$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cO1xOxNMAg1MN4CGNG-5su9nZ-A.roa File: cO1xOxNMAg1MN4CGNG-5su9nZ-A.roa (raw, json) Hash identifier: +9lFlmCfOGzaA+J6/unIlhOH2tdnQFcZ9ri3+sov3rM= Subject key identifier: 70:ED:71:3B:13:4C:02:0D:4C:37:80:86:34:6F:B9:B2:EF:67:67:E0 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2453 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cO1xOxNMAg1MN4CGNG-5su9nZ-A.roa Signing time: Mon 10 Feb 2025 14:18:31 +0000 ROA not before: Mon 10 Feb 2025 14:18:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9299 (0x2453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:31 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=70ED713B134C020D4C378086346FB9B2EF6767E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:62:e2:7f:6c:ec:74:1d:34:ef:5d:17:eb:8e: 30:a3:cd:04:e0:bd:d2:2b:4c:59:32:32:15:8b:e2: 87:ea:f1:45:a0:76:b4:4d:5e:0c:82:fe:0c:9c:fd: a8:60:4a:e9:f6:56:fa:4d:6a:dd:8a:62:07:1b:10: 4f:74:d8:0f:ab:b6:14:63:9e:f7:e1:ac:e9:c8:bc: be:3a:16:d5:ce:e2:ab:ee:51:61:82:57:c3:4f:4b: 8a:70:ff:27:bb:95:e4:21:a9:19:fa:e9:5a:ea:f1: 61:e6:b5:57:93:f0:83:13:10:55:e4:2a:c7:63:a4: a6:59:f4:80:86:32:1d:9a:69:5c:b7:3b:bd:a5:7d: b8:21:ba:6d:85:76:ec:39:07:18:e8:fa:0c:68:bd: 56:5c:c6:57:58:e1:c5:e4:c6:46:f1:a8:22:01:f2: ec:51:0b:9c:e8:df:ba:2a:ef:85:61:81:8a:a2:aa: 6d:bd:30:3f:df:32:4d:b6:6d:af:e7:84:4b:63:46: 18:55:86:62:57:19:6f:f4:dc:f2:1a:d4:ce:cc:dd: 36:a6:56:95:74:46:5f:08:12:71:46:57:99:cd:c4: 5f:e7:4a:36:42:67:c3:74:5d:07:4e:b0:88:38:31: 69:91:a1:32:94:fa:4d:37:e9:5c:96:1b:c6:80:36: b6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:ED:71:3B:13:4C:02:0D:4C:37:80:86:34:6F:B9:B2:EF:67:67:E0 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cO1xOxNMAg1MN4CGNG-5su9nZ-A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.138.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:a7:8d:30:59:d1:c0:20:44:64:f3:03:f2:5e:28:54:d6:7c: 34:5a:00:72:16:5f:4e:98:e0:ef:5e:73:61:10:80:3d:2b:be: 81:bc:4f:cf:99:02:6b:7b:25:5d:3d:30:4e:9f:14:f2:bd:22: a5:bb:6e:73:2b:88:9f:e7:0d:64:e2:69:05:0e:63:1c:16:cd: 6a:83:a9:6d:50:25:25:6a:b9:21:d1:63:b6:ff:f9:ec:8e:58: 4f:aa:8f:26:1e:de:3d:37:4a:4b:10:bf:ed:2a:4f:0b:11:27: e6:52:10:63:cc:43:06:94:58:ff:31:55:2d:d5:30:ce:4d:65: 0b:29:db:8c:df:46:3b:11:14:f5:5d:e4:1e:25:bd:51:2c:76: de:11:3f:0b:16:8b:71:c6:ec:dc:b9:8f:6d:a8:24:1f:bb:7a: b6:fd:a9:ec:61:f1:9a:13:66:ba:8f:8e:69:be:d0:49:1b:c6: 00:e8:2d:27:1a:3f:f5:38:7d:7c:05:11:18:73:01:46:76:02: fc:ab:b7:d4:bf:45:47:92:62:65:4d:52:05:f4:2a:af:aa:27: 9d:8a:3f:b0:d4:21:7d:0a:31:9e:75:1c:7f:38:94:77:83:fc: b0:2b:27:b0:59:1c:30:f1:eb:55:ce:99:f6:b4:fb:bb:1e:c4: af:fb:d4:6a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJFMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcwRUQ3MTNCMTM0QzAy MEQ0QzM3ODA4NjM0NkZCOUIyRUY2NzY3RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2YuJ/bOx0HTTvXRfrjjCjzQTgvdIrTFkyMhWL4ofq8UWgdrRN XgyC/gyc/ahgSun2VvpNat2KYgcbEE902A+rthRjnvfhrOnIvL46FtXO4qvuUWGC V8NPS4pw/ye7leQhqRn66Vrq8WHmtVeT8IMTEFXkKsdjpKZZ9ICGMh2aaVy3O72l fbghum2Fduw5Bxjo+gxovVZcxldY4cXkxkbxqCIB8uxRC5zo37oq74VhgYqiqm29 MD/fMk22ba/nhEtjRhhVhmJXGW/03PIa1M7M3TamVpV0Rl8IEnFGV5nNxF/nSjZC Z8N0XQdOsIg4MWmRoTKU+k036VyWG8aANrYRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUcO1xOxNMAg1MN4CGNG+5su9nZ+AwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2NPMXhPeE5NQWcxTU40Q0dO Ry01c3U5blotQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 2oowDQYJKoZIhvcNAQELBQADggEBAI+njTBZ0cAgRGTzA/JeKFTWfDRaAHIWX06Y 4O9ec2EQgD0rvoG8T8+ZAmt7JV09ME6fFPK9IqW7bnMriJ/nDWTiaQUOYxwWzWqD qW1QJSVquSHRY7b/+eyOWE+qjyYe3j03SksQv+0qTwsRJ+ZSEGPMQwaUWP8xVS3V MM5NZQsp24zfRjsRFPVd5B4lvVEsdt4RPwsWi3HG7Ny5j22oJB+7erb9qexh8ZoT ZrqPjmm+0EkbxgDoLScaP/U4fXwFERhzAUZ2Avyrt9S/RUeSYmVNUgX0Kq+qJ52K P7DUIX0KMZ51HH84lHeD/LArJ7BZHDDx61XOmfa0+7sexK/71Go= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:15 2025 by rpki-client