$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iM71wXvhmAl38TLj3BGDV9XZgIU.roa File: iM71wXvhmAl38TLj3BGDV9XZgIU.roa (raw, json) Hash identifier: oeNVMiyj+1xeY9/4xtKoYBENEaZxKUS4RkkbH5174V0= Subject key identifier: 88:CE:F5:C1:7B:E1:98:09:77:F1:32:E3:DC:11:83:57:D5:D9:80:85 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2472 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iM71wXvhmAl38TLj3BGDV9XZgIU.roa Signing time: Mon 10 Feb 2025 14:18:38 +0000 ROA not before: Mon 10 Feb 2025 14:18:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9330 (0x2472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=88CEF5C17BE1980977F132E3DC118357D5D98085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:21:56:62:48:8d:ea:2e:0f:f6:5a:e2:86:f6: 05:3e:46:b9:a8:04:6a:11:8e:94:c6:f2:39:43:58: a2:1f:23:d9:f1:f2:c4:ba:0a:54:68:e1:aa:d7:ec: 8c:2e:2a:cf:14:d8:94:b8:05:d4:5e:c6:6b:47:44: f4:5c:9a:b5:71:c0:a5:d0:6b:8e:10:c3:45:ee:ce: c3:35:83:49:5d:dc:39:02:e8:9c:ca:34:a8:24:53: 87:7f:7e:c7:51:20:50:a0:15:35:e5:d2:97:91:f6: fb:3a:41:ac:b8:57:03:4b:30:ed:ca:87:43:18:4d: 03:1f:2e:ca:5e:38:8c:d1:68:53:33:d0:c1:95:ec: 07:49:62:54:6b:2f:c6:78:d9:50:03:e1:5b:b8:c4: 19:b3:b9:90:0b:ef:06:b9:1b:86:d7:cb:11:7a:fb: 71:7b:6a:5e:9c:75:34:1c:96:10:66:8c:4d:9e:5e: 80:7d:87:93:af:0f:9d:ac:9f:83:69:44:3a:42:89: 19:7f:fd:ea:af:a9:6d:fb:71:d7:cf:80:df:7c:96: 88:5d:8e:8e:29:a7:4f:97:48:4a:3e:dd:8f:00:b5: c8:51:b1:d4:9d:3b:1a:5f:ca:0d:bf:92:b9:7a:d1: c5:2c:0d:db:ac:99:bd:92:b1:cc:1a:5b:a6:c2:e3: 24:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:CE:F5:C1:7B:E1:98:09:77:F1:32:E3:DC:11:83:57:D5:D9:80:85 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iM71wXvhmAl38TLj3BGDV9XZgIU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.112.0/21 Signature Algorithm: sha256WithRSAEncryption 60:95:a1:cc:29:65:89:0d:27:09:97:09:b9:77:c0:cb:10:42: 64:0d:2f:d1:9a:ac:61:15:be:18:0a:22:ff:82:fe:a3:63:64: 4e:4e:c0:38:ec:e6:70:69:cf:b2:f7:1f:47:a4:d7:bf:3e:1a: 11:4d:75:23:17:78:89:9f:bb:46:d6:ca:e5:6b:07:9d:4d:4d: a2:ab:f3:05:67:61:22:b7:de:26:81:67:88:88:e4:76:4e:7e: 55:45:c4:f5:01:07:3e:1e:eb:2c:4a:7d:18:c9:38:c0:ee:0f: 6e:b0:2a:39:81:fd:49:89:92:7d:36:fe:2b:0d:34:72:02:30: 70:96:05:46:ff:68:cc:b2:5b:4e:30:d2:b8:50:9c:1f:e8:1c: 9d:b5:53:4a:58:8a:d5:46:e8:84:02:09:c3:68:df:c7:25:9a: b8:a6:69:a9:17:9b:b2:36:5d:4d:eb:50:2f:b2:3c:84:39:b3: a2:e4:17:0d:20:10:e6:e6:0e:09:a4:50:7f:3c:98:94:1a:7d: c5:3f:10:87:b8:49:d1:ed:b1:9a:c9:bd:90:b6:d1:c3:bf:89: 62:f6:02:ae:63:51:9e:1b:b4:bd:76:f0:65:ea:4b:06:91:94: 03:3d:fa:a4:f7:1b:24:bb:cf:88:bf:b0:37:71:9c:4b:64:c7: 7a:06:9a:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJHIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg4Q0VGNUMxN0JFMTk4 MDk3N0YxMzJFM0RDMTE4MzU3RDVEOTgwODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4IVZiSI3qLg/2WuKG9gU+RrmoBGoRjpTG8jlDWKIfI9nx8sS6 ClRo4arX7IwuKs8U2JS4BdRexmtHRPRcmrVxwKXQa44Qw0XuzsM1g0ld3DkC6JzK NKgkU4d/fsdRIFCgFTXl0peR9vs6Qay4VwNLMO3Kh0MYTQMfLspeOIzRaFMz0MGV 7AdJYlRrL8Z42VAD4Vu4xBmzuZAL7wa5G4bXyxF6+3F7al6cdTQclhBmjE2eXoB9 h5OvD52sn4NpRDpCiRl//eqvqW37cdfPgN98lohdjo4pp0+XSEo+3Y8AtchRsdSd Oxpfyg2/krl60cUsDdusmb2SscwaW6bC4yQlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUiM71wXvhmAl38TLj3BGDV9XZgIUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2lNNzF3WHZobUFsMzhUTGoz QkdEVjlYWmdJVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nnAwDQYJKoZIhvcNAQELBQADggEBAGCVocwpZYkNJwmXCbl3wMsQQmQNL9GarGEV vhgKIv+C/qNjZE5OwDjs5nBpz7L3H0ek178+GhFNdSMXeImfu0bWyuVrB51NTaKr 8wVnYSK33iaBZ4iI5HZOflVFxPUBBz4e6yxKfRjJOMDuD26wKjmB/UmJkn02/isN NHICMHCWBUb/aMyyW04w0rhQnB/oHJ21U0pYitVG6IQCCcNo38clmrimaakXm7I2 XU3rUC+yPIQ5s6LkFw0gEObmDgmkUH88mJQafcU/EIe4SdHtsZrJvZC20cO/iWL2 Aq5jUZ4btL128GXqSwaRlAM9+qT3GyS7z4i/sDdxnEtkx3oGmiw= -----END CERTIFICATE-----Generated at Thu Apr 17 21:03:37 2025 by rpki-client