$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AS825OktPgQ-rLcJZLlJNFva4ss.roa File: AS825OktPgQ-rLcJZLlJNFva4ss.roa (raw, json) Hash identifier: 7nXNcSqQnQQAPdMOfHhxn772kp38hGxTv5oXu7LtP0o= Subject key identifier: 01:2F:36:E4:E9:2D:3E:04:3E:AC:B7:09:64:B9:49:34:5B:DA:E2:CB Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2386 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AS825OktPgQ-rLcJZLlJNFva4ss.roa Signing time: Mon 10 Feb 2025 14:17:40 +0000 ROA not before: Mon 10 Feb 2025 14:17:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 114.198.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9094 (0x2386) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=012F36E4E92D3E043EACB70964B949345BDAE2CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f6:7b:9c:2c:e3:9c:79:01:55:8e:e0:6e:97: b3:d7:37:5d:79:2f:2f:9f:4f:bb:f0:bb:5e:12:bd: 34:fc:46:44:01:a8:d8:0b:02:6c:01:3d:a5:e6:fb: 25:4c:bd:ce:51:4d:14:0a:a1:63:76:ca:e5:86:23: 55:1c:64:94:90:4a:6c:a6:ee:81:7e:04:12:98:41: 7d:bc:f2:7b:f8:84:d3:c7:51:b8:4e:44:eb:f2:75: 64:aa:26:b7:f5:2d:14:32:00:12:ac:c6:7a:1c:78: c4:0a:60:07:1f:fd:92:22:12:c9:66:6a:96:b3:4b: 88:f7:3a:1a:66:93:1d:15:8e:1f:a8:0e:9a:12:bc: 91:20:32:51:28:97:ca:8b:91:76:1f:39:46:67:b6: 27:78:70:47:38:89:39:f8:66:88:d2:a8:8d:a9:7a: 42:d9:92:10:3f:cf:d8:16:dd:c5:19:22:8e:b3:01: 71:8d:d4:0c:be:25:c5:8b:4b:4c:c1:45:10:b3:56: 0c:de:2d:38:7b:b3:1e:28:19:64:5f:86:85:5f:a8: 96:b7:95:02:83:91:52:62:2d:d4:0c:33:05:16:95: b8:b9:5e:2a:00:fb:89:c8:93:c4:56:a0:d1:9d:8f: 04:de:e3:53:2a:a5:55:33:9c:eb:0e:45:35:de:55: fe:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:2F:36:E4:E9:2D:3E:04:3E:AC:B7:09:64:B9:49:34:5B:DA:E2:CB X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AS825OktPgQ-rLcJZLlJNFva4ss.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.168.0/21 Signature Algorithm: sha256WithRSAEncryption 0c:bd:ab:18:7d:a0:d3:7d:75:67:c4:d6:fe:2d:57:b3:be:a6: 85:cc:b6:35:21:fb:28:55:05:b1:a8:0c:77:e8:61:c9:7e:3b: 18:5a:99:29:23:5d:26:7a:5d:19:53:42:69:0b:bb:6b:4d:df: 46:a0:ad:9e:6a:b7:70:b1:c0:17:e0:26:35:3f:ad:5d:a1:05: fb:59:26:68:54:da:e0:62:92:95:17:a2:e2:99:b0:bf:c6:d5: 47:99:66:3a:f8:e0:55:43:e5:81:af:45:d4:43:95:72:aa:76: d6:32:1b:3f:ef:8c:e1:29:ad:17:be:1a:44:95:28:e5:6d:92: e6:d0:88:65:e9:98:5e:91:5d:49:f9:d5:d0:27:87:f6:8b:48: ed:b4:0a:fe:12:1b:b5:ca:00:f1:91:5f:80:c1:98:6c:c8:67: 01:2b:6c:21:24:8e:fc:7c:17:c6:5f:01:ac:e6:8e:16:71:65: 1f:a0:22:51:b0:92:8d:a7:e3:fa:36:b4:0f:85:c5:4c:a1:74: d9:45:5b:c5:4b:5e:54:e4:66:dd:9c:71:04:76:c5:36:84:d2: 75:51:de:f1:68:c8:26:19:a0:23:7f:2f:b4:ee:81:30:9b:42: 24:62:10:d4:45:a7:18:63:ff:c6:21:42:71:40:cb:17:cd:61: 1b:77:e8:04 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI4YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAxMkYzNkU0RTkyRDNF MDQzRUFDQjcwOTY0Qjk0OTM0NUJEQUUyQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC9nucLOOceQFVjuBul7PXN115Ly+fT7vwu14SvTT8RkQBqNgL AmwBPaXm+yVMvc5RTRQKoWN2yuWGI1UcZJSQSmym7oF+BBKYQX288nv4hNPHUbhO ROvydWSqJrf1LRQyABKsxnoceMQKYAcf/ZIiEslmapazS4j3Ohpmkx0Vjh+oDpoS vJEgMlEol8qLkXYfOUZntid4cEc4iTn4ZojSqI2pekLZkhA/z9gW3cUZIo6zAXGN 1Ay+JcWLS0zBRRCzVgzeLTh7sx4oGWRfhoVfqJa3lQKDkVJiLdQMMwUWlbi5XioA +4nIk8RWoNGdjwTe41MqpVUznOsORTXeVf7fAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAS825OktPgQ+rLcJZLlJNFva4sswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0FTODI1T2t0UGdRLXJMY0pa TGxKTkZ2YTRzcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANy xqgwDQYJKoZIhvcNAQELBQADggEBAAy9qxh9oNN9dWfE1v4tV7O+poXMtjUh+yhV BbGoDHfoYcl+OxhamSkjXSZ6XRlTQmkLu2tN30agrZ5qt3CxwBfgJjU/rV2hBftZ JmhU2uBikpUXouKZsL/G1UeZZjr44FVD5YGvRdRDlXKqdtYyGz/vjOEprRe+GkSV KOVtkubQiGXpmF6RXUn51dAnh/aLSO20Cv4SG7XKAPGRX4DBmGzIZwErbCEkjvx8 F8ZfAazmjhZxZR+gIlGwko2n4/o2tA+FxUyhdNlFW8VLXlTkZt2ccQR2xTaE0nVR 3vFoyCYZoCN/L7TugTCbQiRiENRFpxhj/8YhQnFAyxfNYRt36AQ= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:54 2025 by rpki-client on console.sobornost.net