$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u8qJdr1rugsD0x02YnYf_GiSCJM.roa File: u8qJdr1rugsD0x02YnYf_GiSCJM.roa (raw, json) Hash identifier: ouuZrmp7UHAT/nIFLoeQLjgJkM3pBOpQlRX7buNw8dg= Subject key identifier: BB:CA:89:76:BD:6B:BA:0B:03:D3:1D:36:62:76:1F:FC:68:92:08:93 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2419 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u8qJdr1rugsD0x02YnYf_GiSCJM.roa Signing time: Mon 10 Feb 2025 14:18:16 +0000 ROA not before: Mon 10 Feb 2025 14:18:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 211.76.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9241 (0x2419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BBCA8976BD6BBA0B03D31D3662761FFC68920893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:11:8d:93:34:7a:c0:81:9e:18:32:44:7b:03: 4c:4d:c4:27:06:ce:ae:bf:42:17:db:1f:5a:08:c7: 7a:9d:f0:81:7a:00:74:76:72:73:08:f1:23:1c:fd: 85:78:f0:23:ef:cc:14:2d:f5:5e:89:95:7b:8f:9f: 2d:7d:55:37:72:81:03:ed:6d:66:e7:6c:19:5f:47: ad:03:6b:9d:40:b4:cd:1c:13:86:a2:99:2a:e1:47: 8f:39:b7:52:6d:c0:44:e8:79:d4:0c:75:5f:e3:02: 6c:3e:c1:69:e2:7e:39:e0:e5:61:51:23:bb:4a:e3: c1:89:8a:6c:b8:15:62:57:de:92:e9:a3:5a:54:ad: bb:72:00:b7:40:da:19:41:60:50:bb:09:a2:e6:6c: ae:6d:ca:7f:e0:36:47:27:23:6b:64:e3:05:d8:4e: 57:06:6b:e5:32:c9:af:be:8b:3f:01:02:ff:3d:8b: 80:c4:b3:99:89:a2:cc:4c:55:7d:35:4e:49:a8:a4: 68:41:be:3b:40:1e:dc:e4:8f:77:93:85:f4:9a:35: cf:26:ff:1c:8d:1d:28:fa:3f:08:8a:f8:70:e1:d0: f3:3f:6c:ec:50:aa:4c:3b:0b:6f:30:bd:90:55:27: 43:ab:02:c8:12:62:3c:61:8c:69:89:90:89:a1:94: f7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:CA:89:76:BD:6B:BA:0B:03:D3:1D:36:62:76:1F:FC:68:92:08:93 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u8qJdr1rugsD0x02YnYf_GiSCJM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.78.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:a1:1d:ba:93:4d:d7:97:de:4d:c3:ab:cb:e8:ae:e4:3c:98: 26:18:be:81:93:b5:6b:fb:b5:a3:ed:44:68:8b:6a:b1:89:e1: 82:61:82:d3:26:62:76:23:53:52:7f:02:14:ba:26:38:27:a7: 8a:f7:71:7f:18:ae:a0:0a:c7:93:85:ea:4d:07:e2:0c:3b:f7: 8a:4b:89:c2:cf:9d:35:9a:00:74:5c:82:45:b6:df:ad:7b:a3: 1f:65:c5:bc:3c:48:d5:9e:16:e2:24:51:29:2f:4c:99:b2:54: d4:8a:39:67:1e:c8:2c:48:90:96:af:09:6c:3f:99:60:7c:4f: c3:8d:b3:ca:54:27:91:f0:29:a6:e4:da:e1:a3:b4:60:7b:c0: 30:c0:ef:b4:b4:61:9a:93:73:44:18:41:5f:5d:c5:e4:11:30: 51:78:fc:11:16:5e:94:b3:0d:da:9f:bb:ef:9f:be:fc:1d:82: cf:2f:7f:07:33:91:8f:8c:49:df:47:67:a7:0a:67:c7:6a:81: 80:ef:84:a6:2b:50:7b:43:49:0b:7f:83:c4:a3:ca:47:db:7c: 2c:bf:c4:24:78:ce:f1:56:51:e0:70:f2:6a:ed:62:cd:75:54: c6:5c:c7:c0:18:c7:b2:56:ff:9e:59:c0:01:aa:26:89:ca:e5: 77:20:09:df -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJBkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJCQ0E4OTc2QkQ2QkJB MEIwM0QzMUQzNjYyNzYxRkZDNjg5MjA4OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnEY2TNHrAgZ4YMkR7A0xNxCcGzq6/QhfbH1oIx3qd8IF6AHR2 cnMI8SMc/YV48CPvzBQt9V6JlXuPny19VTdygQPtbWbnbBlfR60Da51AtM0cE4ai mSrhR485t1JtwEToedQMdV/jAmw+wWnifjng5WFRI7tK48GJimy4FWJX3pLpo1pU rbtyALdA2hlBYFC7CaLmbK5tyn/gNkcnI2tk4wXYTlcGa+Uyya++iz8BAv89i4DE s5mJosxMVX01TkmopGhBvjtAHtzkj3eThfSaNc8m/xyNHSj6PwiK+HDh0PM/bOxQ qkw7C28wvZBVJ0OrAsgSYjxhjGmJkImhlPdZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUu8qJdr1rugsD0x02YnYf/GiSCJMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3U4cUpkcjFydWdzRDB4MDJZ bllmX0dpU0NKTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT TE4wDQYJKoZIhvcNAQELBQADggEBAC+hHbqTTdeX3k3Dq8voruQ8mCYYvoGTtWv7 taPtRGiLarGJ4YJhgtMmYnYjU1J/AhS6Jjgnp4r3cX8YrqAKx5OF6k0H4gw794pL icLPnTWaAHRcgkW23617ox9lxbw8SNWeFuIkUSkvTJmyVNSKOWceyCxIkJavCWw/ mWB8T8ONs8pUJ5HwKabk2uGjtGB7wDDA77S0YZqTc0QYQV9dxeQRMFF4/BEWXpSz Ddqfu++fvvwdgs8vfwczkY+MSd9HZ6cKZ8dqgYDvhKYrUHtDSQt/g8SjykfbfCy/ xCR4zvFWUeBw8mrtYs11VMZcx8AYx7JW/55ZwAGqJonK5XcgCd8= -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:16 2025 by rpki-client