$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/p1oV5p3MprP5uUS4_2BHErxVdDM.roa File: p1oV5p3MprP5uUS4_2BHErxVdDM.roa (raw, json) Hash identifier: QTg2JAN2Xdxk7fjLDUnHA46SXdvbz6Cj54Pc/gbbMxY= Subject key identifier: A7:5A:15:E6:9D:CC:A6:B3:F9:B9:44:B8:FF:60:47:12:BC:55:74:33 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23EE Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/p1oV5p3MprP5uUS4_2BHErxVdDM.roa Signing time: Mon 10 Feb 2025 14:18:05 +0000 ROA not before: Mon 10 Feb 2025 14:18:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 211.76.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9198 (0x23ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:05 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A75A15E69DCCA6B3F9B944B8FF604712BC557433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f8:b9:af:2f:64:4f:6e:b8:5e:98:e7:db:96: f0:2e:14:88:58:17:07:55:23:b1:ee:6c:c3:f3:e7: d9:b4:12:61:d2:c2:ad:22:72:36:e3:f0:31:b2:69: d6:f8:81:cc:4c:c0:a6:26:70:b3:b4:f5:4a:c2:fc: 0c:52:f6:3b:f5:2c:58:b9:e4:be:69:6a:36:fd:a1: ae:30:d8:36:c2:d2:b3:a6:2e:a1:8b:16:1c:9d:ba: 96:95:bf:e1:77:66:b1:1f:68:73:02:9e:bb:d1:41: f2:17:e8:27:6f:87:50:a5:54:c0:a4:49:b7:56:5c: d1:53:a3:de:e7:34:d9:23:85:7b:2c:1c:a4:ac:ec: 9b:ae:8b:84:8b:53:60:f2:a3:d8:34:50:0c:33:36: ae:09:a1:0f:d2:fe:12:05:05:6c:30:a7:8b:14:f1: 56:7c:e6:ae:af:75:aa:31:02:f5:40:52:4d:72:79: a7:ec:a9:59:04:56:ec:a6:88:a8:0c:40:85:ca:e4: b2:1e:99:a9:3a:5e:09:c9:df:0c:ab:17:3b:9a:54: 48:0a:81:af:6c:c9:69:0f:39:fc:ff:9c:ee:bd:38: ff:45:d7:37:30:f5:50:93:a0:8d:95:2b:8d:76:46: 27:02:b2:8d:6f:c0:5d:03:4c:b3:f6:61:b7:54:a6: b7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:5A:15:E6:9D:CC:A6:B3:F9:B9:44:B8:FF:60:47:12:BC:55:74:33 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/p1oV5p3MprP5uUS4_2BHErxVdDM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.52.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:95:77:b7:ac:6e:b3:37:b3:ab:41:d3:7d:72:d3:ec:27:7b: 33:52:c9:77:52:a2:ec:58:75:73:01:6c:8a:a1:aa:8e:ba:ed: bc:d9:3c:d9:0a:b8:b5:43:41:2c:03:8e:51:9d:98:20:66:ef: 86:4d:f9:6c:24:21:38:74:45:9e:98:a8:38:63:7b:7e:f8:2e: 78:4a:63:bf:3d:e5:61:92:5e:7a:20:94:0e:27:8e:41:2b:8f: 94:59:f7:d6:88:9e:50:13:5a:f2:8a:d5:ba:13:fc:3f:44:8b: 20:06:c0:4e:65:cd:61:8a:24:f5:72:03:a6:c5:a9:89:9b:f0: 6a:e1:a4:85:bf:fa:4b:c5:da:5d:17:9f:54:35:e5:bb:b0:d1: d9:13:4a:4c:bd:5b:e0:dc:df:03:a3:6f:67:15:9e:7c:a0:6c: 78:9f:b5:5d:54:6d:ce:a9:59:7e:4c:f8:ac:d9:60:85:e6:56: e4:a2:aa:a1:a3:0a:46:8a:02:f7:7e:8a:d9:02:94:1e:c3:dd: 94:b2:fd:2b:14:82:2f:59:f4:cb:ed:95:3e:12:6e:04:7b:d2: 8f:38:82:f4:85:86:25:58:e9:09:1a:9a:5b:85:45:b9:ac:78: 20:25:55:ad:b6:13:a6:e7:f5:9e:a3:58:bc:28:2f:41:dc:d1: 1f:ad:83:bf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI+4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3NUExNUU2OURDQ0E2 QjNGOUI5NDRCOEZGNjA0NzEyQkM1NTc0MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZ+LmvL2RPbrhemOfblvAuFIhYFwdVI7HubMPz59m0EmHSwq0i cjbj8DGyadb4gcxMwKYmcLO09UrC/AxS9jv1LFi55L5pajb9oa4w2DbC0rOmLqGL FhydupaVv+F3ZrEfaHMCnrvRQfIX6Cdvh1ClVMCkSbdWXNFTo97nNNkjhXssHKSs 7Juui4SLU2Dyo9g0UAwzNq4JoQ/S/hIFBWwwp4sU8VZ85q6vdaoxAvVAUk1yeafs qVkEVuymiKgMQIXK5LIemak6XgnJ3wyrFzuaVEgKga9syWkPOfz/nO69OP9F1zcw 9VCToI2VK412RicCso1vwF0DTLP2YbdUprenAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUp1oV5p3MprP5uUS4/2BHErxVdDMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3Axb1Y1cDNNcHJQNXVVUzRf MkJIRXJ4VmRETS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHT TDQwDQYJKoZIhvcNAQELBQADggEBACyVd7esbrM3s6tB031y0+wnezNSyXdSouxY dXMBbIqhqo667bzZPNkKuLVDQSwDjlGdmCBm74ZN+WwkITh0RZ6YqDhje374LnhK Y7895WGSXnoglA4njkErj5RZ99aInlATWvKK1boT/D9EiyAGwE5lzWGKJPVyA6bF qYmb8GrhpIW/+kvF2l0Xn1Q15buw0dkTSky9W+Dc3wOjb2cVnnygbHiftV1Ubc6p WX5M+KzZYIXmVuSiqqGjCkaKAvd+itkClB7D3ZSy/SsUgi9Z9MvtlT4SbgR70o84 gvSFhiVY6QkamluFRbmseCAlVa22E6bn9Z6jWLwoL0Hc0R+tg78= -----END CERTIFICATE-----Generated at Thu Apr 17 21:01:31 2025 by rpki-client