$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/brdz3_1GDRRWTePSznS9qJ6KsHk.roa File: brdz3_1GDRRWTePSznS9qJ6KsHk.roa (raw, json) Hash identifier: BnKGw1oCr/nwSMYNyBbzOt7TOHWtlkuJyUWNCmvgh6k= Subject key identifier: 6E:B7:73:DF:FD:46:0D:14:56:4D:E3:D2:CE:74:BD:A8:9E:8A:B0:79 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2465 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/brdz3_1GDRRWTePSznS9qJ6KsHk.roa Signing time: Mon 10 Feb 2025 14:18:35 +0000 ROA not before: Mon 10 Feb 2025 14:18:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 45.64.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9317 (0x2465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:35 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6EB773DFFD460D14564DE3D2CE74BDA89E8AB079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:72:8a:22:b4:d7:ad:bf:44:3d:e7:af:ba:6d: 38:53:b3:f8:5a:44:c7:b8:2b:0c:4e:1a:35:2f:53: 10:fe:a7:7d:c8:9e:7a:61:18:f1:f9:58:45:be:9d: da:d4:ca:85:1e:74:18:6d:fa:73:36:85:81:5c:72: 63:f6:c6:5a:61:98:1d:70:cb:65:9e:8f:18:9f:c9: 5b:7e:03:c8:9f:29:69:5e:1f:17:d6:d1:73:a5:3d: 8a:a7:97:31:4b:ea:42:ce:3a:d7:d0:c0:24:9c:2e: b5:f9:c4:24:38:38:38:68:a2:8c:38:ca:fe:b8:1b: 5f:a1:3f:4e:f5:71:db:bf:84:c1:83:cc:28:29:44: c7:df:50:19:69:a6:8b:7e:80:00:2b:ee:5b:df:03: e4:59:44:9a:d6:d7:37:91:db:59:42:f4:bc:d2:a2: bd:66:36:2a:31:05:af:f2:a1:29:44:c4:22:2e:99: ed:fd:b9:0d:bf:46:0b:16:8e:14:55:e7:ec:ff:0e: 7e:94:bc:61:3f:06:46:b5:f2:33:c6:27:78:1e:78: eb:5c:dd:b6:28:64:d5:33:8c:00:2e:25:b3:8c:18: 80:ad:9f:e4:68:28:05:26:2d:fa:d8:51:e8:c3:8a: bc:55:be:8d:bd:30:8a:bc:42:16:4d:f4:b2:bf:97: 4b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B7:73:DF:FD:46:0D:14:56:4D:E3:D2:CE:74:BD:A8:9E:8A:B0:79 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/brdz3_1GDRRWTePSznS9qJ6KsHk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.32.0/22 Signature Algorithm: sha256WithRSAEncryption 99:f7:55:9a:4f:1d:aa:5a:1e:7c:eb:ae:cc:3e:12:4b:da:1c: 67:16:5c:20:43:74:5d:24:6b:b3:c0:3b:2d:40:e7:39:e3:0e: 9f:e3:2f:49:24:d3:03:96:94:62:db:9c:d3:d0:a3:6e:77:c1: 6d:a3:6b:47:94:ca:c9:4e:7d:71:6d:a5:41:9e:b3:ee:c8:9e: 52:03:ab:80:2c:d8:95:81:0e:b4:3b:52:57:cd:ab:de:45:67: f8:ee:1e:29:62:3c:37:86:38:f2:8e:56:27:0b:11:02:8b:95: 58:64:d5:c6:14:2d:f5:b7:a6:62:06:29:19:e5:a9:31:22:21: 48:b0:fb:35:a3:cf:36:e5:6c:e2:05:17:6d:f7:23:f2:57:52: 47:ff:22:d0:34:bd:a8:cf:f9:2a:44:eb:f1:df:00:c0:48:ef: c7:9a:e7:f2:f5:94:c3:e9:9d:d5:16:45:77:89:c6:1a:da:b5: 07:66:93:2f:f8:f5:23:04:01:8c:8b:ef:62:2f:4d:92:cf:cd: a0:62:f1:6b:a4:0c:b6:3e:02:3a:8a:9d:81:f2:9f:d0:6b:cd: 4c:1e:4d:db:92:52:df:9d:08:96:60:ca:04:aa:b0:36:e1:cf: 1d:d8:87:97:87:77:01:b0:dd:54:a8:09:7a:0b:7f:4e:c8:c3: ca:93:1f:37 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJGUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFQjc3M0RGRkQ0NjBE MTQ1NjRERTNEMkNFNzRCREE4OUU4QUIwNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/cooitNetv0Q956+6bThTs/haRMe4KwxOGjUvUxD+p33Innph GPH5WEW+ndrUyoUedBht+nM2hYFccmP2xlphmB1wy2WejxifyVt+A8ifKWleHxfW 0XOlPYqnlzFL6kLOOtfQwCScLrX5xCQ4ODhooow4yv64G1+hP071cdu/hMGDzCgp RMffUBlppot+gAAr7lvfA+RZRJrW1zeR21lC9LzSor1mNioxBa/yoSlExCIume39 uQ2/RgsWjhRV5+z/Dn6UvGE/Bka18jPGJ3geeOtc3bYoZNUzjAAuJbOMGICtn+Ro KAUmLfrYUejDirxVvo29MIq8QhZN9LK/l0vrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbrdz3/1GDRRWTePSznS9qJ6KsHkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2JyZHozXzFHRFJSV1RlUFN6 blM5cUo2S3NIay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIt QCAwDQYJKoZIhvcNAQELBQADggEBAJn3VZpPHapaHnzrrsw+EkvaHGcWXCBDdF0k a7PAOy1A5znjDp/jL0kk0wOWlGLbnNPQo253wW2ja0eUyslOfXFtpUGes+7InlID q4As2JWBDrQ7UlfNq95FZ/juHiliPDeGOPKOVicLEQKLlVhk1cYULfW3pmIGKRnl qTEiIUiw+zWjzzblbOIFF233I/JXUkf/ItA0vajP+SpE6/HfAMBI78ea5/L1lMPp ndUWRXeJxhratQdmky/49SMEAYyL72IvTZLPzaBi8WukDLY+AjqKnYHyn9BrzUwe TduSUt+dCJZgygSqsDbhzx3Yh5eHdwGw3VSoCXoLf07Iw8qTHzc= -----END CERTIFICATE-----Generated at Fri Apr 18 16:48:04 2025 by rpki-client