$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hYLTh1x331FiMdCfDXghczLsdoY.roa File: hYLTh1x331FiMdCfDXghczLsdoY.roa (raw, json) Hash identifier: wXp3VuXQWc2z8V9r1Xw6JD3L7dfHSf9DWTIl5hEx7nw= Subject key identifier: 85:82:D3:87:5C:77:DF:51:62:31:D0:9F:0D:78:21:73:32:EC:76:86 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23D2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hYLTh1x331FiMdCfDXghczLsdoY.roa Signing time: Mon 10 Feb 2025 14:17:57 +0000 ROA not before: Mon 10 Feb 2025 14:17:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9170 (0x23d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8582D3875C77DF516231D09F0D78217332EC7686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:53:9f:48:ef:7e:d3:9a:c8:48:8f:18:73:d9: 4e:d2:a9:e4:17:37:ff:52:ce:5a:07:73:92:90:1e: 57:85:c3:01:f9:5f:5c:63:53:5d:9c:71:9b:a0:c9: 96:a7:55:98:f1:b6:cc:27:db:fb:c2:f9:be:66:2e: 56:1c:5b:96:e4:fd:80:70:b3:59:94:15:da:18:71: 8b:a3:d4:28:eb:68:00:9c:06:a7:0a:a8:02:48:e2: 3f:f7:0d:ad:8b:77:10:86:ab:25:8f:e2:4d:74:62: 60:e9:3f:44:b6:e8:2a:d5:db:17:ee:a1:0f:27:2c: 66:30:44:b4:0a:2b:bd:34:54:35:da:17:b7:56:0f: 12:82:96:78:87:0c:fb:8b:8f:fa:65:cb:cc:a0:63: a6:d2:a2:be:af:15:13:20:dd:e8:b9:8e:73:80:2c: 0d:c3:98:80:77:ac:58:fb:5d:5f:c0:57:aa:d7:a0: c7:52:42:ab:a9:c5:64:cb:8d:79:19:76:e0:97:07: 8a:d3:d6:27:b6:93:12:ca:9b:7a:97:31:54:46:de: fc:b0:f7:d3:d0:49:cf:ec:27:53:92:2c:a7:81:87: 71:7b:55:37:be:98:81:31:bb:21:c0:b5:b5:5d:62: 5b:10:44:2c:f9:65:65:62:13:af:2a:77:4b:fe:24: 99:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:82:D3:87:5C:77:DF:51:62:31:D0:9F:0D:78:21:73:32:EC:76:86 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hYLTh1x331FiMdCfDXghczLsdoY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.136.0/24 Signature Algorithm: sha256WithRSAEncryption 63:66:d5:c6:c7:ab:71:09:65:ee:06:41:42:2a:ea:a6:e4:07: 42:fe:56:e6:d6:88:09:a7:a1:8a:1e:87:5d:1d:90:2e:63:9a: c0:a3:6e:e6:58:e9:85:77:8e:1c:75:c5:3e:60:e5:da:20:a6: 04:f2:25:a6:e0:7d:99:88:0b:a7:9d:23:3f:5f:29:bd:f8:20: 56:ba:7a:3e:8b:ba:b9:49:65:b7:44:57:2c:4d:e7:5d:0b:ec: a4:d0:53:e5:52:7f:87:5a:56:d5:b5:40:f6:68:9f:73:65:0b: c9:7a:a5:f6:af:ff:a8:1a:b8:3a:06:dd:ea:1b:76:8c:b3:a6: 04:d1:65:ba:9e:7a:dd:32:03:6b:01:37:b9:e9:65:1f:d8:ef: ce:3b:2d:13:fe:3a:9b:f3:ff:5f:52:f0:ca:b3:3d:39:36:42: ac:5f:58:9f:5a:8a:79:a9:91:42:af:c3:c1:d1:ab:04:f0:2e: 6a:96:cf:46:68:0b:1b:11:83:d3:37:60:05:c5:bc:d6:fa:a0: f1:c7:f7:76:bd:ea:76:87:f8:13:71:cf:fb:6c:53:5e:eb:0b: 11:f3:8e:19:c1:c0:89:06:30:cc:73:0b:af:a5:31:4c:b8:17: b7:a1:d5:68:4a:d7:e0:56:b2:f2:db:13:bb:40:51:97:b5:6f: 12:cf:94:aa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI9IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg1ODJEMzg3NUM3N0RG NTE2MjMxRDA5RjBENzgyMTczMzJFQzc2ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsU59I737TmshIjxhz2U7SqeQXN/9SzloHc5KQHleFwwH5X1xj U12ccZugyZanVZjxtswn2/vC+b5mLlYcW5bk/YBws1mUFdoYcYuj1CjraACcBqcK qAJI4j/3Da2LdxCGqyWP4k10YmDpP0S26CrV2xfuoQ8nLGYwRLQKK700VDXaF7dW DxKClniHDPuLj/ply8ygY6bSor6vFRMg3ei5jnOALA3DmIB3rFj7XV/AV6rXoMdS QqupxWTLjXkZduCXB4rT1ie2kxLKm3qXMVRG3vyw99PQSc/sJ1OSLKeBh3F7VTe+ mIExuyHAtbVdYlsQRCz5ZWViE68qd0v+JJkRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhYLTh1x331FiMdCfDXghczLsdoYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hZTFRoMXgzMzFGaU1kQ2ZE WGdoY3pMc2RvWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 2ogwDQYJKoZIhvcNAQELBQADggEBAGNm1cbHq3EJZe4GQUIq6qbkB0L+VubWiAmn oYoeh10dkC5jmsCjbuZY6YV3jhx1xT5g5dogpgTyJabgfZmIC6edIz9fKb34IFa6 ej6LurlJZbdEVyxN510L7KTQU+VSf4daVtW1QPZon3NlC8l6pfav/6gauDoG3eob doyzpgTRZbqeet0yA2sBN7npZR/Y7847LRP+Opvz/19S8MqzPTk2QqxfWJ9ainmp kUKvw8HRqwTwLmqWz0ZoCxsRg9M3YAXFvNb6oPHH93a96naH+BNxz/tsU17rCxHz jhnBwIkGMMxzC6+lMUy4F7eh1WhK1+BWsvLbE7tAUZe1bxLPlKo= -----END CERTIFICATE-----Generated at Fri Apr 18 16:47:56 2025 by rpki-client