$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jZn9AJ1HbGYCyvNsOFdFGAVa1dY.roa File: jZn9AJ1HbGYCyvNsOFdFGAVa1dY.roa (raw, json) Hash identifier: dQeFEirz0dp3uYFIcQ2wEmnnlABTbZyiKvOwGt0jqTg= Subject key identifier: 8D:99:FD:00:9D:47:6C:66:02:CA:F3:6C:38:57:45:18:05:5A:D5:D6 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 247C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jZn9AJ1HbGYCyvNsOFdFGAVa1dY.roa Signing time: Mon 10 Feb 2025 14:18:41 +0000 ROA not before: Mon 10 Feb 2025 14:18:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 180.218.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9340 (0x247c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8D99FD009D476C6602CAF36C38574518055AD5D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:96:fd:f6:32:3f:2d:61:5d:41:d0:4d:a0:48: bb:b3:67:29:2c:f8:cb:7e:23:dc:52:59:fa:7a:6c: 0e:ad:6b:a9:90:32:93:87:72:17:f9:b9:db:70:e2: 8a:47:08:c5:0a:db:40:b3:6d:c7:78:07:47:05:fc: fe:df:27:14:d4:da:67:55:ef:66:77:eb:97:33:3b: 39:b1:98:60:65:0b:e6:c6:88:68:1b:5b:b9:f1:b6: 78:e1:42:99:4f:01:4f:b9:aa:bc:7f:5b:2f:5c:fc: 64:7c:ea:92:0d:c5:30:f7:5c:8e:72:78:27:7a:a0: a8:f1:cd:b4:22:dc:14:be:fa:a2:26:d2:f5:06:c0: c3:40:dd:aa:78:8f:5b:9b:79:18:fc:44:d3:c8:a5: 10:62:4a:d7:ce:09:84:cf:eb:ae:92:3e:95:ea:f2: eb:bc:d5:bc:c8:71:b7:df:24:53:54:42:a9:1e:88: 6c:74:ce:78:f0:96:ad:a5:c9:fe:50:7f:01:d1:04: 83:5b:c3:7e:c5:cc:2a:94:71:3b:84:4c:05:c0:c2: db:35:fb:6a:3c:6e:92:2e:d9:70:7b:48:08:f8:5f: 5a:a5:76:0d:d1:f7:69:bf:31:f2:7a:88:0d:10:54: 4c:c1:4e:a3:da:62:46:38:a7:16:a4:81:54:03:8d: 80:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:99:FD:00:9D:47:6C:66:02:CA:F3:6C:38:57:45:18:05:5A:D5:D6 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jZn9AJ1HbGYCyvNsOFdFGAVa1dY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.100.0/22 Signature Algorithm: sha256WithRSAEncryption 00:65:bd:70:e0:62:4c:47:02:6b:80:37:e0:f4:89:31:64:30: 7d:dd:ee:98:20:ba:5f:aa:73:89:cd:d0:4e:3d:44:f0:81:1e: d4:d7:b6:86:66:66:4e:d6:7f:b9:fb:83:4c:b6:51:ee:72:39: cf:34:ed:9b:79:c0:52:56:8c:90:94:46:3d:da:ed:b6:80:e6: 00:f8:7c:e1:ac:25:b4:6d:62:7b:8f:bc:68:32:7c:52:03:26: 54:04:d6:01:ed:07:01:bf:ef:55:e8:a5:47:e3:89:49:0f:f3: 7c:0a:27:0f:c9:6c:bb:25:fb:6b:92:e5:96:32:70:f3:72:6e: 48:cd:fc:4b:0b:f4:bf:2f:57:1e:f6:6b:99:a1:16:f1:2b:fc: 25:97:9c:10:38:18:9b:03:e9:6f:83:5d:cd:49:b9:02:31:ff: 06:48:69:80:7c:95:a0:a5:5c:95:3f:5b:23:8e:e3:ad:bd:3a: 50:d3:0c:db:39:37:4a:b2:9a:52:7a:7d:57:11:c7:1b:39:3b: 99:dc:4f:c5:35:17:3c:cd:cd:77:e6:fc:b1:71:6d:0d:f4:72: 8f:9d:a6:59:3e:75:a3:1a:54:ab:fa:a7:1f:63:9e:dc:22:de: 72:17:12:6e:b1:d6:11:22:00:33:3b:dc:13:39:b7:c2:f8:9f: d0:30:d1:fa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJHwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhEOTlGRDAwOUQ0NzZD NjYwMkNBRjM2QzM4NTc0NTE4MDU1QUQ1RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtlv32Mj8tYV1B0E2gSLuzZyks+Mt+I9xSWfp6bA6ta6mQMpOH chf5udtw4opHCMUK20Czbcd4B0cF/P7fJxTU2mdV72Z365czOzmxmGBlC+bGiGgb W7nxtnjhQplPAU+5qrx/Wy9c/GR86pINxTD3XI5yeCd6oKjxzbQi3BS++qIm0vUG wMNA3ap4j1ubeRj8RNPIpRBiStfOCYTP666SPpXq8uu81bzIcbffJFNUQqkeiGx0 znjwlq2lyf5QfwHRBINbw37FzCqUcTuETAXAwts1+2o8bpIu2XB7SAj4X1qldg3R 92m/MfJ6iA0QVEzBTqPaYkY4pxakgVQDjYArAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjZn9AJ1HbGYCyvNsOFdFGAVa1dYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2pabjlBSjFIYkdZQ3l2TnNP RmRGR0FWYTFkWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2mQwDQYJKoZIhvcNAQELBQADggEBAABlvXDgYkxHAmuAN+D0iTFkMH3d7pggul+q c4nN0E49RPCBHtTXtoZmZk7Wf7n7g0y2Ue5yOc807Zt5wFJWjJCURj3a7baA5gD4 fOGsJbRtYnuPvGgyfFIDJlQE1gHtBwG/71XopUfjiUkP83wKJw/JbLsl+2uS5ZYy cPNybkjN/EsL9L8vVx72a5mhFvEr/CWXnBA4GJsD6W+DXc1JuQIx/wZIaYB8laCl XJU/WyOO4629OlDTDNs5N0qymlJ6fVcRxxs5O5ncT8U1FzzNzXfm/LFxbQ30co+d plk+daMaVKv6px9jntwi3nIXEm6x1hEiADM73BM5t8L4n9Aw0fo= -----END CERTIFICATE-----Generated at Fri Apr 18 16:26:01 2025 by rpki-client