$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jQqK7rIEjBydWznWq3pE-VysoCU.roa File: jQqK7rIEjBydWznWq3pE-VysoCU.roa (raw, json) Hash identifier: 7MXawvNNtvaHT2HTk3WNJTDJylUKgsrjons2cq07m8A= Subject key identifier: 8D:0A:8A:EE:B2:04:8C:1C:9D:5B:39:D6:AB:7A:44:F9:5C:AC:A0:25 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24AF Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jQqK7rIEjBydWznWq3pE-VysoCU.roa Signing time: Mon 10 Feb 2025 14:18:53 +0000 ROA not before: Mon 10 Feb 2025 14:18:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 49.159.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9391 (0x24af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8D0A8AEEB2048C1C9D5B39D6AB7A44F95CACA025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d0:02:db:4c:f5:45:05:4e:50:bd:84:30:d8: de:97:f5:49:01:d9:2f:2b:3d:6a:80:f3:0b:03:96: f5:9b:01:91:e2:89:8d:d3:83:66:62:8b:ee:3a:97: 01:a5:36:66:ae:ab:7e:d1:97:df:94:c9:bd:34:74: 32:78:e2:37:09:0b:47:42:aa:49:9a:e3:b4:88:29: a5:66:f0:6b:d5:ba:cd:48:8a:13:40:ec:5a:44:f3: cc:3a:cb:4e:1e:23:75:cd:56:80:a5:be:a7:22:1b: 20:fb:d5:01:a4:90:83:47:ce:86:20:53:1b:f5:a3: cc:df:23:d7:ef:d0:4b:19:61:14:46:47:76:3a:7c: a4:e9:25:6e:a8:c6:c3:eb:2d:47:c3:28:d7:ea:71: ef:a4:3a:8f:89:2d:b2:5b:1a:b3:c2:ff:c4:fb:d0: 90:86:08:66:0c:0d:6b:f3:c4:08:b4:64:cf:12:35: 4c:d8:80:9e:17:d4:79:4b:b4:e3:4d:33:e9:be:16: c5:0c:34:78:42:25:37:ce:f0:d4:cd:3c:18:32:15: fb:e6:2f:63:55:ec:3b:4a:07:85:ea:94:69:02:4f: b7:8e:c3:62:a4:70:bd:c3:a3:4b:38:d2:62:c5:a7: ea:f4:69:22:41:e2:7a:b3:7a:21:0b:cd:13:b6:89: 13:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:0A:8A:EE:B2:04:8C:1C:9D:5B:39:D6:AB:7A:44:F9:5C:AC:A0:25 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jQqK7rIEjBydWznWq3pE-VysoCU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.208.0/22 Signature Algorithm: sha256WithRSAEncryption 95:2a:7a:bc:8e:48:a3:9b:03:3a:0c:f2:55:42:61:4b:2d:e1: f5:9e:5c:e3:70:8b:ad:44:a7:21:41:a2:63:96:04:45:78:b0: 69:62:cc:8f:7a:b1:65:77:ef:32:1a:47:54:10:6b:9d:e8:ff: 49:c6:d0:8f:1f:af:61:c4:aa:85:72:82:91:ca:87:21:90:5b: 6b:6b:58:3e:44:d4:88:25:27:43:e9:30:ac:9d:54:d3:db:fe: 79:58:87:fe:26:0a:36:56:fb:15:de:39:f2:ab:ca:ec:ee:f5: cd:e1:a4:8a:71:2e:17:b8:17:60:56:4b:18:5f:12:df:0e:76: 62:91:42:48:cd:e0:ac:a9:14:bd:ee:11:62:53:f5:85:17:74: b4:c7:81:a8:1e:b0:47:50:c1:83:c9:20:6d:01:32:08:47:fa: 4b:88:e8:cb:e4:50:d1:38:6e:42:a9:31:ed:c8:38:0d:61:9d: 15:7e:bd:b2:23:2f:22:4b:18:9f:3a:f6:40:62:7e:88:1a:be: 49:e1:78:0b:7c:b9:ae:cb:8c:7a:c2:49:4e:7c:1c:92:7d:1b: 97:c6:fa:a1:27:a8:b9:6d:55:14:f8:0e:54:d7:f3:b1:f1:95: f3:6f:a5:d3:6b:49:b5:f2:63:ec:04:6e:e0:31:40:b4:70:40: e6:22:d9:8e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJK8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhEMEE4QUVFQjIwNDhD MUM5RDVCMzlENkFCN0E0NEY5NUNBQ0EwMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDw0ALbTPVFBU5QvYQw2N6X9UkB2S8rPWqA8wsDlvWbAZHiiY3T g2Zii+46lwGlNmauq37Rl9+Uyb00dDJ44jcJC0dCqkma47SIKaVm8GvVus1IihNA 7FpE88w6y04eI3XNVoClvqciGyD71QGkkINHzoYgUxv1o8zfI9fv0EsZYRRGR3Y6 fKTpJW6oxsPrLUfDKNfqce+kOo+JLbJbGrPC/8T70JCGCGYMDWvzxAi0ZM8SNUzY gJ4X1HlLtONNM+m+FsUMNHhCJTfO8NTNPBgyFfvmL2NV7DtKB4XqlGkCT7eOw2Kk cL3Do0s40mLFp+r0aSJB4nqzeiELzRO2iROTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjQqK7rIEjBydWznWq3pE+VysoCUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2pRcUs3cklFakJ5ZFd6bldx M3BFLVZ5c29DVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n9AwDQYJKoZIhvcNAQELBQADggEBAJUqeryOSKObAzoM8lVCYUst4fWeXONwi61E pyFBomOWBEV4sGlizI96sWV37zIaR1QQa53o/0nG0I8fr2HEqoVygpHKhyGQW2tr WD5E1IglJ0PpMKydVNPb/nlYh/4mCjZW+xXeOfKryuzu9c3hpIpxLhe4F2BWSxhf Et8OdmKRQkjN4KypFL3uEWJT9YUXdLTHgagesEdQwYPJIG0BMghH+kuI6MvkUNE4 bkKpMe3IOA1hnRV+vbIjLyJLGJ869kBifogavknheAt8ua7LjHrCSU58HJJ9G5fG +qEnqLltVRT4DlTX87HxlfNvpdNrSbXyY+wEbuAxQLRwQOYi2Y4= -----END CERTIFICATE-----Generated at Fri Apr 18 16:40:20 2025 by rpki-client