$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1Qm173YbWS6euoIq4xunoTU4U1s.roa File: 1Qm173YbWS6euoIq4xunoTU4U1s.roa (raw, json) Hash identifier: h22/Yz7g6/0f3zm0ZcZdqSTu/4RalELKi+zmcPD1wGc= Subject key identifier: D5:09:B5:EF:76:1B:59:2E:9E:BA:82:2A:E3:1B:A7:A1:35:38:53:5B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2362 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1Qm173YbWS6euoIq4xunoTU4U1s.roa Signing time: Mon 10 Feb 2025 14:17:32 +0000 ROA not before: Mon 10 Feb 2025 14:17:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9058 (0x2362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:32 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D509B5EF761B592E9EBA822AE31BA7A13538535B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:40:2a:e1:19:90:c9:db:5e:d9:21:d1:67:74: 73:4a:54:73:53:de:03:10:ee:7a:2d:81:95:e4:e0: ae:7c:66:9d:dc:1d:76:77:48:e1:21:4a:ed:a6:38: e4:dd:43:72:1a:87:a8:c1:d4:a9:4e:97:a8:b1:1f: d4:df:bb:93:8b:6d:44:ac:61:ea:cc:b8:2f:38:e5: ab:e1:6a:e2:d6:0f:46:34:dc:d8:6e:5d:00:c4:4c: 6d:d0:f6:d3:92:18:56:e8:bf:ec:cf:a3:4f:24:e9: 0a:fa:9f:fe:55:06:7d:cb:97:5d:a3:a0:33:b2:e5: d8:72:cd:09:f3:fe:a6:58:40:71:73:c1:03:ed:eb: e6:cb:d3:2f:0a:da:22:96:12:38:b0:4a:24:87:d8: e3:c3:d6:63:35:a9:90:ae:fe:ac:6f:ae:3d:e3:25: c3:83:19:c9:97:3b:d9:c2:ee:7f:37:f0:9f:b9:a0: e0:34:54:f7:b6:51:21:14:67:a2:8c:89:11:56:6c: 80:4d:99:a4:f7:b4:7b:ad:ea:fd:a0:a0:d5:6b:07: aa:dc:fb:47:6c:c9:51:ce:b1:a0:0f:39:b1:05:0c: 09:6c:5d:a5:29:e9:ea:81:bc:0b:44:3c:b0:f1:2b: 36:58:06:81:9c:65:37:66:db:fb:0d:c6:69:ce:e2: 99:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:09:B5:EF:76:1B:59:2E:9E:BA:82:2A:E3:1B:A7:A1:35:38:53:5B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1Qm173YbWS6euoIq4xunoTU4U1s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.144.0/22 Signature Algorithm: sha256WithRSAEncryption 42:67:e8:6a:dc:ce:b4:09:f3:62:1b:4d:a1:c3:a6:2f:44:3e: 75:3f:e5:0b:55:67:4c:07:4f:7a:66:3f:c1:f6:ff:11:0b:56: 48:05:85:aa:e4:9d:8c:1e:f8:1e:ef:7f:ff:29:ac:c3:ae:47: 11:d5:dc:a8:2c:e0:5d:72:9c:e6:6d:49:6a:8a:f7:13:79:0f: 1f:79:8d:d2:a0:3f:59:9a:44:05:d8:02:56:73:c3:99:e2:ce: 8e:30:44:c2:7a:8c:99:c5:7a:e5:8f:b6:40:44:0a:68:fd:21: 2c:6c:10:c8:68:7e:c9:bb:ec:60:fe:fe:6c:59:b7:22:a1:e7: 01:9e:a6:69:59:ee:ca:f8:0d:8f:47:81:95:53:a5:be:85:22: 66:fe:97:2f:89:b8:f9:96:08:1f:2a:99:eb:32:f2:d0:92:cf: 97:ed:ff:37:5d:ea:57:80:62:cc:e2:15:e4:3d:54:49:3d:83: 14:52:a8:30:fb:2d:66:e0:63:0d:02:4b:c4:cc:f2:12:17:f2: 91:b1:bb:92:dc:09:89:71:a1:fe:71:14:36:04:26:9f:af:25: bb:50:ca:87:68:df:90:76:ab:5a:ad:09:dc:cf:13:8e:67:30: 7f:26:b0:73:8a:4f:45:e3:a9:e8:76:d0:c7:27:a7:7a:a3:cd: da:63:f9:6c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI2IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ1MDlCNUVGNzYxQjU5 MkU5RUJBODIyQUUzMUJBN0ExMzUzODUzNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8QCrhGZDJ217ZIdFndHNKVHNT3gMQ7notgZXk4K58Zp3cHXZ3 SOEhSu2mOOTdQ3Iah6jB1KlOl6ixH9Tfu5OLbUSsYerMuC845avhauLWD0Y03Nhu XQDETG3Q9tOSGFbov+zPo08k6Qr6n/5VBn3Ll12joDOy5dhyzQnz/qZYQHFzwQPt 6+bL0y8K2iKWEjiwSiSH2OPD1mM1qZCu/qxvrj3jJcODGcmXO9nC7n838J+5oOA0 VPe2USEUZ6KMiRFWbIBNmaT3tHut6v2goNVrB6rc+0dsyVHOsaAPObEFDAlsXaUp 6eqBvAtEPLDxKzZYBoGcZTdm2/sNxmnO4pmxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1Qm173YbWS6euoIq4xunoTU4U1swHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzFRbTE3M1liV1M2ZXVvSXE0 eHVub1RVNFUxcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx npAwDQYJKoZIhvcNAQELBQADggEBAEJn6GrczrQJ82IbTaHDpi9EPnU/5QtVZ0wH T3pmP8H2/xELVkgFharknYwe+B7vf/8prMOuRxHV3Kgs4F1ynOZtSWqK9xN5Dx95 jdKgP1maRAXYAlZzw5nizo4wRMJ6jJnFeuWPtkBECmj9ISxsEMhofsm77GD+/mxZ tyKh5wGepmlZ7sr4DY9HgZVTpb6FImb+ly+JuPmWCB8qmesy8tCSz5ft/zdd6leA YsziFeQ9VEk9gxRSqDD7LWbgYw0CS8TM8hIX8pGxu5LcCYlxof5xFDYEJp+vJbtQ yodo35B2q1qtCdzPE45nMH8msHOKT0Xjqeh20Mcnp3qjzdpj+Ww= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:54 2025 by rpki-client on console.sobornost.net