB3ogc1oTdg= Subject key identifier: 64:C4:CE:F2:1B:2A:67:3D:40:83:50:A0:63:27:57:42:B6:B8:36:EE Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2452 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZMTO8hsqZz1Ag1CgYydXQra4Nu4.roa Signing time: Mon 10 Feb 2025 14:18:30 +0000 ROA not before: Mon 10 Feb 2025 14:18:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 61.64.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9298 (0x2452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=64C4CEF21B2A673D408350A063275742B6B836EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4d:7c:e6:26:a7:88:04:32:d8:db:5a:15:41: b1:4e:d2:45:94:65:0d:31:d1:30:9b:36:0f:25:04: 10:0b:ec:76:b6:12:14:bf:86:41:e6:ba:c9:85:cb: 0a:c5:19:62:6a:6e:b9:73:9f:8b:b6:a0:70:34:24: e7:24:bb:89:09:93:1f:4e:45:43:0d:f3:b0:8b:de: 31:3e:f3:9c:3c:51:9d:39:14:9a:c6:40:7a:41:7c: 41:a6:f7:49:46:30:d9:7a:49:53:ca:3c:b2:1f:d7: e6:e1:05:50:cc:d5:ab:70:84:14:4b:7a:1e:16:c6: 55:db:94:dc:f0:76:ef:d9:3c:c9:d6:5b:36:f5:75: 2c:66:19:4a:b1:f8:20:87:bf:77:48:81:15:15:5b: b2:10:4a:f8:f2:06:5c:ee:66:8f:07:32:0e:67:81: 55:67:9a:62:dd:96:98:60:2f:a5:00:d6:eb:8e:68: 68:53:64:5a:8b:d7:62:53:ba:a8:2f:40:ea:c8:84: 29:3b:1f:5e:2f:93:1d:f9:97:07:0b:a4:1b:00:a8: df:9e:42:18:ad:4e:da:73:b0:ea:70:2a:ea:5e:85: c4:10:10:02:51:f0:98:1b:d3:c2:04:c6:a7:ab:1e: 2a:e2:e8:05:7f:20:ae:c2:5d:1f:ba:8a:77:0c:96: 88:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C4:CE:F2:1B:2A:67:3D:40:83:50:A0:63:27:57:42:B6:B8:36:EE X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZMTO8hsqZz1Ag1CgYydXQra4Nu4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.8.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:9d:ac:36:8a:db:1e:f7:e0:54:1e:f1:e8:d7:fa:62:12:5a: 8b:a1:20:2f:74:39:f8:a0:aa:47:60:bf:24:ef:78:71:d7:fe: 31:86:b8:89:bf:33:24:3a:45:1e:a3:3e:76:5b:08:b5:b7:b5: 59:df:46:97:f3:05:04:f3:b6:7a:8f:33:5c:be:96:65:c7:09: 4b:2d:63:f7:e1:bb:3b:ba:ca:fe:eb:0f:c0:75:bc:97:a4:5e: 50:ad:be:44:4f:21:dd:63:d1:63:b1:07:c6:d3:ec:1d:ac:98: b8:2d:f2:b9:73:42:e3:60:62:84:06:0f:0f:d0:d2:10:f8:4c: eb:f1:18:5f:f7:44:91:62:f9:7d:8c:ba:9f:2a:0b:d3:5d:64: b5:0c:f1:0a:ca:fb:2b:eb:77:e1:72:0c:8b:53:99:bd:73:e4: 78:21:53:38:83:33:95:aa:d1:f9:b3:cb:d1:39:43:78:6e:cc: e8:ec:04:da:22:43:10:c3:95:5a:14:a0:15:1c:27:a6:5d:b7: 16:59:70:4a:e9:12:bd:42:4d:56:50:da:df:8c:ab:4b:a6:14: 45:b1:77:4f:3c:30:b3:bb:98:e4:e0:4c:86:96:d7:02:61:4c: c6:9a:7f:a1:1a:94:70:78:af:38:17:31:d4:12:00:40:8a:1e: f0:84:b7:56 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJFIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0QzRDRUYyMUIyQTY3 M0Q0MDgzNTBBMDYzMjc1NzQyQjZCODM2RUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDETXzmJqeIBDLY21oVQbFO0kWUZQ0x0TCbNg8lBBAL7Ha2EhS/ hkHmusmFywrFGWJqbrlzn4u2oHA0JOcku4kJkx9ORUMN87CL3jE+85w8UZ05FJrG QHpBfEGm90lGMNl6SVPKPLIf1+bhBVDM1atwhBRLeh4WxlXblNzwdu/ZPMnWWzb1 dSxmGUqx+CCHv3dIgRUVW7IQSvjyBlzuZo8HMg5ngVVnmmLdlphgL6UA1uuOaGhT ZFqL12JTuqgvQOrIhCk7H14vkx35lwcLpBsAqN+eQhitTtpzsOpwKupehcQQEAJR 8Jgb08IExqerHiri6AV/IK7CXR+6incMloijAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZMTO8hsqZz1Ag1CgYydXQra4Nu4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1pNVE84aHNxWnoxQWcxQ2dZ eWRYUXJhNE51NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 QAgwDQYJKoZIhvcNAQELBQADggEBAG+drDaK2x734FQe8ejX+mISWouhIC90Ofig qkdgvyTveHHX/jGGuIm/MyQ6RR6jPnZbCLW3tVnfRpfzBQTztnqPM1y+lmXHCUst Y/fhuzu6yv7rD8B1vJekXlCtvkRPId1j0WOxB8bT7B2smLgt8rlzQuNgYoQGDw/Q 0hD4TOvxGF/3RJFi+X2Mup8qC9NdZLUM8QrK+yvrd+FyDItTmb1z5HghUziDM5Wq 0fmzy9E5Q3huzOjsBNoiQxDDlVoUoBUcJ6ZdtxZZcErpEr1CTVZQ2t+Mq0umFEWx d088MLO7mOTgTIaW1wJhTMaaf6EalHB4rzgXMdQSAECKHvCEt1Y= -----END CERTIFICATE-----Generated at Fri Apr 18 16:54:08 2025 by rpki-client