$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sX-2gsTX7ecXegk2NQWsWvl3Yr0.roa File: sX-2gsTX7ecXegk2NQWsWvl3Yr0.roa (raw, json) Hash identifier: ASGF0eyIva9ZL3UzahpaEG75HtRwEaLKLEcimmmonkg= Subject key identifier: B1:7F:B6:82:C4:D7:ED:E7:17:7A:09:36:35:05:AC:5A:F9:77:62:BD Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23D0 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sX-2gsTX7ecXegk2NQWsWvl3Yr0.roa Signing time: Mon 10 Feb 2025 14:17:57 +0000 ROA not before: Mon 10 Feb 2025 14:17:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 61.60.214.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9168 (0x23d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B17FB682C4D7EDE7177A09363505AC5AF97762BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:57:71:7e:1b:79:67:39:3f:35:9c:f0:2d:09: 5a:da:cc:ab:df:d4:a8:7c:3b:d5:a8:00:dd:7d:3d: aa:17:22:33:0b:85:6c:02:2b:14:8c:e2:bc:e7:ed: a0:bd:7e:bd:c5:dd:49:bd:58:dc:c6:a7:15:64:db: b5:a6:1d:0b:a7:c8:1d:fd:8b:30:48:a5:2f:59:ea: 5a:f1:72:f5:eb:77:62:06:b1:86:6d:77:70:7a:87: 07:95:97:94:8f:75:37:33:23:2f:2b:46:df:8d:c7: 97:4f:71:36:f1:0a:6f:84:92:81:0a:80:58:bf:eb: a4:4c:22:34:50:2d:a8:26:67:29:95:24:59:d3:b3: 51:b0:ff:93:9e:1a:88:56:d8:64:1a:f3:15:d8:b4: 16:75:60:f7:3c:b4:ac:95:1d:ce:14:d4:58:a6:16: 24:13:64:ba:c1:c3:ef:0c:99:c7:41:ba:41:d3:9c: f9:e6:1c:89:0c:83:68:5b:ff:c6:31:d7:f9:92:10: 86:32:ee:c0:71:42:2f:0f:ee:fa:5e:8d:06:49:04: 81:aa:44:5f:e6:2d:3b:b1:76:71:dd:91:21:d5:00: 9c:74:b1:49:17:49:33:d7:16:47:f3:b9:9d:85:40: 65:c3:4b:08:bf:f8:c9:30:42:38:27:a7:e1:88:85: eb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:7F:B6:82:C4:D7:ED:E7:17:7A:09:36:35:05:AC:5A:F9:77:62:BD X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sX-2gsTX7ecXegk2NQWsWvl3Yr0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.214.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:3a:3b:f7:c4:fc:cf:cf:07:31:6f:fa:5f:db:83:2d:ea:9c: ef:10:10:73:4f:98:78:65:5a:e6:aa:54:09:40:86:00:00:5a: b6:d2:75:5b:ff:7e:bd:51:54:69:cf:e2:19:40:68:de:12:34: bd:25:1a:a5:86:4d:93:80:d6:8f:b0:55:92:f3:f9:c1:58:b2: 78:31:07:09:ba:94:93:6c:26:b6:df:13:f8:0e:83:dd:0e:49: c4:4d:44:3d:86:a7:c0:62:df:30:7a:a9:06:76:bb:ea:dd:81: b4:bb:1f:1a:b6:53:ab:bc:ae:fa:08:e6:bf:f0:e7:79:3e:42: dc:ed:89:7e:38:6a:f5:09:dc:5f:8d:0f:cf:40:67:0b:c4:17: 64:80:03:28:5b:80:a4:82:8e:de:d6:af:4a:82:09:22:25:ec: cd:51:90:44:42:a0:a4:cb:a8:e5:d0:bf:9c:81:fc:ec:25:6a: f9:f9:30:49:1d:f4:d3:58:63:e8:f2:c1:76:aa:30:32:ab:cf: 94:bd:b0:31:61:bf:74:d6:27:5b:3d:ac:a0:f6:7f:b4:66:8f: 11:8a:00:7f:64:57:9d:95:34:09:38:ec:f3:95:59:53:06:54: d9:1a:70:fc:59:11:7c:e7:67:9a:b0:bc:23:3f:1d:c4:e8:5d: 2e:08:00:1e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI9AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIxN0ZCNjgyQzREN0VE RTcxNzdBMDkzNjM1MDVBQzVBRjk3NzYyQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTV3F+G3lnOT81nPAtCVrazKvf1Kh8O9WoAN19PaoXIjMLhWwC KxSM4rzn7aC9fr3F3Um9WNzGpxVk27WmHQunyB39izBIpS9Z6lrxcvXrd2IGsYZt d3B6hweVl5SPdTczIy8rRt+Nx5dPcTbxCm+EkoEKgFi/66RMIjRQLagmZymVJFnT s1Gw/5OeGohW2GQa8xXYtBZ1YPc8tKyVHc4U1FimFiQTZLrBw+8MmcdBukHTnPnm HIkMg2hb/8Yx1/mSEIYy7sBxQi8P7vpejQZJBIGqRF/mLTuxdnHdkSHVAJx0sUkX STPXFkfzuZ2FQGXDSwi/+MkwQjgnp+GIhevNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUsX+2gsTX7ecXegk2NQWsWvl3Yr0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3NYLTJnc1RYN2VjWGVnazJO UVdzV3ZsM1lyMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE9 PNYwDQYJKoZIhvcNAQELBQADggEBAGs6O/fE/M/PBzFv+l/bgy3qnO8QEHNPmHhl WuaqVAlAhgAAWrbSdVv/fr1RVGnP4hlAaN4SNL0lGqWGTZOA1o+wVZLz+cFYsngx Bwm6lJNsJrbfE/gOg90OScRNRD2Gp8Bi3zB6qQZ2u+rdgbS7Hxq2U6u8rvoI5r/w 53k+QtztiX44avUJ3F+ND89AZwvEF2SAAyhbgKSCjt7Wr0qCCSIl7M1RkERCoKTL qOXQv5yB/Owlavn5MEkd9NNYY+jywXaqMDKrz5S9sDFhv3TWJ1s9rKD2f7RmjxGK AH9kV52VNAk47POVWVMGVNkacPxZEXznZ5qwvCM/HcToXS4IAB4= -----END CERTIFICATE-----Generated at Mon Apr 7 01:50:43 2025 by rpki-client