$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hVutFhf_JBMuqmKDthnEkrob_eM.roa File: hVutFhf_JBMuqmKDthnEkrob_eM.roa (raw, json) Hash identifier: 2aOoWPidPqXu3F4EbbJcnsTwMm9imMtKkExCrWaOS2Q= Subject key identifier: 85:5B:AD:16:17:FF:24:13:2E:AA:62:83:B6:19:C4:92:BA:1B:FD:E3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23AA Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hVutFhf_JBMuqmKDthnEkrob_eM.roa Signing time: Mon 10 Feb 2025 14:17:48 +0000 ROA not before: Mon 10 Feb 2025 14:17:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9130 (0x23aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:17:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=855BAD1617FF24132EAA6283B619C492BA1BFDE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8f:2c:e6:fd:e1:d3:ff:5b:d7:82:b0:26:83: a7:8b:e4:c8:c2:19:d5:87:65:03:93:18:3e:3f:db: b6:4e:58:93:7f:f2:ec:11:3b:65:b6:ec:f9:53:17: 40:91:e0:ee:4d:90:bf:e9:44:71:c2:ae:5f:23:23: ed:76:cd:e6:fb:3c:da:3d:3b:fd:fe:a9:6b:60:04: 15:1d:8e:81:cd:82:56:d6:48:f7:2f:e4:b3:3f:c5: 3a:23:7f:9b:7d:e6:28:1c:64:66:4a:ce:cb:30:60: eb:9b:2e:3b:63:5d:c0:95:9a:3c:0c:41:5d:89:dc: 14:02:fd:fd:cb:c5:61:2e:69:07:a9:86:88:07:76: 59:e9:12:c2:af:30:c3:18:5d:21:cf:cc:ed:a9:60: 74:98:f7:b5:2c:91:97:47:a4:78:06:a0:25:87:26: 97:96:1c:90:0e:a2:1c:e6:d6:2d:6b:68:bf:2e:1e: 0f:ae:0c:f9:ed:bf:35:61:d6:41:23:5c:0c:75:59: fa:31:f2:e7:9a:52:91:3b:e8:d8:6a:a6:a1:e5:ff: f9:d4:4a:ed:05:30:be:58:68:9a:ad:0d:27:68:d8: be:84:4e:1f:f8:cb:47:e9:ee:5c:d9:15:91:c4:10: c9:6e:b9:b2:a7:b3:a5:8a:35:f4:26:bd:10:b6:a8: d2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5B:AD:16:17:FF:24:13:2E:AA:62:83:B6:19:C4:92:BA:1B:FD:E3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hVutFhf_JBMuqmKDthnEkrob_eM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.140.0/22 Signature Algorithm: sha256WithRSAEncryption 57:04:3d:b7:a7:c3:f6:06:9b:d3:d9:98:cf:07:e6:83:fd:6d: a6:23:64:da:59:67:fc:37:17:e9:7c:42:c7:19:57:1e:c5:a3: d7:73:62:37:c0:cc:e7:9a:52:b7:4a:9c:fa:60:ed:bd:e9:61: 1d:6a:b8:0d:a4:3b:1d:5f:9c:53:9c:84:c7:67:34:4e:da:a1: b6:73:f9:05:7e:4c:a2:3e:3d:7b:c9:5b:41:c6:04:ce:c8:04: a0:5c:59:1a:61:16:04:9d:97:f6:d6:aa:34:d2:8c:e7:38:00: f6:08:70:bf:bf:f0:fb:6f:db:70:63:ec:52:6b:38:ef:a5:43: 56:00:7a:d4:69:20:b0:1c:0f:d4:ea:8e:fc:e6:5f:d5:f4:ba: e2:b4:df:a8:53:77:cf:65:de:ae:f7:dc:b0:d7:f9:d8:d9:7a: 99:7c:64:a1:94:8b:a5:06:8d:f7:d9:26:a5:c6:3c:6c:5b:86: 73:79:32:30:af:b6:b0:82:d3:06:19:d1:10:52:e6:04:56:c6: 12:b0:4c:64:c3:4a:da:41:4c:bb:b0:d6:22:10:f0:cc:09:3a: 76:4a:f0:92:e6:24:25:07:18:5a:60:01:d3:81:28:98:3a:6d: 61:9b:e9:12:6e:d6:05:6b:30:35:61:b1:93:07:77:76:e8:12: 37:44:a2:39 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI6owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE3NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg1NUJBRDE2MTdGRjI0 MTMyRUFBNjI4M0I2MTlDNDkyQkExQkZERTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDijyzm/eHT/1vXgrAmg6eL5MjCGdWHZQOTGD4/27ZOWJN/8uwR O2W27PlTF0CR4O5NkL/pRHHCrl8jI+12zeb7PNo9O/3+qWtgBBUdjoHNglbWSPcv 5LM/xTojf5t95igcZGZKzsswYOubLjtjXcCVmjwMQV2J3BQC/f3LxWEuaQephogH dlnpEsKvMMMYXSHPzO2pYHSY97UskZdHpHgGoCWHJpeWHJAOohzm1i1raL8uHg+u DPntvzVh1kEjXAx1Wfox8ueaUpE76NhqpqHl//nUSu0FML5YaJqtDSdo2L6ETh/4 y0fp7lzZFZHEEMluubKns6WKNfQmvRC2qNIvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhVutFhf/JBMuqmKDthnEkrob/eMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hWdXRGaGZfSkJNdXFtS0R0 aG5Fa3JvYl9lTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nowwDQYJKoZIhvcNAQELBQADggEBAFcEPbenw/YGm9PZmM8H5oP9baYjZNpZZ/w3 F+l8QscZVx7Fo9dzYjfAzOeaUrdKnPpg7b3pYR1quA2kOx1fnFOchMdnNE7aobZz +QV+TKI+PXvJW0HGBM7IBKBcWRphFgSdl/bWqjTSjOc4APYIcL+/8Ptv23Bj7FJr OO+lQ1YAetRpILAcD9TqjvzmX9X0uuK036hTd89l3q733LDX+djZepl8ZKGUi6UG jffZJqXGPGxbhnN5MjCvtrCC0wYZ0RBS5gRWxhKwTGTDStpBTLuw1iIQ8MwJOnZK 8JLmJCUHGFpgAdOBKJg6bWGb6RJu1gVrMDVhsZMHd3boEjdEojk= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:55 2025 by rpki-client on console.sobornost.net