$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bmrDdU7A2HzYS2sgLv4TLsKNkSc.roa File: bmrDdU7A2HzYS2sgLv4TLsKNkSc.roa (raw, json) Hash identifier: YfcPn2eFJo0NCumUQxkyz5FPYvk8HnbX8eUqUjsIJsg= Subject key identifier: 6E:6A:C3:75:4E:C0:D8:7C:D8:4B:6B:20:2E:FE:13:2E:C2:8D:91:27 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23F2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bmrDdU7A2HzYS2sgLv4TLsKNkSc.roa Signing time: Mon 10 Feb 2025 14:18:07 +0000 ROA not before: Mon 10 Feb 2025 14:18:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9202 (0x23f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6E6AC3754EC0D87CD84B6B202EFE132EC28D9127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:23:ba:e1:9b:a3:d6:e7:86:2f:ac:a5:9d:65: bb:81:77:56:d7:fe:e8:a5:24:2b:7b:f4:30:a7:16: 60:30:c2:ff:8b:28:d0:22:fd:b8:90:02:2b:eb:bc: 17:ba:b0:47:c4:f2:30:6e:7f:62:37:8b:ed:29:91: 46:44:f1:2c:4f:f6:e0:ea:b7:11:8e:f6:99:ce:2d: 7e:82:59:80:4a:a1:1a:12:0b:80:90:5c:3b:f5:24: 25:1d:0a:b3:d2:dd:db:cd:1b:92:b6:93:ac:8d:7b: d8:ab:bc:c2:06:c3:eb:0f:93:b9:f4:26:0c:5d:00: 8e:4f:9e:71:57:ba:05:bb:c6:0e:c6:86:72:20:f9: 60:2b:f7:f3:29:c0:3c:90:3b:7f:9a:80:4a:d9:2c: 6e:0d:3a:89:3a:f5:73:0f:7c:ed:70:42:0b:2e:36: aa:a5:6b:47:eb:40:f6:ef:45:42:a1:23:b3:a8:73: b3:7d:b3:cc:16:e8:61:cd:5e:48:d6:e2:33:58:66: 17:08:b3:a5:0d:a6:e6:4f:1b:d6:c7:3f:dc:f9:eb: 46:f5:5f:60:30:33:c2:d5:c6:9a:b0:25:a0:2c:f5: cb:d7:8f:89:22:63:7a:cf:08:92:05:f1:fa:01:d2: 3f:96:06:f1:29:5c:81:71:85:e1:16:99:61:b4:af: 42:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6A:C3:75:4E:C0:D8:7C:D8:4B:6B:20:2E:FE:13:2E:C2:8D:91:27 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bmrDdU7A2HzYS2sgLv4TLsKNkSc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.16.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:fa:66:f7:7d:17:99:bc:4b:3c:6b:4f:5e:b9:f6:ec:e0:cc: 82:9d:b5:be:08:51:41:78:e8:d4:74:e5:cd:33:ef:b3:fe:fa: 98:a5:03:a8:ae:8a:76:b4:1c:48:f1:90:e6:71:a5:42:2f:b0: 1c:62:f8:91:aa:95:21:df:52:04:ae:1d:99:7b:82:51:5d:8a: 4e:74:46:45:c0:9e:4f:4e:8e:2f:17:7f:d5:1a:dc:80:77:b1: 4e:aa:94:d4:53:09:d7:6b:99:f7:dd:43:12:64:d1:ba:be:7f: ba:f4:77:2f:cc:5a:fd:b9:c2:30:c4:71:0a:15:c9:2b:9d:26: 3d:3d:51:ce:03:d6:4e:df:33:09:d3:76:cb:d6:6e:80:71:9f: d2:e5:ca:ec:8d:49:06:20:42:2d:8e:93:3c:26:4e:75:4f:76: e9:53:94:54:42:90:3f:24:5e:54:fd:64:ad:4d:d1:cb:15:9d: 33:04:d4:db:b0:f9:9d:a6:e0:82:ae:3f:0f:ec:a6:ef:b5:b5: 49:a4:c4:65:e8:0c:72:59:e9:f5:3a:db:44:32:bc:1d:02:12: ca:ea:4c:60:48:d1:35:9f:1d:1f:0a:0e:ae:78:fb:2c:b0:90: 1b:6f:55:51:9d:10:56:19:24:93:35:55:ae:fb:16:47:39:52: 36:94:fd:84 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI/IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFNkFDMzc1NEVDMEQ4 N0NEODRCNkIyMDJFRkUxMzJFQzI4RDkxMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5I7rhm6PW54YvrKWdZbuBd1bX/uilJCt79DCnFmAwwv+LKNAi /biQAivrvBe6sEfE8jBuf2I3i+0pkUZE8SxP9uDqtxGO9pnOLX6CWYBKoRoSC4CQ XDv1JCUdCrPS3dvNG5K2k6yNe9irvMIGw+sPk7n0JgxdAI5PnnFXugW7xg7GhnIg +WAr9/MpwDyQO3+agErZLG4NOok69XMPfO1wQgsuNqqla0frQPbvRUKhI7Ooc7N9 s8wW6GHNXkjW4jNYZhcIs6UNpuZPG9bHP9z560b1X2AwM8LVxpqwJaAs9cvXj4ki Y3rPCJIF8foB0j+WBvEpXIFxheEWmWG0r0LfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbmrDdU7A2HzYS2sgLv4TLsKNkScwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2JtckRkVTdBMkh6WVMyc2dM djRUTHNLTmtTYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nhAwDQYJKoZIhvcNAQELBQADggEBAJv6Zvd9F5m8SzxrT1659uzgzIKdtb4IUUF4 6NR05c0z77P++pilA6iuina0HEjxkOZxpUIvsBxi+JGqlSHfUgSuHZl7glFdik50 RkXAnk9Oji8Xf9Ua3IB3sU6qlNRTCddrmffdQxJk0bq+f7r0dy/MWv25wjDEcQoV ySudJj09Uc4D1k7fMwnTdsvWboBxn9LlyuyNSQYgQi2OkzwmTnVPdulTlFRCkD8k XlT9ZK1N0csVnTME1Nuw+Z2m4IKuPw/spu+1tUmkxGXoDHJZ6fU620QyvB0CEsrq TGBI0TWfHR8KDq54+yywkBtvVVGdEFYZJJM1Va77Fkc5UjaU/YQ= -----END CERTIFICATE-----Generated at Fri Apr 18 16:48:14 2025 by rpki-client