$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tKawwTOkVhOVxJ6X6T9N3stFmbo.roa File: tKawwTOkVhOVxJ6X6T9N3stFmbo.roa (raw, json) Hash identifier: DN7bpLsRF92UkYn765QoEOEoQjr0s1n2iXGeWdvqs94= Subject key identifier: B4:A6:B0:C1:33:A4:56:13:95:C4:9E:97:E9:3F:4D:DE:CB:45:99:BA Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2457 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tKawwTOkVhOVxJ6X6T9N3stFmbo.roa Signing time: Mon 10 Feb 2025 14:18:32 +0000 ROA not before: Mon 10 Feb 2025 14:18:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 119.77.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9303 (0x2457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:32 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B4A6B0C133A4561395C49E97E93F4DDECB4599BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4c:89:a2:07:66:14:4e:dc:b6:f4:bf:cc:fa: 3e:fc:e1:ec:91:3c:0f:14:52:90:a0:9e:91:05:90: 64:5e:59:dd:14:5b:b5:79:20:87:fa:3f:2d:76:74: 82:99:55:b4:f4:eb:f5:4d:72:f0:32:20:55:13:4d: ab:02:e1:e6:7a:d0:5a:ce:fb:a4:9d:da:35:e9:d1: f3:72:5d:8c:28:7c:09:38:6b:80:61:91:2c:b4:f6: df:77:84:d8:34:f5:87:4b:b0:35:b7:e1:38:12:92: 54:0b:60:2b:06:e8:0a:f7:ac:fb:29:46:a4:c9:bd: 74:b7:3f:d0:a2:8e:0d:94:c4:87:c5:22:89:97:ce: f4:39:0d:46:8b:6a:da:da:da:1a:c1:eb:ee:0a:2e: 7a:a3:e0:72:b1:25:b9:e4:fa:29:55:cc:de:1b:3b: 96:78:b5:df:52:2d:3b:db:b3:46:f1:e8:73:d4:ed: 6c:0e:01:de:15:4d:cc:78:dd:f8:11:13:33:0c:2f: 90:7b:58:82:ce:35:66:7d:4f:d9:30:fb:60:d2:86: 16:e4:ea:a1:be:04:df:ed:de:43:f2:ce:20:de:73: e8:cc:84:fd:3f:68:bf:a6:ab:d6:fb:32:5b:4a:9d: 8c:98:6d:00:70:9b:ef:52:64:75:9d:e5:40:08:d0: 24:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A6:B0:C1:33:A4:56:13:95:C4:9E:97:E9:3F:4D:DE:CB:45:99:BA X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tKawwTOkVhOVxJ6X6T9N3stFmbo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.192.0/19 Signature Algorithm: sha256WithRSAEncryption 43:c3:30:4a:7a:a7:6e:3d:67:24:2c:ad:e7:f6:04:25:8e:ac: 9e:0d:1c:84:5f:0a:96:d4:e9:ed:12:15:53:68:31:bd:17:ca: d1:24:45:b4:ee:05:d1:76:fb:58:d2:4e:16:18:39:75:7d:76: 18:9c:04:c3:a7:45:78:1b:7a:d1:14:3e:c9:38:d3:c6:26:31: 45:b5:28:19:68:e2:16:05:9c:8c:89:d8:c7:4f:75:71:13:2f: a5:40:22:63:50:af:44:60:42:22:2e:8d:5e:94:a8:70:2e:06: 79:56:8c:5a:21:f2:52:98:e7:50:6a:2f:57:f5:b6:8f:36:f7: f0:fb:43:a6:b1:c6:78:39:28:32:e5:bc:3d:f2:e8:80:cd:10: 2b:07:ba:22:2a:ff:4d:8d:93:dc:48:ec:f4:69:6f:ac:5b:44: db:74:c4:dc:fb:5f:30:ec:09:51:a1:b0:d4:68:ab:1e:e8:ed: 62:44:49:53:45:bf:0c:18:fc:09:29:ab:f3:94:c2:53:3e:ae: a9:00:7c:d3:00:77:a8:12:0c:e4:ab:bb:88:c7:76:d7:a0:59: 04:86:f4:f2:c7:ae:21:1d:9a:e8:c5:89:2b:c0:75:ae:83:af: 5e:25:2e:ec:03:53:64:40:97:ae:12:e6:a3:96:2d:8a:e2:53: 0f:7f:ba:4b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJFcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI0QTZCMEMxMzNBNDU2 MTM5NUM0OUU5N0U5M0Y0RERFQ0I0NTk5QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDTImiB2YUTty29L/M+j784eyRPA8UUpCgnpEFkGReWd0UW7V5 IIf6Py12dIKZVbT06/VNcvAyIFUTTasC4eZ60FrO+6Sd2jXp0fNyXYwofAk4a4Bh kSy09t93hNg09YdLsDW34TgSklQLYCsG6Ar3rPspRqTJvXS3P9Cijg2UxIfFIomX zvQ5DUaLatra2hrB6+4KLnqj4HKxJbnk+ilVzN4bO5Z4td9SLTvbs0bx6HPU7WwO Ad4VTcx43fgREzMML5B7WILONWZ9T9kw+2DShhbk6qG+BN/t3kPyziDec+jMhP0/ aL+mq9b7MltKnYyYbQBwm+9SZHWd5UAI0CQdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtKawwTOkVhOVxJ6X6T9N3stFmbowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3RLYXd3VE9rVmhPVnhKNlg2 VDlOM3N0Rm1iby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV3 TcAwDQYJKoZIhvcNAQELBQADggEBAEPDMEp6p249ZyQsref2BCWOrJ4NHIRfCpbU 6e0SFVNoMb0XytEkRbTuBdF2+1jSThYYOXV9dhicBMOnRXgbetEUPsk408YmMUW1 KBlo4hYFnIyJ2MdPdXETL6VAImNQr0RgQiIujV6UqHAuBnlWjFoh8lKY51BqL1f1 to829/D7Q6axxng5KDLlvD3y6IDNECsHuiIq/02Nk9xI7PRpb6xbRNt0xNz7XzDs CVGhsNRoqx7o7WJESVNFvwwY/Akpq/OUwlM+rqkAfNMAd6gSDOSru4jHdtegWQSG 9PLHriEdmujFiSvAda6Dr14lLuwDU2RAl64S5qOWLYriUw9/uks= -----END CERTIFICATE-----Generated at Fri Apr 18 16:51:44 2025 by rpki-client