$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/e1JLByKb0osYt07Yik0x4yY_8MY.roa File: e1JLByKb0osYt07Yik0x4yY_8MY.roa (raw, json) Hash identifier: nkyHf/+OruHPX4p27+765UG/4xFZ/V5CrR8UQLWYl/k= Subject key identifier: 7B:52:4B:07:22:9B:D2:8B:18:B7:4E:D8:8A:4D:31:E3:26:3F:F0:C6 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2497 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/e1JLByKb0osYt07Yik0x4yY_8MY.roa Signing time: Mon 10 Feb 2025 14:18:48 +0000 ROA not before: Mon 10 Feb 2025 14:18:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9367 (0x2497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7B524B07229BD28B18B74ED88A4D31E3263FF0C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:97:83:22:c3:95:2a:6f:21:88:df:7c:d4:c5: 45:8e:0a:19:b9:42:80:5f:99:ec:82:98:bc:7b:1c: 87:90:0d:f5:58:71:69:48:50:85:ac:a1:32:0e:e4: ce:dc:17:75:11:a8:11:fd:5c:f9:a0:e4:84:37:91: 2f:9e:2b:3d:00:14:43:2f:b2:43:ab:cc:03:ae:21: eb:82:2a:d3:a5:ad:c2:c5:b3:f3:54:8f:78:8e:01: 9c:b5:b0:6d:16:a8:21:f5:68:be:23:31:a6:c3:3f: d7:09:b5:28:9a:b2:d0:79:41:9f:a7:78:61:09:13: f9:56:ab:98:d1:ee:1a:93:fe:58:ac:b6:f7:0b:0a: aa:06:36:26:b7:79:aa:4d:06:ce:30:05:9b:bb:d3: 47:ef:83:a5:87:b3:d3:2c:37:2d:80:b3:8a:6f:74: 6d:4b:a0:38:57:15:cf:1d:9e:d3:25:1b:8e:c6:21: 96:ec:02:23:16:ca:24:12:e0:87:2a:06:47:0f:94: 9d:ba:60:73:88:8b:78:3f:52:d2:04:27:0a:59:cc: 6e:23:60:99:0a:d5:18:58:e3:89:a8:0e:45:66:3d: 0a:0b:48:27:0d:9f:01:9f:ed:95:a9:0c:5f:88:36: 27:86:55:92:06:34:ef:c4:f6:97:d3:af:07:34:86: 41:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:52:4B:07:22:9B:D2:8B:18:B7:4E:D8:8A:4D:31:E3:26:3F:F0:C6 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/e1JLByKb0osYt07Yik0x4yY_8MY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.144.0/20 Signature Algorithm: sha256WithRSAEncryption 08:9f:0b:a7:12:34:72:c0:44:57:aa:be:95:c8:50:9f:10:f0: 73:da:e0:8b:5b:82:9a:ce:82:31:d0:37:40:21:24:47:cb:da: c6:0b:39:d9:b4:54:44:ba:3f:18:55:fe:27:84:57:35:32:c9: bb:09:95:ec:c1:7b:3b:87:ec:c7:de:8d:39:eb:89:bd:16:7d: 88:39:cb:46:ec:ad:c1:51:c1:79:af:c6:e4:e1:8f:5a:46:d6: ae:95:3d:a3:1d:a2:12:47:a8:41:3c:e4:6a:1a:a0:73:77:06: ec:e7:40:d5:7f:e7:70:8a:fa:bd:62:f6:d5:c3:17:6c:24:45: c1:55:9d:ec:dc:5e:df:d0:9e:0b:31:25:c1:29:b5:0c:7e:c9: 98:8c:d7:99:c9:eb:d5:2a:c1:11:df:29:63:d6:97:a5:ab:59: 11:dc:5c:9c:d3:87:1f:1f:d1:3f:a2:f7:0b:4c:32:8e:22:7a: 58:1b:51:61:a0:bf:e0:40:00:e0:6f:d5:90:29:2d:84:9a:61: fd:67:20:5b:31:5e:c5:4d:c6:39:54:a6:c5:41:93:8e:e9:78: 6c:eb:1a:97:a4:da:c1:e2:61:2b:a7:a2:85:aa:06:7f:97:38: 83:45:18:80:73:a9:8e:8c:f6:fa:1c:13:fe:19:86:85:8c:af: 9f:bc:f1:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJJcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdCNTI0QjA3MjI5QkQy OEIxOEI3NEVEODhBNEQzMUUzMjYzRkYwQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTl4Miw5UqbyGI33zUxUWOChm5QoBfmeyCmLx7HIeQDfVYcWlI UIWsoTIO5M7cF3URqBH9XPmg5IQ3kS+eKz0AFEMvskOrzAOuIeuCKtOlrcLFs/NU j3iOAZy1sG0WqCH1aL4jMabDP9cJtSiastB5QZ+neGEJE/lWq5jR7hqT/listvcL CqoGNia3eapNBs4wBZu700fvg6WHs9MsNy2As4pvdG1LoDhXFc8dntMlG47GIZbs AiMWyiQS4IcqBkcPlJ26YHOIi3g/UtIEJwpZzG4jYJkK1RhY44moDkVmPQoLSCcN nwGf7ZWpDF+INieGVZIGNO/E9pfTrwc0hkFpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUe1JLByKb0osYt07Yik0x4yY/8MYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2UxSkxCeUtiMG9zWXQwN1lp azB4NHlZXzhNWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 2pAwDQYJKoZIhvcNAQELBQADggEBAAifC6cSNHLARFeqvpXIUJ8Q8HPa4ItbgprO gjHQN0AhJEfL2sYLOdm0VES6PxhV/ieEVzUyybsJlezBezuH7MfejTnrib0WfYg5 y0bsrcFRwXmvxuThj1pG1q6VPaMdohJHqEE85GoaoHN3BuznQNV/53CK+r1i9tXD F2wkRcFVnezcXt/QngsxJcEptQx+yZiM15nJ69UqwRHfKWPWl6WrWRHcXJzThx8f 0T+i9wtMMo4ielgbUWGgv+BAAOBv1ZApLYSaYf1nIFsxXsVNxjlUpsVBk47peGzr Gpek2sHiYSunooWqBn+XOINFGIBzqY6M9vocE/4ZhoWMr5+88Ug= -----END CERTIFICATE-----Generated at Thu Apr 17 21:03:36 2025 by rpki-client