$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iihW-0FbTeEwIe0ybuY2pRZwfPg.roa File: iihW-0FbTeEwIe0ybuY2pRZwfPg.roa (raw, json) Hash identifier: girVphG+Cx7kN85+1bx/a55/RhcYXVwD2KMwxmEJj6A= Subject key identifier: 8A:28:56:FB:41:5B:4D:E1:30:21:ED:32:6E:E6:36:A5:16:70:7C:F8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2449 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iihW-0FbTeEwIe0ybuY2pRZwfPg.roa Signing time: Mon 10 Feb 2025 14:18:28 +0000 ROA not before: Mon 10 Feb 2025 14:18:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 119.77.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9289 (0x2449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8A2856FB415B4DE13021ED326EE636A516707CF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:3c:71:5a:b1:c6:34:20:5f:8c:cd:72:2a: 1a:7d:39:a9:97:54:28:7d:8d:62:d3:63:c2:b6:d1: c8:1a:12:6e:08:84:e0:08:d7:7f:bb:e9:ee:6e:f4: 0a:02:67:9f:8d:01:c7:f6:b8:67:2e:44:4c:c4:6a: af:7d:89:3c:8c:2d:88:3e:3f:68:25:de:dc:23:a2: 04:be:2c:ea:e0:69:fc:a8:92:f7:1e:2a:15:f4:4a: 43:a9:37:ee:1a:ea:71:0a:b1:19:11:be:c5:da:29: 56:88:f0:fd:c6:78:67:1a:fc:b5:47:fa:03:8b:f1: bf:3d:bf:2f:17:73:76:6f:d3:a4:71:75:e7:e3:77: d1:64:ab:78:92:b9:65:72:92:2e:52:f5:0f:65:e3: 16:ca:fe:db:75:14:4f:c0:9b:be:ec:2e:1d:de:9b: 99:ff:b7:a4:bf:77:0d:59:e0:ca:04:5f:ba:1a:92: d9:4e:60:6c:20:d1:71:7b:32:a2:91:f5:d0:dd:bb: 3a:74:f1:d0:4d:40:a5:43:43:7f:26:5e:b6:c6:dd: ad:af:71:c2:0a:5f:bb:22:8a:89:b2:ac:76:ce:cf: 5b:b7:b3:41:8a:73:29:7a:b8:89:4e:7a:4f:7f:72: 01:7e:be:e7:d5:99:d6:40:65:de:cc:75:b3:ba:e5: 99:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:28:56:FB:41:5B:4D:E1:30:21:ED:32:6E:E6:36:A5:16:70:7C:F8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iihW-0FbTeEwIe0ybuY2pRZwfPg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.140.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:cf:75:54:72:76:4b:bb:64:53:60:0f:bd:5d:be:f2:59:12: 5e:db:d7:7c:e9:d9:57:18:5d:d7:86:5d:80:a9:cf:46:24:40: 7a:cc:4d:53:7f:e9:37:79:c0:ac:2b:0d:2d:d6:14:d2:ea:ad: b2:63:02:6d:4c:b8:34:47:fa:b6:b8:d7:00:98:00:68:a3:de: 50:f6:2a:79:ca:0f:1c:fd:a5:91:19:6e:5f:71:57:34:5d:f4: 3a:ec:c2:31:61:45:7b:0a:4f:9d:2b:ba:d8:8f:ee:79:8a:2a: df:4d:c1:02:e6:bd:12:06:0a:4d:7e:43:1f:34:56:5e:4c:bf: 86:2a:db:d8:31:76:fd:11:4c:18:ed:e1:26:ae:82:a7:19:e3: a8:9c:a9:1b:44:b2:6e:79:0b:20:ba:95:82:8c:65:15:9f:b3: 7a:95:dd:a8:b3:b7:38:e1:bd:ed:e2:7b:24:fb:ed:ba:aa:bd: ec:43:f5:91:d2:03:d9:32:f4:57:50:d3:d6:21:c5:c2:73:43: f4:53:b9:58:2d:e4:f9:ae:7e:00:ea:e3:a5:d8:b3:02:0c:45: 6d:03:2e:4e:eb:ad:7d:60:15:eb:02:59:15:40:af:a6:31:6d: 94:5f:6b:61:7c:43:d5:5b:12:b3:18:2e:b2:ef:f8:9d:fa:18: 2f:73:1d:53 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJEkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhBMjg1NkZCNDE1QjRE RTEzMDIxRUQzMjZFRTYzNkE1MTY3MDdDRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBRzxxWrHGNCBfjM1yKhp9OamXVCh9jWLTY8K20cgaEm4IhOAI 13+76e5u9AoCZ5+NAcf2uGcuREzEaq99iTyMLYg+P2gl3twjogS+LOrgafyokvce KhX0SkOpN+4a6nEKsRkRvsXaKVaI8P3GeGca/LVH+gOL8b89vy8Xc3Zv06Rxdefj d9Fkq3iSuWVyki5S9Q9l4xbK/tt1FE/Am77sLh3em5n/t6S/dw1Z4MoEX7oaktlO YGwg0XF7MqKR9dDduzp08dBNQKVDQ38mXrbG3a2vccIKX7siiomyrHbOz1u3s0GK cyl6uIlOek9/cgF+vufVmdZAZd7MdbO65ZmJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUiihW+0FbTeEwIe0ybuY2pRZwfPgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2lpaFctMEZiVGVFd0llMHli dVkycFJad2ZQZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ3 TYwwDQYJKoZIhvcNAQELBQADggEBAG3PdVRydku7ZFNgD71dvvJZEl7b13zp2VcY XdeGXYCpz0YkQHrMTVN/6Td5wKwrDS3WFNLqrbJjAm1MuDRH+ra41wCYAGij3lD2 KnnKDxz9pZEZbl9xVzRd9DrswjFhRXsKT50rutiP7nmKKt9NwQLmvRIGCk1+Qx80 Vl5Mv4Yq29gxdv0RTBjt4SaugqcZ46icqRtEsm55CyC6lYKMZRWfs3qV3aiztzjh ve3ieyT77bqqvexD9ZHSA9ky9FdQ09YhxcJzQ/RTuVgt5PmufgDq46XYswIMRW0D Lk7rrX1gFesCWRVAr6YxbZRfa2F8Q9VbErMYLrLv+J36GC9zHVM= -----END CERTIFICATE-----Generated at Fri Apr 18 16:54:07 2025 by rpki-client