$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/b1mIHQBcPfshZdmnC8WOdY0-O-M.roa File: b1mIHQBcPfshZdmnC8WOdY0-O-M.roa (raw, json) Hash identifier: Q1bnP3pLGHRRdb0OA9pmOozMHCp/ustkof53L+oSssY= Subject key identifier: 6F:59:88:1D:00:5C:3D:FB:21:65:D9:A7:0B:C5:8E:75:8D:3E:3B:E3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 247E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/b1mIHQBcPfshZdmnC8WOdY0-O-M.roa Signing time: Mon 10 Feb 2025 14:18:42 +0000 ROA not before: Mon 10 Feb 2025 14:18:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9342 (0x247e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:42 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6F59881D005C3DFB2165D9A70BC58E758D3E3BE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c0:19:07:41:05:c9:e2:74:f9:3e:97:84:c0: 3f:aa:57:f4:d2:00:f6:54:f2:4a:b3:48:5e:a0:b9: d0:c5:06:c0:d4:e5:69:13:45:e7:e2:e7:82:26:f2: 4b:83:3c:8d:cb:e9:78:5b:ad:9e:a4:a6:9b:bf:8b: 31:b5:16:dc:2d:8a:21:c8:db:63:57:83:d2:97:22: c1:f0:ad:15:95:43:05:92:88:89:ba:b2:a8:1d:90: ad:31:5f:d4:3f:f3:8e:34:1b:7e:8f:05:1b:00:5b: 9f:8e:22:a6:ec:66:21:55:4a:49:8d:22:90:ca:63: 9b:69:81:d8:90:26:98:52:50:26:1f:12:d2:5c:bb: a6:47:49:ec:fc:d0:a4:a6:da:c1:49:d1:a7:e5:6e: 0f:6a:9e:95:d3:88:a7:f4:f9:38:51:d5:2c:ea:b2: d0:29:b1:a7:d8:fc:9a:f0:54:20:f6:31:da:a1:2e: 07:f5:f3:e8:80:4a:17:92:f3:04:87:8b:ea:43:16: 72:f1:f2:12:81:36:dd:13:90:0f:d7:b0:e0:c4:de: 9f:e3:be:28:b5:e3:53:3a:e5:c0:c7:b7:72:0b:fd: 9e:00:13:09:73:cb:4b:ed:a6:f2:c3:1c:f2:cc:82: 91:3b:c1:f5:fe:3e:b5:9a:1c:d3:54:88:54:2b:24: 96:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:59:88:1D:00:5C:3D:FB:21:65:D9:A7:0B:C5:8E:75:8D:3E:3B:E3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/b1mIHQBcPfshZdmnC8WOdY0-O-M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.148.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:a2:2c:21:a9:7c:b5:41:80:47:58:13:09:f9:ff:14:27:95: b5:11:bb:16:b3:1e:fe:e9:7f:f7:24:65:27:53:76:8d:d1:f0: 6c:8e:3d:47:96:b4:b6:3b:55:09:9b:85:3b:7b:79:48:95:5d: 08:b7:20:1f:4b:a0:52:11:bd:12:11:42:fb:08:dd:c2:ac:a4: 95:5a:4c:da:f2:72:c3:ac:db:2b:69:62:af:e6:c1:fa:8b:09: 8f:99:3c:6c:09:40:fe:bb:7a:f4:50:eb:4f:0a:23:94:cc:70: 13:fd:56:5d:46:19:61:7f:73:67:74:12:e9:fb:e8:4b:fe:ac: 55:b4:55:a9:5a:46:b5:69:fb:ef:e7:45:9d:d0:24:ed:13:19: 08:44:a3:dd:8e:fa:9f:7e:b1:33:7e:22:6d:94:86:99:c5:d1: 97:c0:f9:3e:79:df:78:db:a0:d4:7e:ba:7e:bf:da:19:f2:96: 9f:8c:a0:9c:76:8b:9c:88:ec:b1:87:62:2e:d6:ca:69:11:26: 16:72:a4:3c:67:50:84:2f:3c:2b:bf:e4:c8:d6:99:bc:10:77: cc:a1:89:63:d2:66:a9:cf:f2:86:1c:ea:b3:43:f5:71:89:e0: 1d:a7:95:42:d9:ca:73:16:8a:61:6d:27:44:70:66:50:d9:06: 15:97:12:81 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZGNTk4ODFEMDA1QzNE RkIyMTY1RDlBNzBCQzU4RTc1OEQzRTNCRTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgwBkHQQXJ4nT5PpeEwD+qV/TSAPZU8kqzSF6gudDFBsDU5WkT Refi54Im8kuDPI3L6XhbrZ6kppu/izG1FtwtiiHI22NXg9KXIsHwrRWVQwWSiIm6 sqgdkK0xX9Q/8440G36PBRsAW5+OIqbsZiFVSkmNIpDKY5tpgdiQJphSUCYfEtJc u6ZHSez80KSm2sFJ0aflbg9qnpXTiKf0+ThR1SzqstApsafY/JrwVCD2MdqhLgf1 8+iASheS8wSHi+pDFnLx8hKBNt0TkA/XsODE3p/jvii141M65cDHt3IL/Z4AEwlz y0vtpvLDHPLMgpE7wfX+PrWaHNNUiFQrJJa/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUb1mIHQBcPfshZdmnC8WOdY0+O+MwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2IxbUlIUUJjUGZzaFpkbW5D OFdPZFkwLU8tTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2pQwDQYJKoZIhvcNAQELBQADggEBAFqiLCGpfLVBgEdYEwn5/xQnlbURuxazHv7p f/ckZSdTdo3R8GyOPUeWtLY7VQmbhTt7eUiVXQi3IB9LoFIRvRIRQvsI3cKspJVa TNrycsOs2ytpYq/mwfqLCY+ZPGwJQP67evRQ608KI5TMcBP9Vl1GGWF/c2d0Eun7 6Ev+rFW0ValaRrVp++/nRZ3QJO0TGQhEo92O+p9+sTN+Im2UhpnF0ZfA+T5533jb oNR+un6/2hnylp+MoJx2i5yI7LGHYi7WymkRJhZypDxnUIQvPCu/5MjWmbwQd8yh iWPSZqnP8oYc6rND9XGJ4B2nlULZynMWimFtJ0RwZlDZBhWXEoE= -----END CERTIFICATE-----Generated at Fri Apr 18 16:48:29 2025 by rpki-client