$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Db33L_om-OFdMl8VdCWR8KZJBRA.roa File: Db33L_om-OFdMl8VdCWR8KZJBRA.roa (raw, json) Hash identifier: quDFH8zdpw3kxdXjBVELoXu7TGFovwQHHEDdt939L4Y= Subject key identifier: 0D:BD:F7:2F:FA:26:F8:E1:5D:32:5F:15:74:25:91:F0:A6:49:05:10 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 235C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Db33L_om-OFdMl8VdCWR8KZJBRA.roa Signing time: Mon 10 Feb 2025 14:17:30 +0000 ROA not before: Mon 10 Feb 2025 14:17:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 122.254.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9052 (0x235c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0DBDF72FFA26F8E15D325F15742591F0A6490510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c4:b4:7b:1b:83:a8:c5:04:44:df:3f:64:52: 3e:a9:a2:a5:fc:e9:c3:99:b8:74:b4:d8:d6:dd:cd: 82:30:9c:3d:fa:77:a3:8f:27:60:90:09:a7:80:a0: d4:72:b2:77:b1:97:8a:bd:26:9b:62:ae:77:4b:d2: 1a:e2:d0:b0:28:52:58:6a:1a:6f:1b:cc:db:b5:7e: 42:d3:b2:c5:3e:25:9c:35:c3:b5:20:4c:6e:0f:99: 09:b3:24:11:c8:92:27:eb:49:12:1c:e7:90:80:36: c0:25:0d:2f:54:36:21:58:3e:d5:16:32:93:e8:e0: f6:2a:91:7d:10:74:28:e0:1f:af:c6:91:60:1d:43: 50:fd:72:1b:f7:84:9b:35:4d:ea:04:05:78:98:3f: 83:97:36:f5:40:cf:7f:39:9d:cf:d2:82:33:80:0a: 82:e0:a6:d4:a9:3a:16:02:be:89:02:63:ec:f8:6c: a0:04:a4:97:30:9c:42:a2:f4:99:67:3c:02:f4:e3: 5b:8e:87:75:0b:3b:28:e8:6e:fb:9e:7b:96:31:c5: 3f:58:2b:8e:7d:e9:c7:0a:5d:b2:92:9a:8d:4b:9a: 05:7e:b7:00:bf:00:9d:3f:2c:28:1c:5b:7e:59:e8: 9d:8c:af:25:0a:64:b7:93:b7:ab:35:b9:c3:62:de: 85:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:BD:F7:2F:FA:26:F8:E1:5D:32:5F:15:74:25:91:F0:A6:49:05:10 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Db33L_om-OFdMl8VdCWR8KZJBRA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.36.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:43:0f:6f:70:81:81:f6:81:81:19:d6:dd:17:57:a7:c1:61: 62:3c:98:33:7c:70:ff:4b:44:1b:2a:aa:6a:07:03:9a:62:db: 15:93:9f:48:19:13:ae:98:92:d3:e3:aa:38:b4:ed:a2:a7:5c: 56:95:f8:ea:48:ea:0a:23:97:c3:4a:6c:af:37:a3:c2:df:55: 6a:01:0b:5c:59:0f:55:e2:42:5a:81:90:f5:7d:81:98:5b:6b: 4f:8e:ee:45:fb:06:b1:6c:7a:ae:db:a5:50:d3:41:87:f9:92: ce:8c:42:e7:35:71:20:27:68:8f:f7:e6:c7:93:21:40:fd:75: 4e:87:a6:2f:c3:24:bc:ca:04:1a:4a:aa:ce:78:29:f2:fa:86: 57:ac:27:be:8d:35:10:41:31:25:a1:db:17:3a:7c:7f:33:22: 84:2c:c2:80:8a:0b:31:33:6c:d2:1d:51:0c:3c:3a:13:ea:2f: 03:a3:19:d7:0d:c7:5d:54:c9:07:83:fd:d5:e5:4b:11:4c:f4: 5a:86:80:57:77:b9:ef:10:39:9b:b0:00:f7:9b:de:ba:e2:61: a5:c5:41:3a:ed:ed:4f:37:1f:93:2b:f3:bd:6f:85:75:bd:3e: 43:04:fd:b3:27:3b:85:53:6f:c8:1e:85:ef:09:cf:7d:20:8e: f7:9b:ac:b8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI1wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBEQkRGNzJGRkEyNkY4 RTE1RDMyNUYxNTc0MjU5MUYwQTY0OTA1MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3xLR7G4OoxQRE3z9kUj6poqX86cOZuHS02NbdzYIwnD36d6OP J2CQCaeAoNRysnexl4q9JptirndL0hri0LAoUlhqGm8bzNu1fkLTssU+JZw1w7Ug TG4PmQmzJBHIkifrSRIc55CANsAlDS9UNiFYPtUWMpPo4PYqkX0QdCjgH6/GkWAd Q1D9chv3hJs1TeoEBXiYP4OXNvVAz385nc/SgjOACoLgptSpOhYCvokCY+z4bKAE pJcwnEKi9JlnPAL041uOh3ULOyjobvuee5YxxT9YK4596ccKXbKSmo1LmgV+twC/ AJ0/LCgcW35Z6J2MryUKZLeTt6s1ucNi3oVHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDb33L/om+OFdMl8VdCWR8KZJBRAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0RiMzNMX29tLU9GZE1sOFZk Q1dSOEtaSkJSQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ6 /iQwDQYJKoZIhvcNAQELBQADggEBAJtDD29wgYH2gYEZ1t0XV6fBYWI8mDN8cP9L RBsqqmoHA5pi2xWTn0gZE66YktPjqji07aKnXFaV+OpI6gojl8NKbK83o8LfVWoB C1xZD1XiQlqBkPV9gZhba0+O7kX7BrFseq7bpVDTQYf5ks6MQuc1cSAnaI/35seT IUD9dU6Hpi/DJLzKBBpKqs54KfL6hlesJ76NNRBBMSWh2xc6fH8zIoQswoCKCzEz bNIdUQw8OhPqLwOjGdcNx11UyQeD/dXlSxFM9FqGgFd3ue8QOZuwAPeb3rriYaXF QTrt7U83H5Mr871vhXW9PkME/bMnO4VTb8gehe8Jz30gjvebrLg= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:54 2025 by rpki-client on console.sobornost.net