$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/q2MNDN3_UX48icDWvfRV6IL55Gs.roa File: q2MNDN3_UX48icDWvfRV6IL55Gs.roa (raw, json) Hash identifier: TiaPY2zhn0kcv9RC9FZFpLmPOZKYgXzdLh6/C0zAWTc= Subject key identifier: AB:63:0D:0C:DD:FF:51:7E:3C:89:C0:D6:BD:F4:55:E8:82:F9:E4:6B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 235F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/q2MNDN3_UX48icDWvfRV6IL55Gs.roa Signing time: Mon 10 Feb 2025 14:17:31 +0000 ROA not before: Mon 10 Feb 2025 14:17:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9055 (0x235f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:31 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AB630D0CDDFF517E3C89C0D6BDF455E882F9E46B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:11:71:32:dd:39:ad:85:04:de:1f:c9:9b:dd: c5:83:e0:50:e4:c4:99:07:24:b8:0b:29:0e:d6:f0: ae:cf:d9:c6:c4:2e:82:c0:04:47:57:38:e4:60:92: 4a:5b:fc:ce:ee:2a:93:c0:4a:48:13:be:c6:27:50: 58:3a:42:e4:7f:a6:95:0f:07:f5:20:ca:dd:37:04: 22:75:7e:4f:ed:85:69:e5:ff:1f:1f:52:28:ac:b2: a8:3f:1e:6f:c2:71:3d:eb:77:bd:68:2d:5e:f7:01: 17:c0:4e:72:43:70:fc:f4:b0:e3:1a:dd:db:11:c3: f4:49:7c:43:bd:db:f7:dd:67:dc:a3:21:a8:fc:fc: ba:d1:97:3b:6d:23:a8:59:df:16:e3:2f:1c:1c:a6: f1:53:7d:39:f0:bf:ed:ec:b0:4d:a9:e1:2e:fd:c0: 61:ec:7d:84:d2:b2:53:4d:ab:ad:09:17:de:1a:f2: 28:66:96:3a:5f:ff:74:ea:fb:4c:7b:23:e1:c2:b5: e2:f3:14:b6:cc:bc:8b:78:12:3a:f6:bb:b9:48:50: 68:15:d3:12:82:09:e2:3e:00:5c:08:3a:f6:00:87: b7:ee:d8:25:24:1b:f6:f4:60:22:4c:99:29:8e:76: 72:1e:c5:1b:4f:b4:75:dc:0b:a5:b3:de:d8:1c:4a: 50:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:63:0D:0C:DD:FF:51:7E:3C:89:C0:D6:BD:F4:55:E8:82:F9:E4:6B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/q2MNDN3_UX48icDWvfRV6IL55Gs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.56.0/21 Signature Algorithm: sha256WithRSAEncryption 96:7c:c2:be:37:f6:72:ab:aa:20:44:de:6a:b3:74:06:ff:09: 1a:dc:40:38:66:0b:f5:d0:2d:11:44:2c:ae:c5:1a:39:d6:fb: e2:f8:e4:42:38:30:77:21:65:42:f2:a0:e2:e1:f3:19:f0:7e: c8:e6:53:23:13:04:10:71:31:da:38:05:5f:f4:12:6c:13:52: 45:90:4a:6d:8e:d1:03:35:32:bb:a4:6f:24:4d:a2:7e:32:f4: 3d:c6:e2:c2:d0:1f:72:1f:99:15:4d:7a:d9:64:b4:f4:f9:17: 64:db:cc:bd:9e:7d:ed:97:f9:96:8e:6c:92:1f:b2:0c:14:53: c6:ac:c3:c7:3a:3c:c5:70:33:44:3a:5e:30:76:f2:22:36:8d: 5b:05:92:fb:df:db:cf:88:87:bf:75:a6:f5:5a:8d:d7:54:1b: 14:bc:9f:84:a3:05:ce:5c:84:fd:06:44:0b:b5:71:62:05:c6: fd:82:18:7c:50:86:f2:d5:63:91:f2:0e:bf:7f:de:ed:b5:0b: 8e:a2:58:e5:51:f5:b7:75:58:a4:a0:f2:e2:1e:c6:75:f3:2c: 49:e7:c5:9d:dd:9e:e3:e7:50:a2:4e:46:6d:e9:6d:8e:a1:36: c9:c3:e9:6e:ac:e5:fc:8b:16:41:0c:16:10:92:68:76:79:ea: 0c:bc:93:04 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI18wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFCNjMwRDBDRERGRjUx N0UzQzg5QzBENkJERjQ1NUU4ODJGOUU0NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7EXEy3TmthQTeH8mb3cWD4FDkxJkHJLgLKQ7W8K7P2cbELoLA BEdXOORgkkpb/M7uKpPASkgTvsYnUFg6QuR/ppUPB/Ugyt03BCJ1fk/thWnl/x8f Uiissqg/Hm/CcT3rd71oLV73ARfATnJDcPz0sOMa3dsRw/RJfEO92/fdZ9yjIaj8 /LrRlzttI6hZ3xbjLxwcpvFTfTnwv+3ssE2p4S79wGHsfYTSslNNq60JF94a8ihm ljpf/3Tq+0x7I+HCteLzFLbMvIt4Ejr2u7lIUGgV0xKCCeI+AFwIOvYAh7fu2CUk G/b0YCJMmSmOdnIexRtPtHXcC6Wz3tgcSlBXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUq2MNDN3/UX48icDWvfRV6IL55GswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3EyTU5ETjNfVVg0OGljRFd2 ZlJWNklMNTVHcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx njgwDQYJKoZIhvcNAQELBQADggEBAJZ8wr439nKrqiBE3mqzdAb/CRrcQDhmC/XQ LRFELK7FGjnW++L45EI4MHchZULyoOLh8xnwfsjmUyMTBBBxMdo4BV/0EmwTUkWQ Sm2O0QM1MrukbyRNon4y9D3G4sLQH3IfmRVNetlktPT5F2TbzL2efe2X+ZaObJIf sgwUU8asw8c6PMVwM0Q6XjB28iI2jVsFkvvf28+Ih791pvVajddUGxS8n4SjBc5c hP0GRAu1cWIFxv2CGHxQhvLVY5HyDr9/3u21C46iWOVR9bd1WKSg8uIexnXzLEnn xZ3dnuPnUKJORm3pbY6hNsnD6W6s5fyLFkEMFhCSaHZ56gy8kwQ= -----END CERTIFICATE-----Generated at Fri Apr 18 16:47:41 2025 by rpki-client