$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/byFsm8zcxNmWAKJUf5-E39aiaTI.roa File: byFsm8zcxNmWAKJUf5-E39aiaTI.roa (raw, json) Hash identifier: 7KWZRN5aHVCce6HatC415QtISEaGpF+nh6VN5fXN6Y8= Subject key identifier: 6F:21:6C:9B:CC:DC:C4:D9:96:00:A2:54:7F:9F:84:DF:D6:A2:69:32 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24BA Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/byFsm8zcxNmWAKJUf5-E39aiaTI.roa Signing time: Mon 10 Feb 2025 14:18:55 +0000 ROA not before: Mon 10 Feb 2025 14:18:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 49.159.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9402 (0x24ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6F216C9BCCDCC4D99600A2547F9F84DFD6A26932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:37:71:c8:e5:24:d7:b8:16:dd:36:75:7a:e2: 27:20:ca:db:b0:3f:22:cd:41:41:97:3c:34:b5:03: c1:82:0c:93:21:5c:de:8a:1d:5b:0a:8c:db:87:4d: 0b:e5:f5:a3:fc:c2:e5:12:57:6e:96:c3:03:d0:d5: c4:53:a5:ad:01:54:e7:e3:5f:50:67:32:25:df:7a: 01:95:1c:91:e9:46:5f:b0:40:ce:ad:ac:92:da:8b: c3:61:9d:f1:81:d4:29:1c:9f:e3:fc:6c:0a:20:71: 59:74:a6:97:6e:19:d5:53:13:b3:ac:41:a2:43:2a: 74:ee:11:39:21:70:17:e2:64:a5:c8:5e:f1:91:61: a2:a4:3d:3a:28:5b:90:c4:6f:8c:3c:c5:7a:e7:fc: 60:f7:14:6c:38:4f:a0:63:90:bd:fd:94:b2:21:71: ba:78:34:d8:b9:bb:ba:0c:8e:29:bc:65:4d:27:97: c4:9a:07:e0:04:7c:37:18:31:ef:75:ca:bd:57:38: 7e:a0:5d:bb:86:d6:c3:4d:a6:1e:a0:70:22:f5:67: b5:e9:af:dd:99:28:e4:08:99:02:40:bc:c8:ed:fc: 8b:21:a3:57:8b:6d:74:8e:b1:a6:8e:6c:1a:3f:bc: e3:bb:9d:9f:a9:8c:73:d8:07:60:f0:c4:04:84:22: 4d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:21:6C:9B:CC:DC:C4:D9:96:00:A2:54:7F:9F:84:DF:D6:A2:69:32 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/byFsm8zcxNmWAKJUf5-E39aiaTI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.218.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:a9:67:18:e2:57:b4:70:46:79:50:83:d1:27:31:ea:53:e4: 87:b3:cb:d5:51:28:34:bd:15:e1:11:e4:b7:de:d9:c7:8a:c3: f1:40:6e:a9:f1:f3:6c:f8:01:5c:17:fb:d4:b8:e2:8e:53:c7: 4c:e9:5a:f7:d1:f7:11:ef:11:9b:de:91:22:57:2c:fd:bd:17: 9b:c7:9b:dc:5c:b0:8f:6d:29:23:66:28:20:9a:13:04:75:f7: e4:1e:c7:14:af:d2:86:94:1c:b4:06:8e:8d:77:4a:b4:ef:f1: 69:e2:41:95:19:38:98:af:3d:94:65:ff:2a:aa:10:7f:b6:9c: 3c:18:4c:54:46:c3:35:d4:a4:90:30:f6:40:5e:45:09:3e:84: 1b:01:8c:c5:dd:7b:c8:bf:d4:b1:78:8a:90:a4:f8:11:4c:ad: 64:0d:1d:8c:0f:02:13:2f:e9:51:08:d4:61:45:02:94:b1:c8: 5c:54:7b:cd:e6:07:35:da:f2:90:ee:78:b9:a2:ed:98:2a:cc: 40:d3:42:8b:cf:46:08:6f:57:61:f8:ee:9d:19:03:64:a1:5f: 9a:51:4a:d5:35:1a:92:69:0a:8d:f6:7b:f4:d7:25:c7:96:6c: 91:61:0b:e6:1d:7d:ee:a3:6b:fa:a6:e8:a7:12:e6:6b:bf:b1: dd:9c:24:f9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJLowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZGMjE2QzlCQ0NEQ0M0 RDk5NjAwQTI1NDdGOUY4NERGRDZBMjY5MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhN3HI5STXuBbdNnV64icgytuwPyLNQUGXPDS1A8GCDJMhXN6K HVsKjNuHTQvl9aP8wuUSV26WwwPQ1cRTpa0BVOfjX1BnMiXfegGVHJHpRl+wQM6t rJLai8NhnfGB1Ckcn+P8bAogcVl0ppduGdVTE7OsQaJDKnTuETkhcBfiZKXIXvGR YaKkPTooW5DEb4w8xXrn/GD3FGw4T6BjkL39lLIhcbp4NNi5u7oMjim8ZU0nl8Sa B+AEfDcYMe91yr1XOH6gXbuG1sNNph6gcCL1Z7Xpr92ZKOQImQJAvMjt/Isho1eL bXSOsaaObBo/vOO7nZ+pjHPYB2DwxASEIk1HAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbyFsm8zcxNmWAKJUf5+E39aiaTIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2J5RnNtOHpjeE5tV0FLSlVm NS1FMzlhaWFUSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEx n9owDQYJKoZIhvcNAQELBQADggEBAIypZxjiV7RwRnlQg9EnMepT5Iezy9VRKDS9 FeER5Lfe2ceKw/FAbqnx82z4AVwX+9S44o5Tx0zpWvfR9xHvEZvekSJXLP29F5vH m9xcsI9tKSNmKCCaEwR19+QexxSv0oaUHLQGjo13SrTv8WniQZUZOJivPZRl/yqq EH+2nDwYTFRGwzXUpJAw9kBeRQk+hBsBjMXde8i/1LF4ipCk+BFMrWQNHYwPAhMv 6VEI1GFFApSxyFxUe83mBzXa8pDueLmi7ZgqzEDTQovPRghvV2H47p0ZA2ShX5pR StU1GpJpCo32e/TXJceWbJFhC+Ydfe6ja/qm6KcS5mu/sd2cJPk= -----END CERTIFICATE-----Generated at Fri Apr 18 16:56:39 2025 by rpki-client