$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kPUSBgeLSr221mejyIYeKQZyN_8.roa File: kPUSBgeLSr221mejyIYeKQZyN_8.roa (raw, json) Hash identifier: XcwAT8RXUfQK6chksIAdTVFb+biw4OjTOXEQqsxwPp8= Subject key identifier: 90:F5:12:06:07:8B:4A:BD:B6:D6:67:A3:C8:86:1E:29:06:72:37:FF Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 249B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kPUSBgeLSr221mejyIYeKQZyN_8.roa Signing time: Mon 10 Feb 2025 14:18:49 +0000 ROA not before: Mon 10 Feb 2025 14:18:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 122.100.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9371 (0x249b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=90F51206078B4ABDB6D667A3C8861E29067237FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:55:cd:d6:a0:3a:1f:15:c8:2f:e9:52:8d:44: c8:97:26:06:4e:5b:6d:a3:8b:07:bc:bc:a2:d7:11: 44:36:7e:f5:9c:af:dc:39:85:fe:49:fc:23:57:98: 24:0c:f5:93:22:5f:2d:74:0e:7e:0c:45:24:7b:94: 00:c1:6c:2d:53:88:39:5b:b9:d4:84:c3:42:2b:0f: 07:b6:ee:d9:3d:bb:fa:01:d1:41:7c:ac:17:ea:44: a7:8b:db:e3:33:cf:4a:f6:41:8e:e1:50:43:71:f8: 07:c8:e7:b9:50:aa:09:24:67:40:6e:b2:5c:45:82: a2:31:4c:5d:e1:f7:01:eb:70:45:db:ba:5c:2a:53: 01:26:f8:f5:59:81:ef:2b:70:96:64:bb:ec:26:e4: 7d:46:c4:5e:22:a5:9f:02:f1:bb:f0:e5:80:e4:de: fa:4f:61:cc:1b:b7:4f:89:ab:19:39:9f:84:b2:d9: 49:d3:7a:11:07:64:aa:d3:ac:36:13:d9:2f:f7:11: 7a:5f:74:23:b3:61:f7:bf:5b:d4:a0:2c:3a:0f:d9: d1:0d:34:4b:aa:3b:cb:3e:e9:10:3a:96:62:1e:1e: 3e:1f:4b:b0:8a:65:5e:65:4f:27:18:e5:d8:85:07: 89:42:b3:25:26:c2:c0:89:f5:ce:67:21:a4:8a:95: 46:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F5:12:06:07:8B:4A:BD:B6:D6:67:A3:C8:86:1E:29:06:72:37:FF X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kPUSBgeLSr221mejyIYeKQZyN_8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.64.0/18 Signature Algorithm: sha256WithRSAEncryption 10:68:f1:93:e1:ef:be:b2:1f:38:0e:b0:6d:b5:0c:d2:b8:8b: 15:48:13:f4:c1:c2:61:d9:12:1e:ed:8c:2e:61:fb:40:ad:05: 05:0c:43:e4:dc:3e:48:bb:50:70:58:43:f3:48:68:d2:75:1d: 46:7d:da:25:7c:2b:e5:fb:80:dc:88:21:2d:07:92:9b:4a:84: 92:28:c7:c3:70:10:bd:4c:8d:8c:82:0e:7a:79:2e:60:ce:e1: 45:b9:7a:1f:0c:8d:95:13:e0:e9:d8:37:ef:00:a0:8f:9c:be: 3d:76:6a:09:ea:af:ed:43:38:7e:98:ab:5a:10:27:6f:45:5d: 04:21:a6:bb:b8:17:11:6f:9c:79:17:93:cc:a8:70:08:54:97: 81:ac:00:ae:a1:8e:2c:4f:ad:3b:8d:70:49:53:ec:64:27:42: 83:34:49:19:cb:d4:db:7c:ff:4a:33:4b:44:bc:f4:9e:91:27: b8:c4:9a:6c:28:7a:3a:83:5c:f2:f9:30:da:32:b9:46:82:5c: 70:98:10:7e:73:07:95:aa:8b:9a:1b:50:ce:ae:73:ad:ca:32: 01:9c:53:ca:87:46:62:f2:90:27:87:e1:e3:2b:90:f9:52:3f: b6:15:a1:8d:be:71:8b:11:81:14:e1:72:d5:06:c8:ff:49:e5: 10:c8:87:93 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkwRjUxMjA2MDc4QjRB QkRCNkQ2NjdBM0M4ODYxRTI5MDY3MjM3RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClVc3WoDofFcgv6VKNRMiXJgZOW22jiwe8vKLXEUQ2fvWcr9w5 hf5J/CNXmCQM9ZMiXy10Dn4MRSR7lADBbC1TiDlbudSEw0IrDwe27tk9u/oB0UF8 rBfqRKeL2+Mzz0r2QY7hUENx+AfI57lQqgkkZ0BuslxFgqIxTF3h9wHrcEXbulwq UwEm+PVZge8rcJZku+wm5H1GxF4ipZ8C8bvw5YDk3vpPYcwbt0+Jqxk5n4Sy2UnT ehEHZKrTrDYT2S/3EXpfdCOzYfe/W9SgLDoP2dENNEuqO8s+6RA6lmIeHj4fS7CK ZV5lTycY5diFB4lCsyUmwsCJ9c5nIaSKlUYhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUkPUSBgeLSr221mejyIYeKQZyN/8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2tQVVNCZ2VMU3IyMjFtZWp5 SVllS1FaeU5fOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6 ZEAwDQYJKoZIhvcNAQELBQADggEBABBo8ZPh776yHzgOsG21DNK4ixVIE/TBwmHZ Eh7tjC5h+0CtBQUMQ+TcPki7UHBYQ/NIaNJ1HUZ92iV8K+X7gNyIIS0HkptKhJIo x8NwEL1MjYyCDnp5LmDO4UW5eh8MjZUT4OnYN+8AoI+cvj12agnqr+1DOH6Yq1oQ J29FXQQhpru4FxFvnHkXk8yocAhUl4GsAK6hjixPrTuNcElT7GQnQoM0SRnL1Nt8 /0ozS0S89J6RJ7jEmmwoejqDXPL5MNoyuUaCXHCYEH5zB5Wqi5obUM6uc63KMgGc U8qHRmLykCeH4eMrkPlSP7YVoY2+cYsRgRThctUGyP9J5RDIh5M= -----END CERTIFICATE-----Generated at Thu Apr 17 21:04:46 2025 by rpki-client