$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pIC5faoR5QUBx3TjIr7dDNUN1H0.roa File: pIC5faoR5QUBx3TjIr7dDNUN1H0.roa (raw, json) Hash identifier: S4BreKQyMZy/8yUwgv9QQsiA50R9mduMaJNhtPforM4= Subject key identifier: A4:80:B9:7D:AA:11:E5:05:01:C7:74:E3:22:BE:DD:0C:D5:0D:D4:7D Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23B4 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pIC5faoR5QUBx3TjIr7dDNUN1H0.roa Signing time: Mon 10 Feb 2025 14:17:50 +0000 ROA not before: Mon 10 Feb 2025 14:17:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9140 (0x23b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A480B97DAA11E50501C774E322BEDD0CD50DD47D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ed:86:a4:2f:39:82:ef:60:5e:9d:ca:19:1f: 73:a5:f3:0a:3e:09:ee:34:04:94:9a:3b:0e:f7:73: 03:a8:a6:9b:17:fe:94:8e:33:ee:6b:83:61:98:ee: 5c:ec:97:49:ad:9e:05:fc:60:8d:fd:87:1e:56:ee: 61:ff:7e:cb:7d:87:56:2d:fe:a5:bf:46:74:13:5b: b5:a2:d0:f0:67:02:8c:85:ee:96:53:45:4f:02:a3: bd:5f:74:2c:71:88:38:39:e8:6b:62:e6:3c:9c:29: c6:fa:9f:e3:cf:20:9b:a1:a6:a8:3f:b2:74:60:34: e4:6e:63:10:b0:07:95:4b:e5:bc:10:89:23:34:b4: e4:f2:9d:2e:5d:a0:ce:28:ee:13:7e:39:56:6b:84: 7c:e4:eb:b2:dc:c0:58:28:e4:81:66:30:00:7c:ca: f2:f0:aa:c5:f3:1a:35:42:fc:3a:6b:4b:43:71:52: 64:5f:e1:4f:92:a3:00:c4:d3:55:21:26:46:b5:13: ab:60:e0:43:ae:01:07:f6:1d:73:55:44:ff:d2:29: 26:d3:88:95:7b:7d:d5:63:a6:a1:57:61:71:38:11: f6:2d:55:44:8d:ca:0d:cb:ee:f1:04:87:43:86:8c: bf:bd:a9:d6:12:62:23:58:0d:16:0c:f4:8f:03:4f: 4d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:80:B9:7D:AA:11:E5:05:01:C7:74:E3:22:BE:DD:0C:D5:0D:D4:7D X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pIC5faoR5QUBx3TjIr7dDNUN1H0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.140.0/22 Signature Algorithm: sha256WithRSAEncryption 50:2e:77:a4:65:97:1c:cb:b8:64:60:58:28:29:d0:3c:c3:a9: a5:ec:f8:7e:40:f5:65:e3:19:33:83:ca:57:d4:e6:cb:70:f4: 5f:7d:c5:ff:6e:77:c4:7f:a2:f0:17:71:41:43:1f:f1:8e:b1: c2:45:f3:fa:86:47:52:4d:4a:a8:2b:3d:15:47:e6:58:71:c8: 7a:48:34:d5:24:26:6c:64:67:94:cb:b8:4c:75:68:6c:c9:59: 6b:67:b1:b0:f6:bb:b9:a4:89:80:0a:fd:00:31:a6:ac:e7:bf: 19:b8:bd:8b:7e:cc:14:f3:51:49:17:dd:c0:3d:4e:20:86:ed: c7:e5:0c:ae:3f:4b:36:00:96:2f:aa:2b:0a:8a:fe:d2:05:07: 89:e2:97:35:3e:5c:d2:fe:43:f8:65:cb:66:48:0a:2b:6a:11: 63:f3:bc:56:de:db:1f:d9:55:47:a6:b5:71:e5:16:45:32:22: 5b:69:2d:e3:a3:fb:6e:f8:6b:78:14:c1:24:03:b7:05:d1:53: ef:48:85:71:40:3e:4c:3d:ef:29:ea:3d:b2:ab:8a:87:9e:ac: cf:fe:f4:2c:68:46:07:64:56:6a:61:64:03:01:e5:6e:a2:4c: 7a:56:24:97:26:a7:c9:3e:80:95:cf:54:c3:2b:83:e8:82:74: 24:c7:8b:80 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI7QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE0ODBCOTdEQUExMUU1 MDUwMUM3NzRFMzIyQkVERDBDRDUwREQ0N0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDq7YakLzmC72BencoZH3Ol8wo+Ce40BJSaOw73cwOoppsX/pSO M+5rg2GY7lzsl0mtngX8YI39hx5W7mH/fst9h1Yt/qW/RnQTW7Wi0PBnAoyF7pZT RU8Co71fdCxxiDg56Gti5jycKcb6n+PPIJuhpqg/snRgNORuYxCwB5VL5bwQiSM0 tOTynS5doM4o7hN+OVZrhHzk67LcwFgo5IFmMAB8yvLwqsXzGjVC/DprS0NxUmRf 4U+SowDE01UhJka1E6tg4EOuAQf2HXNVRP/SKSbTiJV7fdVjpqFXYXE4EfYtVUSN yg3L7vEEh0OGjL+9qdYSYiNYDRYM9I8DT03tAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUpIC5faoR5QUBx3TjIr7dDNUN1H0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3BJQzVmYW9SNVFVQngzVGpJ cjdkRE5VTjFIMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2owwDQYJKoZIhvcNAQELBQADggEBAFAud6RllxzLuGRgWCgp0DzDqaXs+H5A9WXj GTODylfU5stw9F99xf9ud8R/ovAXcUFDH/GOscJF8/qGR1JNSqgrPRVH5lhxyHpI NNUkJmxkZ5TLuEx1aGzJWWtnsbD2u7mkiYAK/QAxpqznvxm4vYt+zBTzUUkX3cA9 TiCG7cflDK4/SzYAli+qKwqK/tIFB4nilzU+XNL+Q/hly2ZICitqEWPzvFbe2x/Z VUemtXHlFkUyIltpLeOj+274a3gUwSQDtwXRU+9IhXFAPkw97ynqPbKrioeerM/+ 9CxoRgdkVmphZAMB5W6iTHpWJJcmp8k+gJXPVMMrg+iCdCTHi4A= -----END CERTIFICATE-----Generated at Fri Apr 18 16:47:47 2025 by rpki-client