$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hCdgiHj-sJn7WGTHiKxNuc_fAYc.roa File: hCdgiHj-sJn7WGTHiKxNuc_fAYc.roa (raw, json) Hash identifier: prGIZQl8kekIqBCzPh3o5JPMENUdjF53m0B8JJHlPFM= Subject key identifier: 84:27:60:88:78:FE:B0:99:FB:58:64:C7:88:AC:4D:B9:CF:DF:01:87 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2473 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hCdgiHj-sJn7WGTHiKxNuc_fAYc.roa Signing time: Mon 10 Feb 2025 14:18:38 +0000 ROA not before: Mon 10 Feb 2025 14:18:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 114.198.176.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9331 (0x2473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8427608878FEB099FB5864C788AC4DB9CFDF0187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:59:e5:ee:84:a2:56:9f:cc:53:91:39:ce:c1: 68:d5:b2:1e:31:e1:d8:71:55:88:72:ee:8a:51:b6: cf:69:53:da:a6:dd:8d:45:31:da:8d:ac:6b:65:2c: 50:14:de:d8:60:94:82:c9:5c:55:92:35:8f:30:c3: 56:9d:25:b7:6e:2e:83:bb:8e:62:f4:86:49:9c:29: 98:3c:73:e1:67:82:a6:12:58:b6:da:97:ed:fb:fc: f7:8c:17:fd:f2:4f:8b:c1:21:59:2a:aa:ce:97:d5: 84:f7:9b:df:ed:0b:14:b8:8f:a5:c7:ee:0b:ec:ba: ad:4f:b4:34:2d:c4:ea:d9:51:cd:d8:61:30:0c:4e: 4e:59:3c:1b:bf:53:50:f0:99:40:1c:22:45:7e:e8: e1:17:b5:a2:9a:66:fa:38:5b:a2:0b:51:55:23:39: 3a:94:ea:88:e5:c8:85:8a:b0:96:a9:ed:76:fc:ab: e0:f4:22:1c:18:e7:85:b8:3b:44:8b:10:f1:85:b6: c9:c6:10:47:68:4a:89:86:66:c1:cc:24:08:fe:2c: 39:7b:74:8f:ab:31:7c:f6:86:ec:75:e2:3d:96:5f: 11:b8:4a:b9:e7:23:d1:9f:81:dc:8e:0a:80:99:3b: 31:1c:c7:1c:5c:f0:72:2d:4f:e0:52:27:cb:a6:6d: a0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:27:60:88:78:FE:B0:99:FB:58:64:C7:88:AC:4D:B9:CF:DF:01:87 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hCdgiHj-sJn7WGTHiKxNuc_fAYc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.176.0/20 Signature Algorithm: sha256WithRSAEncryption 6d:69:44:40:65:4d:4c:37:29:06:c2:7a:e1:c9:f0:12:4c:04: a3:c0:b7:8d:74:54:25:a1:2b:1f:61:d0:d7:19:ee:13:38:bc: d3:dc:9d:af:0f:ee:7e:5c:8a:68:7e:3d:0c:db:ee:ea:48:c5: 7e:e9:e1:17:32:7e:e7:19:7b:70:5a:58:6a:d4:93:9c:c0:ac: 8c:e2:0f:ed:3a:76:3f:73:e3:04:50:fc:5d:21:f1:a8:8e:fc: 1d:50:a3:e8:87:5d:86:1f:b2:02:5b:e0:f7:78:99:40:de:84: 49:1b:f8:7a:b8:af:ed:f2:bf:b8:04:73:e3:5b:61:94:53:2b: 3b:a0:c4:86:95:14:5c:11:01:a3:ef:76:56:e7:ae:e9:28:d8: cc:64:64:99:c6:bb:71:41:b0:42:69:1c:a9:58:03:d1:8c:d7: ab:e9:c1:43:93:f0:31:d5:15:4d:68:e6:ac:10:73:9f:99:d8: b2:4f:51:b1:9b:b8:50:5f:4d:d4:6b:82:fe:96:2a:a6:47:69: 8e:a1:c6:41:64:fe:4a:19:38:d4:ec:8f:04:6c:72:a9:3f:f8: be:ef:d6:0f:85:6f:b3:eb:a7:33:92:c7:9b:8b:e6:72:98:94: db:53:4b:0b:69:65:40:3d:46:97:99:56:90:4d:9d:8b:93:cd: b7:78:47:3b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg0Mjc2MDg4NzhGRUIw OTlGQjU4NjRDNzg4QUM0REI5Q0ZERjAxODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDWeXuhKJWn8xTkTnOwWjVsh4x4dhxVYhy7opRts9pU9qm3Y1F MdqNrGtlLFAU3thglILJXFWSNY8ww1adJbduLoO7jmL0hkmcKZg8c+FngqYSWLba l+37/PeMF/3yT4vBIVkqqs6X1YT3m9/tCxS4j6XH7gvsuq1PtDQtxOrZUc3YYTAM Tk5ZPBu/U1DwmUAcIkV+6OEXtaKaZvo4W6ILUVUjOTqU6ojlyIWKsJap7Xb8q+D0 IhwY54W4O0SLEPGFtsnGEEdoSomGZsHMJAj+LDl7dI+rMXz2hux14j2WXxG4Srnn I9GfgdyOCoCZOzEcxxxc8HItT+BSJ8umbaCpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhCdgiHj+sJn7WGTHiKxNuc/fAYcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hDZGdpSGotc0puN1dHVEhp S3hOdWNfZkFZYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy xrAwDQYJKoZIhvcNAQELBQADggEBAG1pREBlTUw3KQbCeuHJ8BJMBKPAt410VCWh Kx9h0NcZ7hM4vNPcna8P7n5cimh+PQzb7upIxX7p4RcyfucZe3BaWGrUk5zArIzi D+06dj9z4wRQ/F0h8aiO/B1Qo+iHXYYfsgJb4Pd4mUDehEkb+Hq4r+3yv7gEc+Nb YZRTKzugxIaVFFwRAaPvdlbnruko2MxkZJnGu3FBsEJpHKlYA9GM16vpwUOT8DHV FU1o5qwQc5+Z2LJPUbGbuFBfTdRrgv6WKqZHaY6hxkFk/koZONTsjwRscqk/+L7v 1g+Fb7PrpzOSx5uL5nKYlNtTSwtpZUA9RpeZVpBNnYuTzbd4Rzs= -----END CERTIFICATE-----Generated at Thu Apr 17 21:01:00 2025 by rpki-client