$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xjQCNTRUg5DL9y-OBafuqa-PnC0.roa File: xjQCNTRUg5DL9y-OBafuqa-PnC0.roa (raw, json) Hash identifier: nZmQx2LOQWjSXAlb/3DCZjHLyHGllO2sudKGQMdujk0= Subject key identifier: C6:34:02:35:34:54:83:90:CB:F7:2F:8E:05:A7:EE:A9:AF:8F:9C:2D Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23FA Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xjQCNTRUg5DL9y-OBafuqa-PnC0.roa Signing time: Mon 10 Feb 2025 14:18:09 +0000 ROA not before: Mon 10 Feb 2025 14:18:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 61.60.208.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9210 (0x23fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:09 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C634023534548390CBF72F8E05A7EEA9AF8F9C2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9f:60:44:79:e2:d9:a4:6e:0a:9c:7c:37:8d: 5d:f0:29:bf:d8:1e:8f:e1:a7:74:c1:19:5e:a0:bc: 56:3b:16:a4:ff:ce:f2:35:21:59:7e:74:b3:c6:0c: 4b:3e:e2:cb:4e:0e:59:ab:03:74:cf:e8:6c:47:85: 9c:53:f8:04:a4:73:f2:04:90:e2:af:82:75:60:c7: 7a:a8:4e:21:9e:7b:2f:a8:90:9a:5d:a5:46:6e:5b: 1f:28:1c:24:2b:5c:e2:a0:a1:51:28:f5:0d:19:8a: c1:c3:27:4d:8b:42:7a:4e:7d:9e:1d:7f:d4:e6:dd: 62:a1:e0:0b:4d:19:c3:16:a3:2e:75:fc:06:cf:31: 6e:0c:22:a4:84:53:bc:11:75:80:3c:88:4c:64:2c: 6c:6b:c5:cb:f4:d3:8b:4f:b0:7c:be:e3:d5:95:83: 87:5c:96:6c:df:aa:9b:c2:b8:69:a1:77:a2:d1:b7: 3b:8c:1e:df:b8:db:c4:d1:7b:de:50:c8:55:cb:d9: e7:2a:a5:da:e1:34:ef:39:d0:c1:b4:9f:d0:c7:a9: 80:1c:9a:80:6d:51:b1:26:67:c7:4a:10:c5:51:ef: 41:fb:8f:99:35:0a:73:4e:50:43:9d:d0:1c:28:a8: 86:c2:cf:85:59:9f:6a:da:32:75:ee:c5:fc:12:fa: 9a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:34:02:35:34:54:83:90:CB:F7:2F:8E:05:A7:EE:A9:AF:8F:9C:2D X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xjQCNTRUg5DL9y-OBafuqa-PnC0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.208.0/20 Signature Algorithm: sha256WithRSAEncryption 08:1f:19:9d:53:07:43:59:52:cb:8e:80:3f:57:e8:30:fe:6a: 21:d8:e6:b8:be:af:42:39:d1:1f:d1:6e:10:af:8c:cf:55:13: b0:52:80:1c:47:3e:03:4e:be:b9:3e:c8:89:8f:8b:ca:90:ca: a5:f4:ee:27:b2:57:70:32:9a:84:28:5c:dd:1d:5b:b2:eb:67: 53:c5:6c:4a:8d:3a:b0:34:2b:41:e5:0b:35:f2:64:0e:1d:66: 62:e7:32:07:4a:90:ad:60:29:77:d1:48:61:4a:6d:b1:14:0d: a0:8d:d0:8b:15:15:57:50:55:20:ed:84:4d:4b:a7:45:f4:4f: 92:55:fa:1b:59:37:ae:c6:d5:cb:57:f5:67:3c:8b:41:76:a2: 24:d5:49:e5:80:a6:5f:f5:7c:62:af:3b:65:05:7e:a9:5a:88: 7b:76:4f:42:c6:24:ec:e9:92:9e:61:07:e9:5e:3c:2a:d1:80: 33:3c:83:73:75:7f:74:f8:68:d1:d1:7c:46:80:54:e7:93:e2: d6:cb:f8:0c:8f:a0:2d:74:dd:fb:7b:15:e5:25:5a:48:34:9e: e0:4e:7e:b9:1f:87:9b:3d:dc:50:e5:a2:29:4e:13:c0:f3:e8: 95:15:da:ba:db:1a:78:69:2b:c7:4d:6f:40:6b:bf:4a:00:7e: 39:49:c7:69 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI/owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2MzQwMjM1MzQ1NDgz OTBDQkY3MkY4RTA1QTdFRUE5QUY4RjlDMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFn2BEeeLZpG4KnHw3jV3wKb/YHo/hp3TBGV6gvFY7FqT/zvI1 IVl+dLPGDEs+4stODlmrA3TP6GxHhZxT+ASkc/IEkOKvgnVgx3qoTiGeey+okJpd pUZuWx8oHCQrXOKgoVEo9Q0ZisHDJ02LQnpOfZ4df9Tm3WKh4AtNGcMWoy51/AbP MW4MIqSEU7wRdYA8iExkLGxrxcv004tPsHy+49WVg4dclmzfqpvCuGmhd6LRtzuM Ht+428TRe95QyFXL2ecqpdrhNO850MG0n9DHqYAcmoBtUbEmZ8dKEMVR70H7j5k1 CnNOUEOd0BwoqIbCz4VZn2raMnXuxfwS+pqVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxjQCNTRUg5DL9y+OBafuqa+PnC0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3hqUUNOVFJVZzVETDl5LU9C YWZ1cWEtUG5DMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 PNAwDQYJKoZIhvcNAQELBQADggEBAAgfGZ1TB0NZUsuOgD9X6DD+aiHY5ri+r0I5 0R/RbhCvjM9VE7BSgBxHPgNOvrk+yImPi8qQyqX07ieyV3AymoQoXN0dW7LrZ1PF bEqNOrA0K0HlCzXyZA4dZmLnMgdKkK1gKXfRSGFKbbEUDaCN0IsVFVdQVSDthE1L p0X0T5JV+htZN67G1ctX9Wc8i0F2oiTVSeWApl/1fGKvO2UFfqlaiHt2T0LGJOzp kp5hB+lePCrRgDM8g3N1f3T4aNHRfEaAVOeT4tbL+AyPoC103ft7FeUlWkg0nuBO frkfh5s93FDloilOE8Dz6JUV2rrbGnhpK8dNb0Brv0oAfjlJx2k= -----END CERTIFICATE-----Generated at Thu Apr 17 21:01:04 2025 by rpki-client