$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rcEa3x9RMbGRtW-ydblWrGvQUHo.roa File: rcEa3x9RMbGRtW-ydblWrGvQUHo.roa (raw, json) Hash identifier: ybKJeOP4AO9H9esw8mU2cb+d8p0AZUE4/crq4K7DVbs= Subject key identifier: AD:C1:1A:DF:1F:51:31:B1:91:B5:6F:B2:75:B9:56:AC:6B:D0:50:7A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2490 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rcEa3x9RMbGRtW-ydblWrGvQUHo.roa Signing time: Mon 10 Feb 2025 14:18:47 +0000 ROA not before: Mon 10 Feb 2025 14:18:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9360 (0x2490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ADC11ADF1F5131B191B56FB275B956AC6BD0507A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7b:87:6c:c3:1e:92:04:70:64:a8:4d:55:ea: b5:29:12:d3:a9:59:62:36:ae:4c:ff:d5:c3:38:e0: ce:bf:b3:b6:93:65:da:3d:4a:78:a9:f8:bc:af:98: 50:fa:e8:21:84:08:db:c9:65:39:c1:a4:63:cb:e6: c1:9d:2b:61:93:42:d4:e2:b5:5e:99:41:15:53:68: ba:47:5a:70:b1:65:2f:0c:e4:6e:f7:fe:3a:fe:8d: 38:62:f7:6b:65:02:ac:ea:03:85:8d:cc:29:c4:36: 7a:b3:f1:c5:cf:3c:a4:04:d6:c0:4d:8a:93:15:e5: 51:9b:82:f8:bc:b9:82:87:ba:b2:d2:47:5d:95:8d: 1c:7e:c9:65:a7:a6:12:ad:2a:b3:69:06:63:b6:bb: d9:53:1c:76:75:c5:6c:48:fc:e0:5a:78:22:6d:50: fb:9a:5a:e0:93:1d:d4:d2:e2:e6:3f:ad:5b:e3:c9: bc:f9:f8:be:49:5d:1c:db:87:4d:b7:34:5b:a2:d2: 3b:65:72:0f:14:93:80:2b:dc:76:20:59:b6:a6:b5: 20:22:14:7a:16:7c:3d:ea:80:90:11:74:9d:a8:ab: 91:e2:9c:61:c0:86:db:7b:a5:1f:21:fd:39:41:45: 37:be:44:82:98:a9:33:ae:ce:41:86:ea:ab:f2:86: c9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C1:1A:DF:1F:51:31:B1:91:B5:6F:B2:75:B9:56:AC:6B:D0:50:7A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rcEa3x9RMbGRtW-ydblWrGvQUHo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.40.0/21 Signature Algorithm: sha256WithRSAEncryption 3a:e9:18:d5:db:12:38:1e:52:fc:ae:a7:1b:ce:19:39:b1:d7: 2b:0e:ed:85:bf:a7:b5:2d:17:3e:99:70:fa:f2:b3:25:e4:1f: d8:60:1c:29:b4:ce:cb:77:d9:ee:81:01:43:82:08:3e:82:d5: 6d:ca:ad:d9:0e:4a:a1:00:7b:85:14:5c:01:57:48:54:63:2a: 90:fe:25:06:09:49:bc:f4:7c:9b:77:06:6c:40:33:4c:6a:90: bf:0d:f1:59:59:c3:ea:ac:c1:ce:33:ba:56:62:d1:8e:3d:f9: 9c:7f:ba:90:b1:91:b7:67:5b:7b:bb:41:2c:70:b2:8b:56:a7: 12:02:22:3c:c2:38:bd:f2:a8:ba:77:f3:6b:b2:06:eb:5f:b6: 71:47:f1:d7:f6:5d:4c:ee:0e:95:65:b8:b9:d5:0a:72:d0:1b: ce:6d:4d:9c:53:fd:76:ac:c9:3b:1f:83:e3:3c:4a:54:d2:3b: fc:4c:e7:15:f7:17:c6:72:6b:05:55:72:9f:77:cd:d6:a9:d2: be:01:98:08:38:c8:59:92:d6:30:26:6f:d3:4c:22:4e:57:bd: 9f:a8:3d:6f:f5:d8:c8:85:c1:72:a6:80:18:f8:06:c4:5b:55: 17:78:80:6c:d2:93:01:d1:69:61:9d:f6:2d:0d:33:b9:85:ed: 74:0b:17:f1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFEQzExQURGMUY1MTMx QjE5MUI1NkZCMjc1Qjk1NkFDNkJEMDUwN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0e4dswx6SBHBkqE1V6rUpEtOpWWI2rkz/1cM44M6/s7aTZdo9 Snip+LyvmFD66CGECNvJZTnBpGPL5sGdK2GTQtTitV6ZQRVTaLpHWnCxZS8M5G73 /jr+jThi92tlAqzqA4WNzCnENnqz8cXPPKQE1sBNipMV5VGbgvi8uYKHurLSR12V jRx+yWWnphKtKrNpBmO2u9lTHHZ1xWxI/OBaeCJtUPuaWuCTHdTS4uY/rVvjybz5 +L5JXRzbh023NFui0jtlcg8Uk4Ar3HYgWbamtSAiFHoWfD3qgJARdJ2oq5HinGHA htt7pR8h/TlBRTe+RIKYqTOuzkGG6qvyhsnrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrcEa3x9RMbGRtW+ydblWrGvQUHowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3JjRWEzeDlSTWJHUnRXLXlk YmxXckd2UVVIby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nigwDQYJKoZIhvcNAQELBQADggEBADrpGNXbEjgeUvyupxvOGTmx1ysO7YW/p7Ut Fz6ZcPrysyXkH9hgHCm0zst32e6BAUOCCD6C1W3KrdkOSqEAe4UUXAFXSFRjKpD+ JQYJSbz0fJt3BmxAM0xqkL8N8VlZw+qswc4zulZi0Y49+Zx/upCxkbdnW3u7QSxw sotWpxICIjzCOL3yqLp382uyButftnFH8df2XUzuDpVluLnVCnLQG85tTZxT/Xas yTsfg+M8SlTSO/xM5xX3F8ZyawVVcp93zdap0r4BmAg4yFmS1jAmb9NMIk5XvZ+o PW/12MiFwXKmgBj4BsRbVRd4gGzSkwHRaWGd9i0NM7mF7XQLF/E= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:18 2025 by rpki-client