$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/njDkwKwOJLcJfQ43WCY3601ZheI.roa File: njDkwKwOJLcJfQ43WCY3601ZheI.roa (raw, json) Hash identifier: qLo0kzZOjzdiUrOvEjJvPrAgQOcBzNS6uHyB4UNDE7E= Subject key identifier: 9E:30:E4:C0:AC:0E:24:B7:09:7D:0E:37:58:26:37:EB:4D:59:85:E2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 245A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/njDkwKwOJLcJfQ43WCY3601ZheI.roa Signing time: Mon 10 Feb 2025 14:18:33 +0000 ROA not before: Mon 10 Feb 2025 14:18:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 61.64.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9306 (0x245a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9E30E4C0AC0E24B7097D0E37582637EB4D5985E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5e:8d:f3:44:51:f5:31:b3:d9:18:d1:ec:79: 98:05:aa:9f:2b:7c:06:3d:82:75:5b:10:ef:ba:5d: f7:2e:d7:f2:a2:5b:12:1b:f3:bf:e2:99:f6:75:49: 40:42:16:b3:13:b7:34:94:dc:a7:49:72:13:21:38: 1c:3c:ce:c7:65:50:1b:da:e5:61:3a:73:3c:52:69: 02:d0:ff:af:4a:7c:fa:bc:1f:4a:2f:38:8a:59:91: f3:20:23:3f:d8:82:8a:3a:31:6f:cc:5d:6b:4f:cb: d7:98:55:48:88:01:05:96:24:db:ba:dc:85:53:a6: ed:82:7d:05:27:e6:8e:79:90:0d:fa:04:b8:41:45: 06:e3:74:7d:e3:69:79:67:5d:bb:85:eb:80:3f:9a: a3:bb:b8:c3:8b:46:ff:f3:7a:a1:9f:02:fe:1b:7b: 75:ac:a5:62:3e:06:59:72:e2:32:5f:b3:90:58:67: ff:80:a4:9e:14:88:67:d2:98:5f:bd:66:0f:f0:33: db:4e:d5:35:5e:5c:37:8c:1b:d4:8d:97:d4:42:d7: f5:59:74:4f:fd:01:a0:87:a0:9a:7d:61:52:02:9a: 72:10:47:e6:08:74:96:56:dc:f5:dc:65:12:58:8b: a2:ec:af:51:d2:02:b2:f9:c0:8d:2d:d1:90:92:4f: f1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:30:E4:C0:AC:0E:24:B7:09:7D:0E:37:58:26:37:EB:4D:59:85:E2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/njDkwKwOJLcJfQ43WCY3601ZheI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.24.0/22 Signature Algorithm: sha256WithRSAEncryption 78:87:e7:f7:92:09:db:13:6d:62:63:ac:88:a1:9e:c5:e9:6a: a9:8e:b6:2f:52:19:88:72:bc:67:d2:0c:38:f3:31:c5:ba:90: c2:07:82:62:7b:eb:a6:11:74:cb:f5:5a:ad:6a:34:81:a0:44: 1a:fe:f3:41:1f:b6:5d:92:ff:12:2c:14:77:4c:ac:05:25:31: 25:fd:b3:6f:a5:36:70:fb:08:eb:de:05:c8:e5:89:e0:40:65: a3:33:8d:62:32:ca:c6:f6:5d:65:85:3a:79:45:3f:b3:69:e7: a7:69:b4:61:ec:c6:c4:2d:f4:68:e5:cd:48:94:56:39:17:5e: c1:70:97:05:86:51:15:14:dd:ff:8e:de:ef:66:c0:1f:39:ee: c1:48:47:67:45:a3:2d:11:ac:eb:f4:d4:f4:28:48:8e:aa:1e: a4:46:7b:c6:61:83:4c:6b:52:1f:75:4e:e5:4f:28:f5:d2:75: fe:35:fb:0d:d6:55:e5:c2:93:5a:b4:1f:81:55:11:76:f2:68: a9:4b:b1:b6:3b:46:2b:92:80:e5:80:76:79:2c:24:05:79:30: 4e:f6:4a:d9:7c:67:d1:b5:37:76:40:15:53:65:74:9e:37:6d: 10:f7:1a:a1:5c:0f:c3:27:bb:8e:45:cf:28:4f:c1:a0:cb:46: 28:01:54:ea -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJFowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlFMzBFNEMwQUMwRTI0 QjcwOTdEMEUzNzU4MjYzN0VCNEQ1OTg1RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIXo3zRFH1MbPZGNHseZgFqp8rfAY9gnVbEO+6Xfcu1/KiWxIb 87/imfZ1SUBCFrMTtzSU3KdJchMhOBw8zsdlUBva5WE6czxSaQLQ/69KfPq8H0ov OIpZkfMgIz/Ygoo6MW/MXWtPy9eYVUiIAQWWJNu63IVTpu2CfQUn5o55kA36BLhB RQbjdH3jaXlnXbuF64A/mqO7uMOLRv/zeqGfAv4be3WspWI+Blly4jJfs5BYZ/+A pJ4UiGfSmF+9Zg/wM9tO1TVeXDeMG9SNl9RC1/VZdE/9AaCHoJp9YVICmnIQR+YI dJZW3PXcZRJYi6Lsr1HSArL5wI0t0ZCST/ElAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUnjDkwKwOJLcJfQ43WCY3601ZheIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL25qRGt3S3dPSkxjSmZRNDNX Q1kzNjAxWmhlSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 QBgwDQYJKoZIhvcNAQELBQADggEBAHiH5/eSCdsTbWJjrIihnsXpaqmOti9SGYhy vGfSDDjzMcW6kMIHgmJ766YRdMv1Wq1qNIGgRBr+80Eftl2S/xIsFHdMrAUlMSX9 s2+lNnD7COveBcjlieBAZaMzjWIyysb2XWWFOnlFP7Np56dptGHsxsQt9GjlzUiU VjkXXsFwlwWGURUU3f+O3u9mwB857sFIR2dFoy0RrOv01PQoSI6qHqRGe8Zhg0xr Uh91TuVPKPXSdf41+w3WVeXCk1q0H4FVEXbyaKlLsbY7RiuSgOWAdnksJAV5ME72 Stl8Z9G1N3ZAFVNldJ43bRD3GqFcD8Mnu45FzyhPwaDLRigBVOo= -----END CERTIFICATE-----Generated at Fri Apr 18 16:51:42 2025 by rpki-client