$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pgDKEBQhUzLT_U1kDHbAVQBaMXQ.roa File: pgDKEBQhUzLT_U1kDHbAVQBaMXQ.roa (raw, json) Hash identifier: +xFHhXVeIlJK77xxjdtiw+THcF+RBCVXsekPxjJHqBE= Subject key identifier: A6:00:CA:10:14:21:53:32:D3:FD:4D:64:0C:76:C0:55:00:5A:31:74 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24B3 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pgDKEBQhUzLT_U1kDHbAVQBaMXQ.roa Signing time: Mon 10 Feb 2025 14:18:54 +0000 ROA not before: Mon 10 Feb 2025 14:18:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9395 (0x24b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A600CA1014215332D3FD4D640C76C055005A3174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c8:29:b5:b7:a1:36:c7:82:97:4e:86:d2:be: d5:b3:7a:68:03:a8:ad:db:ef:ee:42:61:f4:f9:15: 14:32:f8:e5:81:7b:2f:d1:7c:82:a3:ee:e8:a0:0d: ce:86:09:09:d8:47:c2:a1:df:52:4b:ed:fd:3f:ef: e4:b3:db:66:36:25:71:58:7d:ca:ff:de:ca:e0:d0: b7:96:37:ce:d2:15:b0:36:4c:7a:54:61:4c:3c:bb: 94:23:35:7e:ef:10:eb:07:60:c2:fc:88:b0:d3:ce: 40:53:72:de:5b:fc:37:a7:c0:a2:bb:fc:21:c0:49: a0:fc:76:8c:92:47:15:c5:0a:57:95:f9:2a:a9:41: 77:d1:85:95:85:3d:68:63:68:51:52:a7:43:1c:29: d3:04:c7:9a:13:6e:87:7b:61:8b:1f:a1:ad:d0:d7: c2:d6:da:13:65:5e:a8:c6:d8:c5:2a:16:6c:49:45: 43:f0:83:3b:dd:9c:e6:8a:62:4f:1f:4f:49:66:d1: 81:3d:36:99:6d:d5:95:1c:33:67:38:fa:c5:86:5c: d8:2e:81:83:f1:91:a8:dc:c9:f3:db:6f:88:2c:64: 0b:9a:e6:fa:44:ff:08:97:b1:55:a7:4a:8d:77:f4: c2:bb:a4:12:31:45:91:73:4a:2e:8f:79:c4:60:5a: bb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:00:CA:10:14:21:53:32:D3:FD:4D:64:0C:76:C0:55:00:5A:31:74 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pgDKEBQhUzLT_U1kDHbAVQBaMXQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.224.0/21 Signature Algorithm: sha256WithRSAEncryption 2d:ee:d4:b3:b7:83:97:09:51:8d:5b:19:df:80:24:5b:e2:88: 85:32:92:2c:e1:2a:bd:d2:c0:73:5f:b0:e0:ac:73:82:3b:ac: 9f:fc:6e:52:f2:9f:5b:44:5e:0a:f3:a3:8a:4f:93:6a:9a:b3: aa:4e:84:55:45:94:52:f9:46:ac:83:45:49:71:8a:fa:f9:b8: bb:e2:60:ca:11:89:13:ea:76:ef:d6:55:46:7a:9a:eb:7f:3c: d7:c1:28:6a:3e:eb:da:69:9e:4b:2a:50:2f:50:8a:2c:7d:d2: 24:21:14:9f:65:e0:eb:eb:37:e8:b7:51:a3:70:e3:9a:24:e2: b4:f1:2c:8f:00:88:2b:cc:b7:18:37:31:8f:62:d9:15:c9:5b: 3b:54:90:84:d1:a8:cd:25:9c:d7:52:81:dd:f1:99:11:e6:48: 56:e5:94:97:14:b6:55:c4:b1:77:d3:3f:9d:80:ad:45:20:4e: 78:9b:45:fa:4a:d5:23:72:c6:f2:dd:ec:64:b2:bc:fa:44:9e: 9e:36:7d:31:27:bb:38:2c:12:91:88:9f:09:eb:59:4e:c1:52: 99:da:1d:3e:8b:52:68:91:a2:8e:e9:77:ad:82:6b:52:8a:c2: bb:a5:22:bf:10:9c:57:c4:eb:d6:c5:13:1c:eb:09:c2:f2:c7: 50:4c:5f:c3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJLMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE2MDBDQTEwMTQyMTUz MzJEM0ZENEQ2NDBDNzZDMDU1MDA1QTMxNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvyCm1t6E2x4KXTobSvtWzemgDqK3b7+5CYfT5FRQy+OWBey/R fIKj7uigDc6GCQnYR8Kh31JL7f0/7+Sz22Y2JXFYfcr/3srg0LeWN87SFbA2THpU YUw8u5QjNX7vEOsHYML8iLDTzkBTct5b/DenwKK7/CHASaD8doySRxXFCleV+Sqp QXfRhZWFPWhjaFFSp0McKdMEx5oTbod7YYsfoa3Q18LW2hNlXqjG2MUqFmxJRUPw gzvdnOaKYk8fT0lm0YE9Nplt1ZUcM2c4+sWGXNgugYPxkajcyfPbb4gsZAua5vpE /wiXsVWnSo139MK7pBIxRZFzSi6PecRgWrs3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUpgDKEBQhUzLT/U1kDHbAVQBaMXQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3BnREtFQlFoVXpMVF9VMWtE SGJBVlFCYU1YUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n+AwDQYJKoZIhvcNAQELBQADggEBAC3u1LO3g5cJUY1bGd+AJFviiIUykizhKr3S wHNfsOCsc4I7rJ/8blLyn1tEXgrzo4pPk2qas6pOhFVFlFL5RqyDRUlxivr5uLvi YMoRiRPqdu/WVUZ6mut/PNfBKGo+69ppnksqUC9Qiix90iQhFJ9l4OvrN+i3UaNw 45ok4rTxLI8AiCvMtxg3MY9i2RXJWztUkITRqM0lnNdSgd3xmRHmSFbllJcUtlXE sXfTP52ArUUgTnibRfpK1SNyxvLd7GSyvPpEnp42fTEnuzgsEpGInwnrWU7BUpna HT6LUmiRoo7pd62Ca1KKwrulIr8QnFfE69bFExzrCcLyx1BMX8M= -----END CERTIFICATE-----Generated at Fri Apr 18 16:42:38 2025 by rpki-client