$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pnBcOqWOJEUCYBkbiPdenezJnRo.roa File: pnBcOqWOJEUCYBkbiPdenezJnRo.roa (raw, json) Hash identifier: McIcgsGlbErMbdCvCmPgkp64AQBwuXILQmo6n6T9sWo= Subject key identifier: A6:70:5C:3A:A5:8E:24:45:02:60:19:1B:88:F7:5E:9D:EC:C9:9D:1A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 24C1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pnBcOqWOJEUCYBkbiPdenezJnRo.roa Signing time: Mon 10 Feb 2025 14:18:58 +0000 ROA not before: Mon 10 Feb 2025 14:18:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9409 (0x24c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A6705C3AA58E24450260191B88F75E9DECC99D1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:12:91:7d:12:8a:e6:d0:fd:49:59:8c:42:4e: de:40:ce:6e:64:a5:98:8a:7e:0b:12:8d:e6:cb:42: fc:c2:3f:11:92:81:17:20:27:70:b2:ec:f3:5a:60: 69:f1:ad:78:b1:28:d7:81:ef:fe:52:95:f3:8f:55: a5:2c:8d:50:e5:39:ac:c7:0b:25:c1:26:b8:1d:00: df:10:9e:13:de:f1:44:e6:08:5a:6f:0b:f0:56:ae: f7:04:36:dd:b8:4b:5e:ff:21:0d:0e:5e:3c:95:f4: 95:15:77:fc:94:32:c2:a5:f0:c8:d6:e3:d2:15:c7: d2:66:4f:b2:ba:0f:ab:d3:66:9a:81:5e:b7:59:13: f7:f1:7f:48:98:23:fd:b9:be:77:40:b2:3a:40:4f: 77:e7:15:35:cc:c2:d0:62:4a:09:5f:6a:53:df:11: b8:e8:30:1d:79:05:56:55:ff:22:b5:d4:1b:1c:4f: 30:32:14:8f:5c:fe:32:d6:06:55:e3:c1:da:09:85: 18:64:5b:b5:74:2d:7e:2b:a3:9b:69:06:a9:f6:9c: e8:e8:0f:b7:f4:3b:1f:0f:5a:94:c2:78:05:09:36: 85:b0:b4:44:d2:94:df:8c:ce:97:42:a0:83:ea:2a: 7b:ea:9d:6a:71:7c:5b:ef:7b:19:e1:42:77:ae:5d: 36:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:70:5C:3A:A5:8E:24:45:02:60:19:1B:88:F7:5E:9D:EC:C9:9D:1A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pnBcOqWOJEUCYBkbiPdenezJnRo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.96.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:14:5f:71:44:ae:80:f9:a9:7c:fd:7e:4c:b3:be:bf:fe:a2: c3:93:0b:5b:d6:2d:2a:51:2a:a7:57:59:79:19:ad:74:8c:c3: b9:9e:09:6a:59:17:a3:58:37:51:f9:be:bb:a7:04:af:98:df: e7:b9:fd:c3:79:6c:05:40:c5:0c:e6:8f:5c:18:29:8c:2f:20: 84:d7:dd:45:0d:12:30:43:59:f7:93:ec:4d:f3:d1:c6:27:f7: 7c:4a:11:ed:54:5a:8c:64:37:74:5e:5a:a4:ca:a6:72:c0:60: 88:15:85:fa:9d:4a:b1:80:60:2a:73:5b:9f:db:07:d7:c1:51: b2:77:c5:6d:61:2e:15:3d:bf:18:dd:a1:70:2c:5a:14:93:f9: 00:c4:0e:97:bd:4c:3e:cd:fd:c6:96:a1:fc:f7:ce:01:0c:ba: 40:8c:30:52:27:c2:75:3f:3a:dd:e0:43:69:02:8d:09:26:f3: c9:02:a1:f5:81:31:2e:15:82:fc:f0:a4:53:31:aa:75:d8:09: 62:ae:fd:19:2d:f6:fc:90:01:cb:41:d2:88:cc:02:db:7e:51: 1b:b4:55:a9:42:af:c0:6e:d9:75:8a:cd:b0:c6:b2:ee:14:65: 3a:b0:96:70:3f:0d:91:8c:68:ad:b8:a8:7f:a8:65:f3:c9:37: a2:f5:c3:89 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJMEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE2NzA1QzNBQTU4RTI0 NDUwMjYwMTkxQjg4Rjc1RTlERUNDOTlEMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKEpF9Eorm0P1JWYxCTt5Azm5kpZiKfgsSjebLQvzCPxGSgRcg J3Cy7PNaYGnxrXixKNeB7/5SlfOPVaUsjVDlOazHCyXBJrgdAN8QnhPe8UTmCFpv C/BWrvcENt24S17/IQ0OXjyV9JUVd/yUMsKl8MjW49IVx9JmT7K6D6vTZpqBXrdZ E/fxf0iYI/25vndAsjpAT3fnFTXMwtBiSglfalPfEbjoMB15BVZV/yK11BscTzAy FI9c/jLWBlXjwdoJhRhkW7V0LX4ro5tpBqn2nOjoD7f0Ox8PWpTCeAUJNoWwtETS lN+MzpdCoIPqKnvqnWpxfFvvexnhQneuXTZHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUpnBcOqWOJEUCYBkbiPdenezJnRowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3BuQmNPcVdPSkVVQ1lCa2Jp UGRlbmV6Sm5Sby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nmAwDQYJKoZIhvcNAQELBQADggEBAD8UX3FEroD5qXz9fkyzvr/+osOTC1vWLSpR KqdXWXkZrXSMw7meCWpZF6NYN1H5vrunBK+Y3+e5/cN5bAVAxQzmj1wYKYwvIITX 3UUNEjBDWfeT7E3z0cYn93xKEe1UWoxkN3ReWqTKpnLAYIgVhfqdSrGAYCpzW5/b B9fBUbJ3xW1hLhU9vxjdoXAsWhST+QDEDpe9TD7N/caWofz3zgEMukCMMFInwnU/ Ot3gQ2kCjQkm88kCofWBMS4VgvzwpFMxqnXYCWKu/Rkt9vyQActB0ojMAtt+URu0 ValCr8Bu2XWKzbDGsu4UZTqwlnA/DZGMaK24qH+oZfPJN6L1w4k= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:14 2025 by rpki-client