$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/i7ch4KfPHF53l2qfMoKJipZPUFE.roa File: i7ch4KfPHF53l2qfMoKJipZPUFE.roa (raw, json) Hash identifier: nRViv6+5HMeVmja+DF/1fgUjcBm2T556IeTXJlS4l5Y= Subject key identifier: 8B:B7:21:E0:A7:CF:1C:5E:77:97:6A:9F:32:82:89:8A:96:4F:50:51 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24CD Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/i7ch4KfPHF53l2qfMoKJipZPUFE.roa Signing time: Mon 10 Feb 2025 14:19:02 +0000 ROA not before: Mon 10 Feb 2025 14:19:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9421 (0x24cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:19:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8BB721E0A7CF1C5E77976A9F3282898A964F5051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:04:aa:aa:89:a4:89:ac:81:c3:0a:34:ef:4a: bc:bb:3b:82:00:f4:3a:53:28:5b:71:14:01:7e:70: ab:97:7b:65:64:a1:03:f9:9e:45:19:e3:a9:3b:e0: 37:c8:af:82:4d:5d:e0:90:5a:1f:12:6e:ee:fb:5b: 4a:1b:8a:af:c1:3f:62:15:4a:99:72:81:9a:01:ee: fa:f9:d5:5f:7e:99:e2:e0:c5:49:98:20:21:45:b2: 37:d8:a3:9b:95:fd:42:ff:61:9e:95:26:6e:f2:97: 0c:e5:b0:f5:a1:49:dd:c5:c9:93:55:d4:b7:3b:3f: 94:92:36:4c:b1:84:5e:4b:51:21:bd:34:91:e2:f8: f0:e8:fb:e8:56:00:68:6c:d0:cc:ed:11:b8:42:e4: cf:60:2d:39:0d:47:e4:8b:18:71:37:d6:f8:83:d0: a0:f1:ed:eb:5b:1d:fb:05:8a:77:1d:19:de:83:cf: 92:6f:47:94:29:b2:b3:ed:22:1c:b2:67:cd:e6:30: 0d:a6:4b:03:e1:86:b7:7d:27:52:d2:4d:73:22:85: 01:d8:11:03:2c:51:b5:66:28:a8:d5:dc:7d:81:f3: 67:3d:71:84:22:7f:6b:63:6c:88:29:dc:63:fa:26: fc:cf:a8:6f:54:04:eb:39:22:d3:75:42:5a:97:8e: a8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B7:21:E0:A7:CF:1C:5E:77:97:6A:9F:32:82:89:8A:96:4F:50:51 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/i7ch4KfPHF53l2qfMoKJipZPUFE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.176.0/21 Signature Algorithm: sha256WithRSAEncryption 23:0b:2b:b0:ef:b1:af:90:2c:bc:ec:b6:e6:0e:f4:7c:8d:8f: 03:6f:db:83:cc:45:25:8d:0b:d0:a3:a7:30:d2:78:33:95:99: bf:d4:f1:3d:68:3a:e1:df:b3:4f:ad:8f:f9:cc:12:d5:f0:79: a1:71:3c:0f:aa:79:60:5d:f2:e7:ba:a3:bf:0d:60:3e:77:2a: 4e:f2:f1:e5:55:11:95:25:cc:46:22:ce:57:18:d4:d5:60:bb: 35:d4:3a:6d:77:cb:c9:d0:94:00:5c:6a:9e:35:50:c4:68:ce: 8b:79:c3:1a:3f:a8:9b:e5:46:c0:e6:09:e0:a7:77:78:af:1e: f2:b2:7b:ce:1c:48:66:55:e7:34:cf:e8:17:92:88:c9:b8:4d: db:30:63:77:bd:52:06:fd:56:ae:82:b0:60:b4:89:84:81:af: 5f:16:24:ef:ca:07:91:ed:95:59:74:ad:c6:79:bf:c7:62:8b: 2c:63:e3:b1:1a:a3:fc:4e:82:2c:96:71:8b:3e:03:bf:2a:2a: 66:1e:90:b0:ff:33:19:3a:47:7b:c2:83:fc:c0:6e:24:97:09: f3:e7:9d:20:9e:d6:69:e2:bc:33:84:96:d1:ef:f2:05:df:a2: c8:0e:46:de:df:d4:f6:bc:d6:a3:48:10:24:c5:9b:15:ae:86: 51:23:19:fc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJM0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE5MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhCQjcyMUUwQTdDRjFD NUU3Nzk3NkE5RjMyODI4OThBOTY0RjUwNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtBKqqiaSJrIHDCjTvSry7O4IA9DpTKFtxFAF+cKuXe2VkoQP5 nkUZ46k74DfIr4JNXeCQWh8Sbu77W0obiq/BP2IVSplygZoB7vr51V9+meLgxUmY ICFFsjfYo5uV/UL/YZ6VJm7ylwzlsPWhSd3FyZNV1Lc7P5SSNkyxhF5LUSG9NJHi +PDo++hWAGhs0MztEbhC5M9gLTkNR+SLGHE31viD0KDx7etbHfsFincdGd6Dz5Jv R5QpsrPtIhyyZ83mMA2mSwPhhrd9J1LSTXMihQHYEQMsUbVmKKjV3H2B82c9cYQi f2tjbIgp3GP6JvzPqG9UBOs5ItN1QlqXjqjrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUi7ch4KfPHF53l2qfMoKJipZPUFEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2k3Y2g0S2ZQSEY1M2wycWZN b0tKaXBaUFVGRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2rAwDQYJKoZIhvcNAQELBQADggEBACMLK7Dvsa+QLLzstuYO9HyNjwNv24PMRSWN C9CjpzDSeDOVmb/U8T1oOuHfs0+tj/nMEtXweaFxPA+qeWBd8ue6o78NYD53Kk7y 8eVVEZUlzEYizlcY1NVguzXUOm13y8nQlABcap41UMRozot5wxo/qJvlRsDmCeCn d3ivHvKye84cSGZV5zTP6BeSiMm4TdswY3e9Ugb9Vq6CsGC0iYSBr18WJO/KB5Ht lVl0rcZ5v8diiyxj47Eao/xOgiyWcYs+A78qKmYekLD/Mxk6R3vCg/zAbiSXCfPn nSCe1mnivDOEltHv8gXfosgORt7f1Pa81qNIECTFmxWuhlEjGfw= -----END CERTIFICATE-----Generated at Fri Apr 18 16:44:41 2025 by rpki-client