$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dZfWkrrTE6Sm6HAjHOdhtGEHMK8.roa File: dZfWkrrTE6Sm6HAjHOdhtGEHMK8.roa (raw, json) Hash identifier: qIObrPIPpixBUYESPC+kdiG9S1BuT1o5nKTvrMEDj+M= Subject key identifier: 75:97:D6:92:BA:D3:13:A4:A6:E8:70:23:1C:E7:61:B4:61:07:30:AF Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23B3 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dZfWkrrTE6Sm6HAjHOdhtGEHMK8.roa Signing time: Mon 10 Feb 2025 14:17:50 +0000 ROA not before: Mon 10 Feb 2025 14:17:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9139 (0x23b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7597D692BAD313A4A6E870231CE761B4610730AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:25:b5:f0:b0:a9:5a:ea:ca:28:40:75:73:d2: 73:9b:dd:2f:86:9a:26:6b:b9:45:a1:e6:24:ec:d9: 39:09:76:0c:dd:66:a4:25:13:d6:9e:16:d2:df:e9: 7e:27:b6:bc:0e:99:22:de:f6:31:e1:77:f3:44:2e: ed:a7:71:de:a9:ff:6a:9c:46:a8:77:a2:b0:6b:06: 57:98:53:4d:d8:8c:f3:74:53:55:ec:54:76:e8:1b: 2b:71:e6:bc:2e:2a:dd:ea:30:ee:5c:6c:68:e8:92: 30:8e:e4:94:b6:53:2d:3d:3c:ee:5d:68:b0:5a:ee: d7:ad:a5:94:4d:8a:de:c9:45:93:8e:57:a3:b4:02: 69:dc:a9:72:aa:eb:5f:6e:b3:70:06:32:a4:fa:59: e5:86:eb:cd:41:8c:84:76:7f:6d:c7:91:aa:02:fa: f1:ad:d4:58:e7:25:cd:c7:5e:98:ee:b9:87:76:9e: fe:35:19:54:07:0a:b5:f5:89:48:b2:dc:bd:1c:f4: 31:38:78:b8:f1:6b:d5:bd:34:70:60:e7:e9:9f:7b: 1b:2b:b6:cc:0d:cb:72:53:dd:13:a6:5f:c9:b1:ea: d6:f1:9b:82:d5:12:63:2e:05:5a:cb:d7:ea:25:17: 94:f3:18:c9:1a:da:ac:bc:69:cb:08:65:94:5a:b8: 83:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:97:D6:92:BA:D3:13:A4:A6:E8:70:23:1C:E7:61:B4:61:07:30:AF X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dZfWkrrTE6Sm6HAjHOdhtGEHMK8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.128.0/18 Signature Algorithm: sha256WithRSAEncryption 58:2d:18:06:7f:db:88:8b:85:60:a6:ba:82:15:43:90:cc:b5: 1a:2b:61:2b:62:d7:a0:57:81:3c:8f:ca:66:e9:f8:dd:66:ca: f2:be:37:71:0d:c5:6c:4e:85:91:73:1a:8a:ee:12:35:5c:91: 76:75:a8:73:0a:b1:98:1f:78:d2:d7:be:ca:1d:ed:7a:db:f6: 54:c6:78:e7:bf:fd:9c:2a:e4:d2:f1:01:6f:7a:fe:d9:e1:26: f2:01:ed:9e:2d:6e:0c:c3:51:e8:47:4a:a9:56:e9:04:34:76: 1f:86:ef:20:7a:9c:15:c3:f4:f8:75:a7:f3:93:fa:0c:76:9e: e7:88:27:2c:fb:ab:4c:e3:4c:a0:0a:f1:07:29:91:94:50:4a: ef:1c:b2:f8:44:82:c2:60:63:52:8a:0d:b0:67:38:8e:f0:0d: 67:61:d1:ab:3b:b0:a3:d4:04:31:4b:4d:15:b6:42:35:de:fd: 4e:9a:02:1c:64:8a:31:c4:6e:95:05:48:98:00:36:98:9c:e7: 7e:9a:96:c2:3c:1c:b8:0b:69:91:fc:a2:72:8c:7f:69:24:c3: a4:85:99:05:9f:84:39:ed:b1:86:08:78:9a:55:ce:01:67:02: d7:65:f1:33:61:1b:36:ca:12:73:40:d8:8a:e5:4d:0f:98:36: 4d:d4:ec:1d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI7MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc1OTdENjkyQkFEMzEz QTRBNkU4NzAyMzFDRTc2MUI0NjEwNzMwQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9JbXwsKla6sooQHVz0nOb3S+GmiZruUWh5iTs2TkJdgzdZqQl E9aeFtLf6X4ntrwOmSLe9jHhd/NELu2ncd6p/2qcRqh3orBrBleYU03YjPN0U1Xs VHboGytx5rwuKt3qMO5cbGjokjCO5JS2Uy09PO5daLBa7tetpZRNit7JRZOOV6O0 AmncqXKq619us3AGMqT6WeWG681BjIR2f23HkaoC+vGt1FjnJc3HXpjuuYd2nv41 GVQHCrX1iUiy3L0c9DE4eLjxa9W9NHBg5+mfexsrtswNy3JT3ROmX8mx6tbxm4LV EmMuBVrL1+olF5TzGMka2qy8acsIZZRauIPxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdZfWkrrTE6Sm6HAjHOdhtGEHMK8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2RaZldrcnJURTZTbTZIQWpI T2RodEdFSE1LOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAa0 2oAwDQYJKoZIhvcNAQELBQADggEBAFgtGAZ/24iLhWCmuoIVQ5DMtRorYSti16BX gTyPymbp+N1myvK+N3ENxWxOhZFzGoruEjVckXZ1qHMKsZgfeNLXvsod7Xrb9lTG eOe//Zwq5NLxAW96/tnhJvIB7Z4tbgzDUehHSqlW6QQ0dh+G7yB6nBXD9Ph1p/OT +gx2nueIJyz7q0zjTKAK8QcpkZRQSu8csvhEgsJgY1KKDbBnOI7wDWdh0as7sKPU BDFLTRW2QjXe/U6aAhxkijHEbpUFSJgANpic536alsI8HLgLaZH8onKMf2kkw6SF mQWfhDntsYYIeJpVzgFnAtdl8TNhGzbKEnNA2IrlTQ+YNk3U7B0= -----END CERTIFICATE-----Generated at Thu Apr 17 21:03:54 2025 by rpki-client