$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qVugkkzAL55vz0_WgLd-lk8Dt1I.roa File: qVugkkzAL55vz0_WgLd-lk8Dt1I.roa (raw, json) Hash identifier: sRMzz2DvdBS+EkiQzZIn1tze+srZ2D0f07jKNHBpqTM= Subject key identifier: A9:5B:A0:92:4C:C0:2F:9E:6F:CF:4F:D6:80:B7:7E:96:4F:03:B7:52 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2396 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qVugkkzAL55vz0_WgLd-lk8Dt1I.roa Signing time: Mon 10 Feb 2025 14:17:43 +0000 ROA not before: Mon 10 Feb 2025 14:17:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 211.76.64.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9110 (0x2396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A95BA0924CC02F9E6FCF4FD680B77E964F03B752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:65:2d:89:0c:e6:da:2f:28:41:68:56:37:1c: 76:0f:c3:cd:25:b9:c2:c1:37:38:85:b3:43:55:61: 7e:64:56:e9:c3:42:3e:18:3a:7d:34:04:e9:a0:96: 6c:a7:3c:ea:9e:25:60:04:10:83:fd:b7:fe:f6:c8: f5:01:93:9c:b9:6e:41:90:29:26:7c:c7:1f:d5:de: bc:e5:11:f8:da:23:0f:e2:11:84:f6:5b:53:f6:ad: cf:71:ea:b1:68:70:ff:65:d8:ef:30:a2:30:59:86: c7:37:34:42:d6:08:c4:8c:cd:0f:c5:0d:8d:3d:cf: f3:1c:ef:23:5f:80:16:ff:db:0f:7f:55:ca:23:a3: f6:91:87:ca:80:aa:de:7a:ef:5c:68:dd:c2:40:e5: e8:71:d7:42:d9:d7:a2:07:7b:6e:b0:a1:46:0e:2d: be:e9:0d:40:96:f2:4d:81:68:b5:1b:99:0f:cd:a8: 4d:40:4a:8b:49:44:4f:a2:e4:cc:6f:d6:cd:70:f6: 37:6f:1b:8b:37:46:cd:5b:15:fb:4b:e5:0f:46:31: 64:b7:99:58:2c:4f:24:53:85:c6:77:34:f5:6d:1b: d8:9c:1b:40:f5:0f:6a:b5:37:91:b6:81:35:73:2f: 54:a7:16:92:14:3c:35:50:01:14:b0:0c:36:2d:f0: f3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:5B:A0:92:4C:C0:2F:9E:6F:CF:4F:D6:80:B7:7E:96:4F:03:B7:52 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qVugkkzAL55vz0_WgLd-lk8Dt1I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.64.0/20 Signature Algorithm: sha256WithRSAEncryption 0a:d4:9c:d2:80:32:94:45:fd:be:43:04:40:61:83:4f:c8:34: 2a:63:4c:71:04:0b:b2:f3:f3:23:96:47:2b:58:e0:b7:f4:a1: 05:8e:d3:9c:11:41:1e:ca:6d:54:4d:f9:8d:bb:ad:02:27:50: 42:69:1c:0b:3f:a3:07:a8:10:ea:37:15:62:4c:56:b1:ad:b7: 18:18:3b:ca:c1:40:98:a3:24:86:47:1e:d5:72:01:f8:9d:b9: 2c:6b:a2:16:4c:dd:b5:46:be:0c:a5:d8:a6:f6:32:f7:6f:dc: c5:1e:58:36:05:02:2f:a5:04:aa:3c:c8:5f:49:47:cd:6a:e2: fa:7a:e2:5c:e6:2f:e0:06:cc:37:7e:11:9c:75:7b:5d:d4:46: c8:c6:5c:56:bd:71:76:a8:a4:77:15:c9:91:f0:87:79:ee:34: 24:6c:2f:de:99:e7:aa:c8:8d:f1:94:b2:48:55:76:85:8e:76: bf:9d:c4:e2:d1:b1:3e:d6:27:5e:f8:45:6a:8f:56:27:51:43: 4a:83:73:0d:59:61:12:d3:f6:03:af:f0:2b:08:7b:31:14:68: b7:41:68:ba:1a:7a:d1:63:62:e9:2d:46:e9:9c:13:2b:67:e0: 0a:78:bd:fd:89:20:30:6c:61:1a:ae:5f:d8:ba:08:31:66:89: 1c:2d:22:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE5NUJBMDkyNENDMDJG OUU2RkNGNEZENjgwQjc3RTk2NEYwM0I3NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/ZS2JDObaLyhBaFY3HHYPw80lucLBNziFs0NVYX5kVunDQj4Y On00BOmglmynPOqeJWAEEIP9t/72yPUBk5y5bkGQKSZ8xx/V3rzlEfjaIw/iEYT2 W1P2rc9x6rFocP9l2O8wojBZhsc3NELWCMSMzQ/FDY09z/Mc7yNfgBb/2w9/Vcoj o/aRh8qAqt5671xo3cJA5ehx10LZ16IHe26woUYOLb7pDUCW8k2BaLUbmQ/NqE1A SotJRE+i5Mxv1s1w9jdvG4s3Rs1bFftL5Q9GMWS3mVgsTyRThcZ3NPVtG9icG0D1 D2q1N5G2gTVzL1SnFpIUPDVQARSwDDYt8PMTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUqVugkkzAL55vz0/WgLd+lk8Dt1IwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3FWdWdra3pBTDU1dnowX1dn TGQtbGs4RHQxSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATT TEAwDQYJKoZIhvcNAQELBQADggEBAArUnNKAMpRF/b5DBEBhg0/INCpjTHEEC7Lz 8yOWRytY4Lf0oQWO05wRQR7KbVRN+Y27rQInUEJpHAs/oweoEOo3FWJMVrGttxgY O8rBQJijJIZHHtVyAfiduSxrohZM3bVGvgyl2Kb2Mvdv3MUeWDYFAi+lBKo8yF9J R81q4vp64lzmL+AGzDd+EZx1e13URsjGXFa9cXaopHcVyZHwh3nuNCRsL96Z56rI jfGUskhVdoWOdr+dxOLRsT7WJ174RWqPVidRQ0qDcw1ZYRLT9gOv8CsIezEUaLdB aLoaetFjYuktRumcEytn4Ap4vf2JIDBsYRquX9i6CDFmiRwtIkg= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:12 2025 by rpki-client