$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nog_rCOnLf8nCFPbmbyKqvKHTHE.roa File: nog_rCOnLf8nCFPbmbyKqvKHTHE.roa (raw, json) Hash identifier: zmxpplbTQVC0ZC64Q6mgMMX6sUw+SXIdGnpnRq2pw/A= Subject key identifier: 9E:88:3F:AC:23:A7:2D:FF:27:08:53:DB:99:BC:8A:AA:F2:87:4C:71 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 247A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nog_rCOnLf8nCFPbmbyKqvKHTHE.roa Signing time: Mon 10 Feb 2025 14:18:41 +0000 ROA not before: Mon 10 Feb 2025 14:18:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 49.158.192.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9338 (0x247a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9E883FAC23A72DFF270853DB99BC8AAAF2874C71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:89:34:a4:bc:b8:ea:22:9f:d1:19:a5:55:f5: af:53:b3:b5:33:87:2d:a9:32:fe:5e:23:c9:ff:0a: d1:c5:e3:58:27:cc:50:c3:15:b2:7d:a5:b5:ab:95: 68:7b:c5:b8:d2:17:ec:2c:ce:cd:70:59:a5:5c:dd: 56:dd:13:db:32:cb:4e:9b:2d:62:6a:42:2f:7a:8a: fb:e2:5c:cf:97:49:cd:9f:49:2d:5e:bd:e8:a3:d5: 35:48:da:f0:11:07:4f:9c:e3:f8:6f:da:ac:9f:fa: c4:94:72:38:f9:fc:a7:bf:ca:f5:31:4f:6f:d3:f9: 12:7f:c8:5e:5d:ac:d2:9e:45:c1:cb:b2:a4:40:43: 45:72:1e:80:5e:3e:e9:1f:b9:d3:2e:7d:4a:0b:43: a7:7f:43:8e:57:4d:28:8d:ab:19:05:5e:98:40:da: 6d:08:92:cc:78:43:dc:8d:da:5a:2a:e4:eb:17:78: 35:34:f0:f9:61:2a:1b:fa:43:7b:04:eb:d3:7c:c3: 24:16:ae:c8:4e:54:7f:53:8c:37:26:4d:99:ca:ef: ab:0d:7b:35:ec:ed:86:1a:83:9f:2a:0e:e3:f7:93: 3e:65:c6:6e:23:63:b8:9b:99:13:00:7e:10:94:97: 65:be:2d:14:ca:36:4d:4b:cf:35:4b:cb:3b:d4:06: 47:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:88:3F:AC:23:A7:2D:FF:27:08:53:DB:99:BC:8A:AA:F2:87:4C:71 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nog_rCOnLf8nCFPbmbyKqvKHTHE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.192.0/21 Signature Algorithm: sha256WithRSAEncryption 17:b8:69:9f:e3:c0:21:8e:1c:94:d0:5e:51:82:2b:ca:14:17: 72:de:6f:ca:85:81:0d:84:c9:11:2a:b0:57:40:e9:5b:9f:4b: a8:64:77:9f:62:f4:65:ce:f8:df:1a:96:1f:2a:81:0a:f8:3d: dd:53:aa:eb:4f:61:ae:93:b4:40:34:f9:e7:af:be:cf:ba:7f: 59:8a:c0:2b:36:bc:32:db:20:c8:22:ca:30:69:f5:40:50:72: 48:d9:f9:74:a3:7f:c7:71:cf:2d:41:bd:2e:de:91:3d:fe:71: 56:c4:5f:ad:69:e0:49:c9:8c:a3:00:c2:f4:fb:af:40:26:88: e5:65:15:a0:48:45:ca:86:ce:63:80:4c:17:2c:d9:91:e2:f6: 0d:ec:d8:5f:ba:12:19:6b:4c:52:d5:4f:86:d3:ac:0c:cf:e2: 7e:54:d6:a4:21:26:74:c5:ab:5d:b7:11:89:79:52:c2:3f:84: e9:96:dc:eb:46:8f:59:e3:70:a4:5c:28:4c:5c:81:dc:68:8e: f2:3f:38:17:4f:21:60:2c:9c:59:ef:08:d0:1a:34:fe:ea:0e: 93:30:4f:82:c2:dc:8d:1c:c7:3d:ac:f7:15:b7:19:ce:95:3c: 38:0b:b7:80:43:74:c7:d0:22:c7:9a:16:bc:69:34:76:a2:a9: 27:53:25:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlFODgzRkFDMjNBNzJE RkYyNzA4NTNEQjk5QkM4QUFBRjI4NzRDNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmiTSkvLjqIp/RGaVV9a9Ts7Uzhy2pMv5eI8n/CtHF41gnzFDD FbJ9pbWrlWh7xbjSF+wszs1wWaVc3VbdE9syy06bLWJqQi96ivviXM+XSc2fSS1e veij1TVI2vARB0+c4/hv2qyf+sSUcjj5/Ke/yvUxT2/T+RJ/yF5drNKeRcHLsqRA Q0VyHoBePukfudMufUoLQ6d/Q45XTSiNqxkFXphA2m0Iksx4Q9yN2loq5OsXeDU0 8PlhKhv6Q3sE69N8wyQWrshOVH9TjDcmTZnK76sNezXs7YYag58qDuP3kz5lxm4j Y7ibmRMAfhCUl2W+LRTKNk1LzzVLyzvUBkf7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUnog/rCOnLf8nCFPbmbyKqvKHTHEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL25vZ19yQ09uTGY4bkNGUGJt YnlLcXZLSFRIRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nsAwDQYJKoZIhvcNAQELBQADggEBABe4aZ/jwCGOHJTQXlGCK8oUF3Leb8qFgQ2E yREqsFdA6VufS6hkd59i9GXO+N8alh8qgQr4Pd1TqutPYa6TtEA0+eevvs+6f1mK wCs2vDLbIMgiyjBp9UBQckjZ+XSjf8dxzy1BvS7ekT3+cVbEX61p4EnJjKMAwvT7 r0AmiOVlFaBIRcqGzmOATBcs2ZHi9g3s2F+6EhlrTFLVT4bTrAzP4n5U1qQhJnTF q123EYl5UsI/hOmW3OtGj1njcKRcKExcgdxojvI/OBdPIWAsnFnvCNAaNP7qDpMw T4LC3I0cxz2s9xW3Gc6VPDgLt4BDdMfQIseaFrxpNHaiqSdTJSw= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:15 2025 by rpki-client