$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BC3pHaboDzuJrt7QbQE7QoJCVD8.roa File: BC3pHaboDzuJrt7QbQE7QoJCVD8.roa (raw, json) Hash identifier: qIHTLS0kVg3l2sy7wizeckeb0d1ew0Sr708comu5ix8= Subject key identifier: 04:2D:E9:1D:A6:E8:0F:3B:89:AE:DE:D0:6D:01:3B:42:82:42:54:3F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2405 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BC3pHaboDzuJrt7QbQE7QoJCVD8.roa Signing time: Mon 10 Feb 2025 14:18:10 +0000 ROA not before: Mon 10 Feb 2025 14:18:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 119.77.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9221 (0x2405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=042DE91DA6E80F3B89AEDED06D013B428242543F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:85:37:a8:11:f4:34:67:1c:df:73:54:c3:53: 28:76:68:ca:02:bf:62:10:88:80:e8:1d:e6:dd:d3: e8:6e:72:7f:c5:8a:5c:c2:36:9c:69:22:29:cf:a4: da:1d:d9:bb:a0:39:91:e8:f9:8a:32:30:69:ba:a4: 79:77:f3:dc:80:aa:79:08:bd:40:96:3e:ed:5a:ad: 79:70:79:a0:c2:67:29:c1:ae:94:b6:a8:a4:42:d4: a2:5a:01:f8:30:47:9b:6f:9d:21:38:e6:11:fd:3d: 4f:5b:52:2a:09:84:cf:e1:23:1a:cb:ec:5e:0a:41: 93:f6:ba:64:cf:89:8b:f5:59:f0:16:50:f1:48:65: 85:28:12:02:6d:8b:de:ef:30:c1:45:2f:a7:04:43: cc:6c:34:99:fe:14:f5:63:06:a7:d3:ee:cd:42:09: 91:92:49:f1:14:e8:0c:b5:87:6a:be:7f:ce:81:8d: 6b:03:e9:72:c6:07:39:1e:cd:28:34:ba:9c:17:22: 32:53:d7:bf:d2:51:73:f9:5c:82:3a:e3:c5:0e:8a: 1f:f3:b7:2f:09:ec:fc:7a:dc:36:28:f8:57:f3:be: 78:a0:11:10:0b:07:96:f1:91:79:1e:a7:48:32:ca: 4e:0b:2d:c7:b0:de:63:51:4d:f4:ec:11:52:04:d0: 11:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2D:E9:1D:A6:E8:0F:3B:89:AE:DE:D0:6D:01:3B:42:82:42:54:3F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BC3pHaboDzuJrt7QbQE7QoJCVD8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.132.0/22 Signature Algorithm: sha256WithRSAEncryption 12:f8:d8:99:b8:19:1d:9b:23:d7:98:cd:56:f5:c0:99:6e:ff: 7c:24:bd:80:73:71:d1:41:73:35:e0:d1:07:05:d0:1f:cd:4c: f2:a2:4e:0a:ef:c5:2f:7a:ce:df:1a:fa:1c:df:e8:ec:4f:e1: 3a:22:47:73:3a:04:cb:52:50:ad:a0:5b:45:21:85:49:a4:e2: 86:ba:76:42:95:a0:60:8f:a4:b0:84:38:53:16:21:01:55:84: cf:bd:f0:0f:af:fc:19:07:f8:8e:46:2b:27:e7:82:d9:61:d7: 78:69:6e:78:cf:c1:cd:a4:e8:05:18:54:15:fe:04:c6:7f:8b: e9:83:2e:f1:5f:5f:32:3c:ed:4f:3f:34:a8:43:8b:54:a9:b3: 57:62:e8:4c:c8:84:45:b8:18:57:2f:c0:84:e6:8b:58:76:b0: c3:c2:fb:49:6f:dd:9a:f8:a1:d3:2b:c7:ab:62:75:f7:c9:44: f1:51:f6:39:0d:89:bc:ff:68:7d:2e:dd:02:6b:cd:a1:f9:3d: 8c:2d:fe:8f:ca:11:a8:ab:d4:30:0e:be:1e:ed:92:38:16:33: a9:d7:66:11:30:33:7b:c5:64:7d:b2:e4:d1:3d:be:fc:98:be: c9:a0:3f:85:d4:28:06:1f:f5:d1:81:9a:f9:3f:9b:e3:b1:18: 3a:c3:b3:98 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJAUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA0MkRFOTFEQTZFODBG M0I4OUFFREVEMDZEMDEzQjQyODI0MjU0M0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFhTeoEfQ0Zxzfc1TDUyh2aMoCv2IQiIDoHebd0+hucn/FilzC NpxpIinPpNod2bugOZHo+YoyMGm6pHl389yAqnkIvUCWPu1arXlweaDCZynBrpS2 qKRC1KJaAfgwR5tvnSE45hH9PU9bUioJhM/hIxrL7F4KQZP2umTPiYv1WfAWUPFI ZYUoEgJti97vMMFFL6cEQ8xsNJn+FPVjBqfT7s1CCZGSSfEU6Ay1h2q+f86BjWsD 6XLGBzkezSg0upwXIjJT17/SUXP5XII648UOih/zty8J7Px63DYo+FfzvnigERAL B5bxkXkep0gyyk4LLcew3mNRTfTsEVIE0BHxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBC3pHaboDzuJrt7QbQE7QoJCVD8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0JDM3BIYWJvRHp1SnJ0N1Fi UUU3UW9KQ1ZEOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ3 TYQwDQYJKoZIhvcNAQELBQADggEBABL42Jm4GR2bI9eYzVb1wJlu/3wkvYBzcdFB czXg0QcF0B/NTPKiTgrvxS96zt8a+hzf6OxP4ToiR3M6BMtSUK2gW0UhhUmk4oa6 dkKVoGCPpLCEOFMWIQFVhM+98A+v/BkH+I5GKyfngtlh13hpbnjPwc2k6AUYVBX+ BMZ/i+mDLvFfXzI87U8/NKhDi1Sps1di6EzIhEW4GFcvwITmi1h2sMPC+0lv3Zr4 odMrx6tidffJRPFR9jkNibz/aH0u3QJrzaH5PYwt/o/KEair1DAOvh7tkjgWM6nX ZhEwM3vFZH2y5NE9vvyYvsmgP4XUKAYf9dGBmvk/m+OxGDrDs5g= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:54 2025 by rpki-client on console.sobornost.net