$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g1SYPXbCkNlg-17FIbeFWXBjQYA.roa File: g1SYPXbCkNlg-17FIbeFWXBjQYA.roa (raw, json) Hash identifier: LeOm06qSInu3mlAau/ifaoTKkONonWS1BCMjaqc1Ahk= Subject key identifier: 83:54:98:3D:76:C2:90:D9:60:FB:5E:C5:21:B7:85:59:70:63:41:80 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23CB Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g1SYPXbCkNlg-17FIbeFWXBjQYA.roa Signing time: Mon 10 Feb 2025 14:17:56 +0000 ROA not before: Mon 10 Feb 2025 14:17:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 180.218.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9163 (0x23cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8354983D76C290D960FB5EC521B7855970634180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:48:60:a0:09:05:91:b6:1f:1b:d5:39:c6:7a: 8a:8f:8e:e3:31:9d:8e:63:31:f0:36:2f:ff:66:f5: 76:50:16:6b:67:93:1f:27:62:e9:84:11:98:5a:da: 4e:d6:d1:70:69:47:4c:49:b5:f5:71:c1:16:a7:ea: 9d:51:f7:18:f9:2f:66:06:83:ea:4b:9a:b4:db:d2: 60:14:2e:5b:92:9f:cc:b6:c0:24:c4:21:9c:ed:02: 7c:cb:33:25:f3:78:63:a2:01:1b:cb:97:dd:90:b1: 53:76:42:29:90:aa:2f:01:5b:4b:fb:4a:4c:68:69: 4e:e7:7c:f9:c6:6c:52:22:81:c3:6e:78:6e:01:61: 4b:33:d2:1d:11:65:2e:0f:91:26:df:6a:db:bb:84: fb:8e:a7:db:3b:df:22:a7:6b:d6:57:a3:3c:33:1c: 03:b9:c2:ce:0a:c1:42:90:00:1f:6a:14:85:53:2f: 69:c1:39:ae:83:0e:c3:b9:8b:51:38:95:89:20:02: 08:34:60:45:1b:4a:d0:33:86:52:6d:a8:e7:49:e9: 49:45:0a:60:e6:de:dc:44:39:b6:9b:68:86:26:c6: 15:18:ab:4a:b4:70:34:ac:dc:1b:c0:ca:2d:19:ae: 97:61:91:54:22:b6:d3:59:b2:47:ac:29:32:e7:6c: 7e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:54:98:3D:76:C2:90:D9:60:FB:5E:C5:21:B7:85:59:70:63:41:80 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g1SYPXbCkNlg-17FIbeFWXBjQYA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.120.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:1e:42:3b:8c:5b:de:c7:c1:8d:95:1e:92:60:b1:2a:4d:8f: 82:b4:1e:a9:72:1d:97:75:f6:0d:a8:d2:13:43:d7:65:c1:04: e8:73:87:42:df:f6:76:bf:e7:7a:b8:42:ef:00:b8:71:87:67: f0:41:db:e1:b3:97:45:1c:fe:f5:9f:b5:1a:0b:ca:bd:b9:ff: 57:1d:2f:bd:c2:8f:ac:40:59:a9:61:98:e0:7f:dd:5e:ec:b2: e5:18:0e:8b:3d:54:fd:61:cf:ee:00:b0:cf:9a:26:11:22:2d: 6a:fb:4e:c9:2f:1c:96:b6:2b:95:18:e4:91:59:68:76:ee:4d: 81:4a:2e:f0:ea:7b:b5:f2:16:ea:eb:c6:7f:a9:3b:af:97:d6: f1:21:58:6a:42:c9:45:79:0a:81:96:8d:4e:33:38:cc:3e:df: 19:b9:58:27:dc:ae:dd:00:f5:ad:58:d5:e5:a3:cc:b0:58:48: 4b:3a:59:61:aa:a6:b0:7a:46:a7:e5:b1:b6:76:78:4b:5d:e1: be:98:d9:07:8e:c9:8d:03:7d:0e:e8:6c:08:2d:b1:62:97:34: 11:ab:a9:0d:af:81:34:99:10:ee:a0:65:c3:da:37:0e:ff:54: 77:f9:af:d4:9c:69:98:54:80:8d:f8:5f:d0:d9:f8:c5:ae:3b: 4d:63:72:07 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI8swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgzNTQ5ODNENzZDMjkw RDk2MEZCNUVDNTIxQjc4NTU5NzA2MzQxODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSSGCgCQWRth8b1TnGeoqPjuMxnY5jMfA2L/9m9XZQFmtnkx8n YumEEZha2k7W0XBpR0xJtfVxwRan6p1R9xj5L2YGg+pLmrTb0mAULluSn8y2wCTE IZztAnzLMyXzeGOiARvLl92QsVN2QimQqi8BW0v7SkxoaU7nfPnGbFIigcNueG4B YUsz0h0RZS4PkSbfatu7hPuOp9s73yKna9ZXozwzHAO5ws4KwUKQAB9qFIVTL2nB Oa6DDsO5i1E4lYkgAgg0YEUbStAzhlJtqOdJ6UlFCmDm3txEObabaIYmxhUYq0q0 cDSs3BvAyi0ZrpdhkVQittNZskesKTLnbH7TAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUg1SYPXbCkNlg+17FIbeFWXBjQYAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2cxU1lQWGJDa05sZy0xN0ZJ YmVGV1hCalFZQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2ngwDQYJKoZIhvcNAQELBQADggEBAJ0eQjuMW97HwY2VHpJgsSpNj4K0HqlyHZd1 9g2o0hND12XBBOhzh0Lf9na/53q4Qu8AuHGHZ/BB2+Gzl0Uc/vWftRoLyr25/1cd L73Cj6xAWalhmOB/3V7ssuUYDos9VP1hz+4AsM+aJhEiLWr7TskvHJa2K5UY5JFZ aHbuTYFKLvDqe7XyFurrxn+pO6+X1vEhWGpCyUV5CoGWjU4zOMw+3xm5WCfcrt0A 9a1Y1eWjzLBYSEs6WWGqprB6RqflsbZ2eEtd4b6Y2QeOyY0DfQ7obAgtsWKXNBGr qQ2vgTSZEO6gZcPaNw7/VHf5r9ScaZhUgI34X9DZ+MWuO01jcgc= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:18 2025 by rpki-client