$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kfJs9Wi1mNcPHt1Zm97Xdbb0nds.roa File: kfJs9Wi1mNcPHt1Zm97Xdbb0nds.roa (raw, json) Hash identifier: pZ5bhCXqd7nHFoG4So4XINvkrHFVsJH8oFqxoJ6tpcg= Subject key identifier: 91:F2:6C:F5:68:B5:98:D7:0F:1E:DD:59:9B:DE:D7:75:B6:F4:9D:DB Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2404 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kfJs9Wi1mNcPHt1Zm97Xdbb0nds.roa Signing time: Mon 10 Feb 2025 14:18:10 +0000 ROA not before: Mon 10 Feb 2025 14:18:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 119.77.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9220 (0x2404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=91F26CF568B598D70F1EDD599BDED775B6F49DDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:24:01:d6:e4:48:38:83:6c:c0:96:88:9d:9c: c9:08:34:bd:76:1b:31:7e:e2:c2:9f:aa:1b:e9:1e: cb:d9:7c:ba:15:3c:0f:1d:37:e1:46:41:80:56:e3: 85:64:79:fb:3a:14:36:a7:a3:f3:1a:69:1b:e0:f3: f8:7a:f4:7b:3f:27:1a:c3:42:6c:a1:b6:85:6d:f8: d3:78:4a:5c:56:a4:63:bd:ec:89:d4:87:d2:3b:b5: 31:c3:95:1b:3b:7c:0b:a5:7d:fc:8b:4b:cb:5b:b0: 35:c3:a5:b8:41:f7:24:68:94:e0:e9:9a:68:be:0d: 83:15:f1:2a:df:dc:90:b8:39:60:70:69:7a:3e:f2: 10:cc:b4:63:2c:b7:9f:53:c8:91:a5:73:f5:50:ba: c4:a9:29:03:a7:26:36:09:14:be:ab:0d:7c:e8:4b: 1f:75:30:35:b0:94:d0:35:23:6c:c3:6a:87:6b:37: f2:48:ad:2d:f7:60:d7:65:8e:39:a5:5f:0d:ec:c8: 28:f0:96:cd:b8:87:17:03:ca:7e:70:4c:f6:57:5e: df:a4:ac:1d:bc:da:82:53:48:57:f9:d6:6f:77:43: 91:fb:0e:5f:f9:ed:ab:3d:cb:8d:d7:97:d2:aa:12: ae:9f:9a:53:3d:34:94:e4:c6:17:01:39:6c:81:3a: ff:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F2:6C:F5:68:B5:98:D7:0F:1E:DD:59:9B:DE:D7:75:B6:F4:9D:DB X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kfJs9Wi1mNcPHt1Zm97Xdbb0nds.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.128.0/17 Signature Algorithm: sha256WithRSAEncryption 89:7a:b1:b9:d5:5e:99:4a:25:5d:ef:25:3c:0c:6c:a3:25:70: 01:ae:ba:0b:fd:98:5b:4a:e0:06:00:26:1d:2e:46:3c:ca:3b: 7a:9e:13:c5:65:ab:c4:20:21:e9:e9:94:19:c6:0a:5a:8a:90: d4:e1:35:5f:31:94:7a:8a:25:be:17:10:d2:d4:03:fe:5e:e5: d5:9c:66:93:23:d5:fa:d8:6d:45:31:b1:14:34:69:50:7b:88: f5:db:c2:c5:3a:5f:16:b3:d8:7a:83:9e:0f:38:a2:02:c6:e3: 3e:04:02:d4:b9:09:b6:17:d7:8d:52:6d:eb:18:2f:31:bf:92: 8f:46:f3:3b:55:31:eb:fd:98:00:2d:a8:41:f8:ca:ec:7d:2c: 4d:3e:9b:41:fb:de:94:91:7d:a3:47:c7:08:9e:87:c9:bf:a7: 88:59:85:9d:06:f3:20:01:a4:d5:d1:d7:ad:e5:37:fa:3e:4d: b8:e6:a6:b9:82:40:64:05:e5:4e:46:3b:67:e7:b5:93:53:fd: e4:f0:a9:02:ed:34:af:6a:dd:eb:c9:ff:bb:dc:5f:fd:fa:55: 5f:3e:87:28:d7:ff:a0:7a:08:9f:06:52:32:a6:39:87:5f:78: e9:18:65:5b:a7:88:5b:4a:a0:c3:11:cb:3d:d9:37:e3:58:e5: e6:e0:ef:32 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJAQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkxRjI2Q0Y1NjhCNTk4 RDcwRjFFREQ1OTlCREVENzc1QjZGNDlEREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+JAHW5Eg4g2zAloidnMkINL12GzF+4sKfqhvpHsvZfLoVPA8d N+FGQYBW44Vkefs6FDano/MaaRvg8/h69Hs/JxrDQmyhtoVt+NN4SlxWpGO97InU h9I7tTHDlRs7fAulffyLS8tbsDXDpbhB9yRolODpmmi+DYMV8Srf3JC4OWBwaXo+ 8hDMtGMst59TyJGlc/VQusSpKQOnJjYJFL6rDXzoSx91MDWwlNA1I2zDaodrN/JI rS33YNdljjmlXw3syCjwls24hxcDyn5wTPZXXt+krB282oJTSFf51m93Q5H7Dl/5 7as9y43Xl9KqEq6fmlM9NJTkxhcBOWyBOv8dAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUkfJs9Wi1mNcPHt1Zm97Xdbb0ndswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2tmSnM5V2kxbU5jUEh0MVpt OTdYZGJiMG5kcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3 TYAwDQYJKoZIhvcNAQELBQADggEBAIl6sbnVXplKJV3vJTwMbKMlcAGuugv9mFtK 4AYAJh0uRjzKO3qeE8Vlq8QgIenplBnGClqKkNThNV8xlHqKJb4XENLUA/5e5dWc ZpMj1frYbUUxsRQ0aVB7iPXbwsU6Xxaz2HqDng84ogLG4z4EAtS5CbYX141SbesY LzG/ko9G8ztVMev9mAAtqEH4yux9LE0+m0H73pSRfaNHxwieh8m/p4hZhZ0G8yAB pNXR163lN/o+TbjmprmCQGQF5U5GO2fntZNT/eTwqQLtNK9q3evJ/7vcX/36VV8+ hyjX/6B6CJ8GUjKmOYdfeOkYZVuniFtKoMMRyz3ZN+NY5ebg7zI= -----END CERTIFICATE-----Generated at Fri Apr 18 16:31:59 2025 by rpki-client