$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZRCvoab_Kzg22K26oFLS5bxHoGc.roa File: ZRCvoab_Kzg22K26oFLS5bxHoGc.roa (raw, json) Hash identifier: KlgPiHuE6HLnHU0eMu8b82uYjUUSJ2XXnqxwvFGQmAY= Subject key identifier: 65:10:AF:A1:A6:FF:2B:38:36:D8:AD:BA:A0:52:D2:E5:BC:47:A0:67 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24BF Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZRCvoab_Kzg22K26oFLS5bxHoGc.roa Signing time: Mon 10 Feb 2025 14:18:57 +0000 ROA not before: Mon 10 Feb 2025 14:18:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 2407:4b00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9407 (0x24bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6510AFA1A6FF2B3836D8ADBAA052D2E5BC47A067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:27:d3:dc:cf:a7:40:d2:36:35:fc:15:ae:5d: c1:7e:d4:b3:5b:86:13:e1:e5:87:f4:4a:aa:9d:a6: 54:31:3a:17:bf:a1:c7:a8:97:51:5e:f1:1c:87:af: 79:9a:7c:16:54:88:88:94:13:2c:bc:a8:16:07:09: 1a:48:17:1a:36:a3:c8:b1:9e:42:d4:bc:01:34:f1: 3e:32:ea:0f:07:8b:f1:b1:1e:48:55:9e:0a:2c:df: 51:2a:3d:90:b3:79:c8:76:24:3a:ea:38:22:3d:22: 76:d3:d4:e5:2a:8d:77:5c:00:81:79:6d:95:e6:a6: 3e:2a:64:18:63:ca:41:7c:26:94:0c:44:bd:f3:99: 36:5d:2a:05:cc:05:fb:20:be:84:dd:9e:88:ad:7e: ab:36:ff:f6:26:1d:83:02:38:b4:66:8e:b8:d9:d4: da:af:c1:71:40:12:7f:27:52:10:97:25:bd:15:17: fd:c5:ca:c7:0e:5e:c7:87:e5:8b:99:24:e9:2d:39: d9:87:7c:a8:f6:80:74:e7:94:82:f9:35:d2:5c:eb: b7:df:f0:95:cc:58:c7:ae:29:a2:42:7d:a4:99:46: 70:09:a3:5b:de:15:fd:b4:c6:f7:b8:b4:b1:a1:1a: 2b:ef:a7:6d:a3:4f:ce:4d:77:92:c6:13:46:92:2f: c6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:10:AF:A1:A6:FF:2B:38:36:D8:AD:BA:A0:52:D2:E5:BC:47:A0:67 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZRCvoab_Kzg22K26oFLS5bxHoGc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4b00::/32 Signature Algorithm: sha256WithRSAEncryption 96:35:96:2a:48:6a:c1:d4:fb:62:36:f3:26:e5:61:ad:08:6d: 82:65:21:18:fb:9a:fc:79:b5:df:1a:93:64:45:81:18:cb:a5: 21:23:b3:af:67:f7:cc:b6:a9:e1:b2:10:22:50:be:2b:19:6a: 85:4f:70:f5:2d:8b:e4:90:7f:d2:3e:c1:4c:86:62:fa:9d:86: 83:04:6f:58:cb:6c:40:0d:2d:6d:db:ba:ce:1a:8c:09:99:92: 4f:43:99:6a:64:8c:2e:be:d3:f0:d0:fd:b2:b5:04:1f:1b:c1: a7:61:fa:10:be:1b:cd:5b:da:52:1d:04:d5:9c:3c:c8:0b:08: 22:eb:b0:04:8b:3a:78:91:bd:63:31:06:08:3a:7f:30:17:9a: c2:c5:ae:1a:53:e6:6d:90:51:a0:f9:5d:f8:43:4f:4f:21:e6: a9:f5:ca:2c:34:9a:3e:66:88:fe:1d:3f:47:76:02:ed:e3:b8: e1:b7:d6:ed:d3:4f:a3:a1:96:7c:12:e1:24:b8:4d:6b:f3:e3: 15:a5:f4:9c:52:4c:f1:4a:05:0c:77:d3:06:a4:10:c0:5c:54: 7d:09:11:09:a2:8b:ef:4d:f7:2c:ef:91:61:a9:b4:c2:2b:c8: 49:d3:32:84:f4:5b:b9:3f:94:89:be:a8:19:fd:37:8b:8f:44: c0:c9:81:0f -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICJL8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1MTBBRkExQTZGRjJC MzgzNkQ4QURCQUEwNTJEMkU1QkM0N0EwNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLJ9Pcz6dA0jY1/BWuXcF+1LNbhhPh5Yf0SqqdplQxOhe/oceo l1Fe8RyHr3mafBZUiIiUEyy8qBYHCRpIFxo2o8ixnkLUvAE08T4y6g8Hi/GxHkhV ngos31EqPZCzech2JDrqOCI9InbT1OUqjXdcAIF5bZXmpj4qZBhjykF8JpQMRL3z mTZdKgXMBfsgvoTdnoitfqs2//YmHYMCOLRmjrjZ1NqvwXFAEn8nUhCXJb0VF/3F yscOXseH5YuZJOktOdmHfKj2gHTnlIL5NdJc67ff8JXMWMeuKaJCfaSZRnAJo1ve Ff20xve4tLGhGivvp22jT85Nd5LGE0aSL8ZfAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUZRCvoab/Kzg22K26oFLS5bxHoGcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1pSQ3ZvYWJfS3pnMjJLMjZv RkxTNWJ4SG9HYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk B0sAMA0GCSqGSIb3DQEBCwUAA4IBAQCWNZYqSGrB1PtiNvMm5WGtCG2CZSEY+5r8 ebXfGpNkRYEYy6UhI7OvZ/fMtqnhshAiUL4rGWqFT3D1LYvkkH/SPsFMhmL6nYaD BG9Yy2xADS1t27rOGowJmZJPQ5lqZIwuvtPw0P2ytQQfG8GnYfoQvhvNW9pSHQTV nDzICwgi67AEizp4kb1jMQYIOn8wF5rCxa4aU+ZtkFGg+V34Q09PIeap9cosNJo+ Zoj+HT9HdgLt47jht9bt00+joZZ8EuEkuE1r8+MVpfScUkzxSgUMd9MGpBDAXFR9 CREJoovvTfcs75FhqbTCK8hJ0zKE9Fu5P5SJvqgZ/TeLj0TAyYEP -----END CERTIFICATE-----Generated at Fri Apr 18 16:48:12 2025 by rpki-client