$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/waPdGiNzYGKIUaz7mftA3_rxoGg.roa File: waPdGiNzYGKIUaz7mftA3_rxoGg.roa (raw, json) Hash identifier: bZ2i7nnfG3OdPyIRiUUTbJ6oFKcQRs2guCSYk7QF4jY= Subject key identifier: C1:A3:DD:1A:23:73:60:62:88:51:AC:FB:99:FB:40:DF:FA:F1:A0:68 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 236A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/waPdGiNzYGKIUaz7mftA3_rxoGg.roa Signing time: Mon 10 Feb 2025 14:17:34 +0000 ROA not before: Mon 10 Feb 2025 14:17:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 211.76.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9066 (0x236a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C1A3DD1A237360628851ACFB99FB40DFFAF1A068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0a:74:f4:ca:a4:f2:19:fa:19:0f:50:b4:38: 79:bb:a7:7f:6c:9d:b9:4d:09:95:57:af:8f:d1:98: 3e:ae:2b:3d:2a:47:a3:87:1d:a7:36:50:0f:95:01: e3:28:dc:4d:f8:cc:cd:60:2f:80:3b:33:c3:cd:c9: 15:d8:d2:09:78:fc:84:04:30:26:7d:b7:dd:9a:1a: 41:fe:e6:63:d3:a5:8e:da:61:94:80:2c:57:71:3f: 5e:11:6f:d3:13:29:5c:ec:30:15:97:20:40:c3:18: bc:6f:70:2e:b2:c3:ab:06:06:5c:62:a0:bb:17:44: 62:54:6f:9b:5c:87:10:f0:e8:44:4e:ac:26:0a:37: 56:83:08:86:a0:e7:19:ae:6b:f4:96:9d:31:e3:65: cc:25:bf:03:05:68:b1:79:0b:7f:35:f6:04:5c:44: 2e:68:3d:52:dc:c4:60:3d:21:a5:e1:ca:44:d4:30: 1b:b6:aa:7e:ed:3e:58:73:66:74:0b:2a:0e:62:64: 92:50:26:80:95:73:91:3d:08:aa:0d:ff:5a:fb:86: af:ca:8d:7f:2e:80:12:86:80:27:17:2a:a9:3f:98: f7:42:e2:cf:32:51:ca:f4:34:31:38:2f:44:de:b0: f3:c1:5a:e2:16:f5:c2:96:04:cd:b9:89:b6:0a:29: d6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A3:DD:1A:23:73:60:62:88:51:AC:FB:99:FB:40:DF:FA:F1:A0:68 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/waPdGiNzYGKIUaz7mftA3_rxoGg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.62.0/24 Signature Algorithm: sha256WithRSAEncryption 01:37:d0:59:d4:c6:c9:eb:a2:a3:39:9f:c2:d1:03:c9:66:50: e9:66:61:aa:84:be:9e:4b:a6:95:8e:95:ea:fd:e0:7f:45:8c: 33:21:90:a8:b6:03:d6:e0:21:bf:b3:0f:60:bb:db:1a:58:cb: 50:54:80:ab:4f:08:0a:f0:32:4c:7f:19:b7:18:50:ed:6f:ec: 79:e4:8b:dc:30:f9:3e:b8:b8:89:49:1e:c1:0c:b6:71:12:48: 8a:d8:97:3e:9a:27:e7:a6:a7:4f:3c:d3:a7:94:19:d0:71:3f: e2:1b:a3:ad:2d:f4:ad:82:6a:5c:aa:93:3e:62:b9:91:c5:79: 1c:8c:b9:ec:45:ae:6a:e2:6b:52:e2:c2:89:a6:6e:ca:03:d7: 35:b8:1f:c4:27:3d:fe:76:84:fc:01:22:59:91:8b:ab:11:c0: 21:95:49:ae:6c:2b:ee:95:ec:1c:23:11:7b:4b:81:c4:6f:02: 87:7c:ef:32:71:02:1f:4f:e7:7c:1a:32:c8:4c:ba:28:3d:9e: 75:57:4d:05:e5:ab:35:bd:af:fa:a8:69:3c:e3:33:ef:0a:82: dc:3b:17:30:3a:ca:b7:bf:4f:96:61:e2:ad:28:22:31:2e:a4: 11:09:c1:df:d1:21:df:34:1d:ee:0f:ad:95:01:91:c9:64:6d: 3c:76:d3:3b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI2owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMxQTNERDFBMjM3MzYw NjI4ODUxQUNGQjk5RkI0MERGRkFGMUEwNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4CnT0yqTyGfoZD1C0OHm7p39snblNCZVXr4/RmD6uKz0qR6OH Hac2UA+VAeMo3E34zM1gL4A7M8PNyRXY0gl4/IQEMCZ9t92aGkH+5mPTpY7aYZSA LFdxP14Rb9MTKVzsMBWXIEDDGLxvcC6yw6sGBlxioLsXRGJUb5tchxDw6EROrCYK N1aDCIag5xmua/SWnTHjZcwlvwMFaLF5C3819gRcRC5oPVLcxGA9IaXhykTUMBu2 qn7tPlhzZnQLKg5iZJJQJoCVc5E9CKoN/1r7hq/KjX8ugBKGgCcXKqk/mPdC4s8y Ucr0NDE4L0TesPPBWuIW9cKWBM25ibYKKdYhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwaPdGiNzYGKIUaz7mftA3/rxoGgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3dhUGRHaU56WUdLSVVhejdt ZnRBM19yeG9HZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT TD4wDQYJKoZIhvcNAQELBQADggEBAAE30FnUxsnroqM5n8LRA8lmUOlmYaqEvp5L ppWOler94H9FjDMhkKi2A9bgIb+zD2C72xpYy1BUgKtPCArwMkx/GbcYUO1v7Hnk i9ww+T64uIlJHsEMtnESSIrYlz6aJ+emp08806eUGdBxP+Ibo60t9K2Calyqkz5i uZHFeRyMuexFrmria1LiwommbsoD1zW4H8QnPf52hPwBIlmRi6sRwCGVSa5sK+6V 7BwjEXtLgcRvAod87zJxAh9P53waMshMuig9nnVXTQXlqzW9r/qoaTzjM+8Kgtw7 FzA6yre/T5Zh4q0oIjEupBEJwd/RId80He4PrZUBkclkbTx20zs= -----END CERTIFICATE-----Generated at Fri Apr 18 16:54:16 2025 by rpki-client