$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yQZCMpWaHy-oHbIquZF1akZTMNY.roa File: yQZCMpWaHy-oHbIquZF1akZTMNY.roa (raw, json) Hash identifier: muTHOfOvGddwXpZfappKjy3K/6NrjxOk62bfXfwleIQ= Subject key identifier: C9:06:42:32:95:9A:1F:2F:A8:1D:B2:2A:B9:91:75:6A:46:53:30:D6 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2356 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yQZCMpWaHy-oHbIquZF1akZTMNY.roa Signing time: Mon 10 Feb 2025 14:17:28 +0000 ROA not before: Mon 10 Feb 2025 14:17:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24613 IP address blocks: 122.100.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9046 (0x2356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C9064232959A1F2FA81DB22AB991756A465330D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d9:fc:e0:9d:9d:13:64:3b:bc:3f:17:5d:b4: 13:bd:c4:ad:9e:bf:7e:c5:1a:f6:5c:b5:09:cd:e8: 0f:56:f2:6e:d9:45:75:3e:9a:42:bb:36:f1:2b:bc: 6a:a9:dc:a4:fb:e6:e9:be:d8:d7:dc:68:c1:93:30: 38:b8:2f:5a:88:ee:24:f9:32:47:3e:47:b2:cb:4c: 4f:a1:08:d4:b7:c0:a0:d9:44:0c:32:75:92:1d:23: ba:81:c3:99:e6:6d:0b:ce:21:6a:77:66:d3:55:1e: 59:92:b8:dc:b9:93:4a:d4:86:52:85:5f:3d:59:09: f2:b5:3e:98:c9:a4:98:fc:5d:66:ed:f0:ac:71:aa: cf:cd:4e:16:42:21:0d:3a:9d:64:35:02:14:e3:85: 70:a1:03:15:e3:cd:67:f8:97:88:a3:e2:4d:0b:da: 3b:3e:8a:31:93:a0:38:6b:c6:59:61:0b:15:b3:94: b4:cd:ad:16:7c:9d:99:fd:ab:f8:04:36:16:dc:32: 2a:89:bc:72:1c:4c:a5:3f:a2:9d:68:cc:ad:de:c1: 3d:a9:d8:7d:be:ff:26:e3:11:e6:8b:70:7a:b5:2c: 55:4d:d8:1d:30:b7:39:b8:a9:76:f1:8a:9c:2d:ca: ba:dd:58:85:6f:56:37:fb:ce:3c:93:3d:c2:0c:1d: 56:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:06:42:32:95:9A:1F:2F:A8:1D:B2:2A:B9:91:75:6A:46:53:30:D6 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yQZCMpWaHy-oHbIquZF1akZTMNY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.64.0/18 Signature Algorithm: sha256WithRSAEncryption 9b:ae:c4:0a:5e:67:21:14:01:9f:a8:aa:c3:f3:7c:f2:76:c8: 37:79:c3:e2:08:43:80:88:0b:65:14:a0:ce:ca:97:75:44:fd: a9:01:07:3b:d9:2c:72:cd:da:47:ef:84:51:d1:79:b8:15:7b: 16:de:78:8f:9f:80:17:ce:9e:c1:5e:2f:c4:a5:99:23:cf:a3: 26:9c:bc:4b:36:2e:bb:32:35:46:6b:31:8a:0a:a9:40:23:ea: fc:25:d2:55:de:64:19:ee:86:bb:f7:44:fa:55:98:e9:9a:96: 2a:d7:16:66:3f:e0:b2:d3:0c:de:94:9e:c3:67:1a:41:f6:4c: 68:20:1a:72:50:41:cf:fd:f0:f3:4d:b1:66:72:91:3a:e9:72: fc:18:92:f2:38:17:1c:5d:33:4b:dc:fc:3b:4a:77:c5:d0:08: 97:f7:d7:e4:e3:ef:ea:4e:1d:07:e6:ef:a2:e0:f1:eb:6f:12: 89:f3:0a:1b:30:aa:df:7e:86:75:96:1c:70:e9:b6:44:9e:aa: 27:07:d2:43:5d:d7:f9:2c:e4:07:48:4a:65:7f:94:ea:1a:31: e9:6c:c4:aa:89:86:6e:ae:18:16:ca:b0:36:a0:9d:16:65:58: 1f:24:ef:85:4f:5b:56:39:25:cb:8c:33:b5:8f:f6:ec:1f:00: 6f:91:b8:83 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI1YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM5MDY0MjMyOTU5QTFG MkZBODFEQjIyQUI5OTE3NTZBNDY1MzMwRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG2fzgnZ0TZDu8PxddtBO9xK2ev37FGvZctQnN6A9W8m7ZRXU+ mkK7NvErvGqp3KT75um+2NfcaMGTMDi4L1qI7iT5Mkc+R7LLTE+hCNS3wKDZRAwy dZIdI7qBw5nmbQvOIWp3ZtNVHlmSuNy5k0rUhlKFXz1ZCfK1PpjJpJj8XWbt8Kxx qs/NThZCIQ06nWQ1AhTjhXChAxXjzWf4l4ij4k0L2js+ijGToDhrxllhCxWzlLTN rRZ8nZn9q/gENhbcMiqJvHIcTKU/op1ozK3ewT2p2H2+/ybjEeaLcHq1LFVN2B0w tzm4qXbxipwtyrrdWIVvVjf7zjyTPcIMHVYHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyQZCMpWaHy+oHbIquZF1akZTMNYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3lRWkNNcFdhSHktb0hiSXF1 WkYxYWtaVE1OWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6 ZEAwDQYJKoZIhvcNAQELBQADggEBAJuuxApeZyEUAZ+oqsPzfPJ2yDd5w+IIQ4CI C2UUoM7Kl3VE/akBBzvZLHLN2kfvhFHRebgVexbeeI+fgBfOnsFeL8SlmSPPoyac vEs2LrsyNUZrMYoKqUAj6vwl0lXeZBnuhrv3RPpVmOmalirXFmY/4LLTDN6UnsNn GkH2TGggGnJQQc/98PNNsWZykTrpcvwYkvI4FxxdM0vc/DtKd8XQCJf31+Tj7+pO HQfm76Lg8etvEonzChswqt9+hnWWHHDptkSeqicH0kNd1/ks5AdISmV/lOoaMels xKqJhm6uGBbKsDagnRZlWB8k74VPW1Y5JcuMM7WP9uwfAG+RuIM= -----END CERTIFICATE-----Generated at Fri Apr 18 16:51:44 2025 by rpki-client