$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yOg_1i-tXmz6XtGd5Aqa1L99hgU.roa File: yOg_1i-tXmz6XtGd5Aqa1L99hgU.roa (raw, json) Hash identifier: vC7IGhM28bdSXQajT4K8A64D5AqaTYg4vJLwHiR1FdE= Subject key identifier: C8:E8:3F:D6:2F:AD:5E:6C:FA:5E:D1:9D:E4:0A:9A:D4:BF:7D:86:05 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2351 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yOg_1i-tXmz6XtGd5Aqa1L99hgU.roa Signing time: Mon 10 Feb 2025 14:17:27 +0000 ROA not before: Mon 10 Feb 2025 14:17:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 12:17:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9041 (0x2351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C8E83FD62FAD5E6CFA5ED19DE40A9AD4BF7D8605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f7:95:64:8e:04:97:d0:95:e2:f7:8e:9c:76: 1b:6a:b2:e9:16:67:e8:54:39:d7:e1:f9:2e:0d:60: 3f:ca:02:6c:a1:62:86:ea:c3:5c:f9:6e:58:0d:0b: aa:99:a3:36:0b:15:03:26:e4:cb:6f:16:27:69:f7: 04:cd:9a:f7:4b:43:97:06:02:46:b7:a0:32:9c:01: 82:da:27:f3:75:da:e1:0a:9f:ac:43:6e:45:36:26: 23:8c:bf:03:92:e2:e8:f4:63:54:70:bd:f5:c9:d1: 8a:be:16:1a:ad:c1:3b:9d:82:87:a7:bb:1a:c2:65: e2:db:5c:d7:bd:1a:da:45:2b:a3:b6:e5:54:a3:f0: b6:d3:c5:2e:4e:a4:8b:e8:07:37:4b:ba:59:e0:b3: 21:6c:61:0b:5b:e7:08:f4:2b:27:11:98:c8:92:c3: ea:ac:5e:99:1e:75:ec:45:ff:e6:da:5d:63:20:27: 7e:a3:6a:d6:92:f6:21:ec:0f:a8:57:85:0c:8b:45: 5e:c3:1a:29:01:bd:a1:ef:6b:b4:89:e2:77:01:c9: 71:a8:95:07:71:81:2d:21:d9:72:dd:a3:a6:17:6b: e5:9f:0d:9a:b3:19:c7:f9:ee:70:01:ff:a8:c8:58: b3:cf:7e:95:19:6c:53:32:60:28:30:40:60:31:8c: c5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E8:3F:D6:2F:AD:5E:6C:FA:5E:D1:9D:E4:0A:9A:D4:BF:7D:86:05 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yOg_1i-tXmz6XtGd5Aqa1L99hgU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.116.0/22 Signature Algorithm: sha256WithRSAEncryption 79:bd:18:43:9b:7b:81:67:65:98:8e:6f:91:34:69:ce:db:ad: 37:5f:98:5c:76:25:ef:11:5d:4b:9f:80:3a:50:4f:1d:32:bf: cf:d3:07:c0:a9:5e:f5:d3:34:a0:d1:0b:2b:a5:40:75:7e:be: 4a:4f:89:53:87:69:12:0a:2f:15:f4:e7:6f:28:0f:cc:24:7d: 20:07:9a:4d:a7:15:b8:5b:49:52:bf:a6:92:c9:f8:a0:e9:f4: a0:0c:2d:39:68:12:33:d5:cd:6a:7c:4e:65:3c:a2:9f:10:a4: 88:b4:95:89:ec:ec:bd:3f:d1:a2:6d:03:cc:67:ca:43:6a:91: 1a:35:d4:8b:a4:ad:9f:9a:67:47:f9:46:d6:11:78:93:90:9d: 4f:7f:18:56:6b:16:84:7f:b2:a0:88:69:aa:1b:c3:c2:32:94: 09:61:eb:0a:5f:10:56:5f:5e:c5:5f:ed:9c:e5:ea:bf:43:79: c1:67:81:d3:b4:17:9d:c4:83:3d:ea:ae:f0:c9:82:86:78:70: 29:f2:6c:5b:69:ca:9e:69:53:f1:be:f3:20:52:cd:4f:8f:24: 5e:fb:75:c9:24:5b:ab:7f:b4:e8:32:6a:3c:58:70:df:22:ec: cc:98:82:61:23:76:27:99:5d:ea:df:b5:9e:37:40:d7:50:fb: d0:9e:c1:8b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI1EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM4RTgzRkQ2MkZBRDVF NkNGQTVFRDE5REU0MEE5QUQ0QkY3RDg2MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI95VkjgSX0JXi946cdhtqsukWZ+hUOdfh+S4NYD/KAmyhYobq w1z5blgNC6qZozYLFQMm5MtvFidp9wTNmvdLQ5cGAka3oDKcAYLaJ/N12uEKn6xD bkU2JiOMvwOS4uj0Y1RwvfXJ0Yq+FhqtwTudgoenuxrCZeLbXNe9GtpFK6O25VSj 8LbTxS5OpIvoBzdLulngsyFsYQtb5wj0KycRmMiSw+qsXpkedexF/+baXWMgJ36j ataS9iHsD6hXhQyLRV7DGikBvaHva7SJ4ncByXGolQdxgS0h2XLdo6YXa+WfDZqz Gcf57nAB/6jIWLPPfpUZbFMyYCgwQGAxjMU/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyOg/1i+tXmz6XtGd5Aqa1L99hgUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3lPZ18xaS10WG16Nlh0R2Q1 QXFhMUw5OWhnVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2nQwDQYJKoZIhvcNAQELBQADggEBAHm9GEObe4FnZZiOb5E0ac7brTdfmFx2Je8R XUufgDpQTx0yv8/TB8CpXvXTNKDRCyulQHV+vkpPiVOHaRIKLxX0528oD8wkfSAH mk2nFbhbSVK/ppLJ+KDp9KAMLTloEjPVzWp8TmU8op8QpIi0lYns7L0/0aJtA8xn ykNqkRo11IukrZ+aZ0f5RtYReJOQnU9/GFZrFoR/sqCIaaobw8IylAlh6wpfEFZf XsVf7Zzl6r9DecFngdO0F53Egz3qrvDJgoZ4cCnybFtpyp5pU/G+8yBSzU+PJF77 dckkW6t/tOgyajxYcN8i7MyYgmEjdieZXerftZ43QNdQ+9CewYs= -----END CERTIFICATE-----Generated at Sat Apr 19 10:10:55 2025 by rpki-client