$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vPvWXQmiMhf22YAw9jA0p5KmTpI.roa File: vPvWXQmiMhf22YAw9jA0p5KmTpI.roa (raw, json) Hash identifier: pbI6fDClfOCkb6wIL42RIo6gqxtZHdatOXDYhRQ9qLw= Subject key identifier: BC:FB:D6:5D:09:A2:32:17:F6:D9:80:30:F6:30:34:A7:92:A6:4E:92 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 238D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vPvWXQmiMhf22YAw9jA0p5KmTpI.roa Signing time: Mon 10 Feb 2025 14:17:41 +0000 ROA not before: Mon 10 Feb 2025 14:17:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 61.61.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9101 (0x238d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BCFBD65D09A23217F6D98030F63034A792A64E92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ae:91:20:d2:19:ea:d5:71:b0:de:66:5f:1b: 6a:78:e5:4c:51:b7:dc:f7:a9:55:5a:f3:44:44:4b: cd:64:88:09:36:85:2b:dd:d9:62:b1:d8:99:23:e9: 0b:14:32:f1:41:b1:26:c3:04:02:58:f8:c7:a5:b9: c3:21:88:fa:03:32:ee:c9:ef:44:36:5b:d0:f7:71: bf:c8:d0:45:d9:a3:7b:35:13:a9:78:e1:ee:1e:43: 39:c8:15:bd:1d:32:ab:09:59:ba:09:70:a4:1a:3c: 75:1e:18:98:67:4b:d9:70:67:f6:99:16:44:ba:ab: eb:8d:73:3e:0a:8e:cf:61:7d:65:00:f8:fd:f3:16: 11:f6:fe:77:2b:0f:a4:25:5c:e8:f8:2e:5e:8f:57: a5:37:84:7d:5e:75:ad:ab:98:7d:94:ff:78:10:19: 00:c5:a0:85:65:95:39:c9:46:e8:51:b2:79:b1:45: a4:ec:d6:bd:fb:08:46:df:19:3f:0b:eb:04:4a:39: d0:7e:dc:e5:f7:f3:ef:b7:41:c7:57:b2:3d:e6:fd: 2f:00:fd:9b:d1:b3:b8:57:64:06:b4:69:76:af:98: 93:b5:20:24:b0:c4:9f:0b:cb:41:e6:f4:65:45:39: 51:ad:11:aa:42:cc:4a:cb:8f:38:91:17:33:7a:d1: 77:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:FB:D6:5D:09:A2:32:17:F6:D9:80:30:F6:30:34:A7:92:A6:4E:92 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vPvWXQmiMhf22YAw9jA0p5KmTpI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.212.0/22 Signature Algorithm: sha256WithRSAEncryption 51:9a:0a:4d:04:f3:77:73:f5:24:1e:f4:17:3a:00:14:b5:af: 89:55:87:e6:79:85:34:2b:af:f6:ec:a8:3a:be:3c:13:a1:37: 45:03:36:12:f6:08:cc:4b:29:76:eb:17:f6:05:5c:60:8f:e1: f0:27:7c:bc:4a:5c:a8:e1:d1:04:21:6c:12:92:00:cf:28:bf: b7:1a:8b:87:a6:52:d9:98:79:c2:01:66:23:b7:2e:ef:7b:1a: 4b:3a:dd:27:16:8d:70:a6:0e:23:d4:b7:e1:f2:e3:e6:e4:c0: 45:aa:34:75:55:50:ab:e4:db:af:68:9d:37:0f:21:b4:f2:ef: f6:2f:36:c0:62:c9:60:db:8e:41:6d:69:f8:2c:4b:8f:06:e2: 1d:61:5b:13:e8:eb:11:90:47:33:12:c6:f8:ec:ef:ed:a6:86: 58:71:02:34:a3:3c:2e:c9:13:d6:60:47:26:8b:da:07:c9:86: b7:43:3e:e1:7a:9e:e6:9c:fb:2f:ea:c2:db:7d:5d:33:3b:f1: 15:3f:6b:c7:18:72:2e:09:f7:a4:27:31:c1:77:76:f8:26:db: 9c:44:3d:7e:de:ff:41:cb:dc:d1:04:62:30:ef:1d:52:13:fd: fe:12:3c:5c:0b:d8:bf:18:7c:5f:fd:55:1a:6a:73:27:96:13: 0a:ed:12:9b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI40wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJDRkJENjVEMDlBMjMy MTdGNkQ5ODAzMEY2MzAzNEE3OTJBNjRFOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZrpEg0hnq1XGw3mZfG2p45UxRt9z3qVVa80RES81kiAk2hSvd 2WKx2Jkj6QsUMvFBsSbDBAJY+MelucMhiPoDMu7J70Q2W9D3cb/I0EXZo3s1E6l4 4e4eQznIFb0dMqsJWboJcKQaPHUeGJhnS9lwZ/aZFkS6q+uNcz4Kjs9hfWUA+P3z FhH2/ncrD6QlXOj4Ll6PV6U3hH1eda2rmH2U/3gQGQDFoIVllTnJRuhRsnmxRaTs 1r37CEbfGT8L6wRKOdB+3OX38++3QcdXsj3m/S8A/ZvRs7hXZAa0aXavmJO1ICSw xJ8Ly0Hm9GVFOVGtEapCzErLjziRFzN60XdvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUvPvWXQmiMhf22YAw9jA0p5KmTpIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3ZQdldYUW1pTWhmMjJZQXc5 akEwcDVLbVRwSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 PdQwDQYJKoZIhvcNAQELBQADggEBAFGaCk0E83dz9SQe9Bc6ABS1r4lVh+Z5hTQr r/bsqDq+PBOhN0UDNhL2CMxLKXbrF/YFXGCP4fAnfLxKXKjh0QQhbBKSAM8ov7ca i4emUtmYecIBZiO3Lu97Gks63ScWjXCmDiPUt+Hy4+bkwEWqNHVVUKvk269onTcP IbTy7/YvNsBiyWDbjkFtafgsS48G4h1hWxPo6xGQRzMSxvjs7+2mhlhxAjSjPC7J E9ZgRyaL2gfJhrdDPuF6nuac+y/qwtt9XTM78RU/a8cYci4J96QnMcF3dvgm25xE PX7e/0HL3NEEYjDvHVIT/f4SPFwL2L8YfF/9VRpqcyeWEwrtEps= -----END CERTIFICATE-----Generated at Fri Apr 18 16:54:09 2025 by rpki-client