$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-FOCG4npuZIj0M7NBHITrK2WwrI.roa File: -FOCG4npuZIj0M7NBHITrK2WwrI.roa (raw, json) Hash identifier: 5sY0qx1mJ+FSO//fDE5hqewc09OxD4UY1MVoH3UVGAE= Subject key identifier: F8:53:82:1B:89:E9:B9:92:23:D0:CE:CD:04:72:13:AC:AD:96:C2:B2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2673 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-FOCG4npuZIj0M7NBHITrK2WwrI.roa Signing time: Fri 22 Aug 2025 08:42:56 +0000 ROA not before: Fri 22 Aug 2025 08:42:56 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 61.61.209.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9843 (0x2673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:56 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F853821B89E9B99223D0CECD047213ACAD96C2B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a3:99:e3:1f:cb:93:e6:ed:0c:5c:df:07:da: ec:93:cb:9f:03:ad:80:b6:ad:d3:ad:77:7d:94:1c: df:6a:e7:3f:91:bc:93:0f:dc:7e:14:98:78:0f:13: b0:90:33:eb:7c:f4:a0:f3:60:64:97:c3:66:0b:74: a5:2c:f4:cb:bf:09:84:4d:97:53:c2:9e:db:18:26: 50:76:b5:a1:0f:33:e5:37:53:0f:0d:b0:77:d2:8b: d5:af:fe:a3:96:e7:21:de:8e:78:d0:73:90:03:cc: 8e:9a:1b:03:2f:7c:a1:6c:c2:3f:6f:a3:f5:c4:52: 7e:ab:77:d8:0d:ea:8c:90:8f:df:25:63:f1:a2:f9: 29:04:d8:61:0b:cd:37:ff:ad:8f:06:99:84:29:43: fb:74:24:bb:48:5c:d8:cb:97:ec:a9:ce:88:09:cb: 8d:47:c3:67:d1:ab:6c:ee:f2:f9:84:e7:81:dc:26: e9:1b:2d:06:96:d9:ca:05:f7:b3:74:39:27:d1:ba: 3f:71:b3:af:cf:d8:1a:92:41:1d:27:3a:d6:6c:e8: 3f:11:19:af:bf:ac:d7:d7:d5:f0:05:dd:db:39:40: f5:c3:34:42:e8:21:08:41:81:8c:09:d1:69:5e:2c: 77:bd:62:66:d1:60:40:b9:34:4c:4e:80:23:43:dd: 18:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:53:82:1B:89:E9:B9:92:23:D0:CE:CD:04:72:13:AC:AD:96:C2:B2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-FOCG4npuZIj0M7NBHITrK2WwrI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.209.0/24 Signature Algorithm: sha256WithRSAEncryption 40:78:9d:a9:6a:5d:2e:88:61:82:fb:2c:10:48:88:32:c2:6d: 96:b9:76:f6:f5:19:a5:71:73:1b:e1:a0:13:10:02:7b:1d:a8: bc:54:41:6b:46:9c:e9:0b:b5:81:8b:c3:2f:82:eb:d6:bb:db: 3b:fc:4d:4c:56:18:9d:e6:1d:8a:d4:22:18:fa:1e:42:87:b0: 05:4a:11:29:e4:e9:da:4c:5b:c5:bf:c4:c0:36:3a:fd:33:69: 55:dc:a7:b2:c4:17:48:52:c5:37:cd:29:df:26:c8:b7:01:ca: 7d:64:23:04:16:f6:4b:77:83:44:f9:ba:9d:eb:90:52:88:87: 59:04:a4:54:e0:27:33:90:6f:a2:d0:0f:d8:91:8b:7b:2a:41: 67:1c:85:f2:b4:8e:6d:d8:e3:46:2a:8a:95:95:a1:50:0b:5e: 62:4c:86:4b:66:53:dd:c2:05:6a:d6:11:c9:be:f4:90:d7:d5: 75:b6:3d:e8:42:0f:75:f4:6e:de:a4:c3:4e:eb:31:41:03:f2: 93:91:fb:8d:8d:7a:20:02:95:06:64:39:1d:29:b7:68:20:3c: 65:d7:cb:bf:c7:5f:7d:31:8c:ab:03:50:76:7f:d3:28:e3:9c: 67:3c:cc:a2:0a:47:9d:a4:1a:91:f6:d9:89:07:b2:71:3d:ba: 23:48:99:4d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJnMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY4NTM4MjFCODlFOUI5 OTIyM0QwQ0VDRDA0NzIxM0FDQUQ5NkMyQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpo5njH8uT5u0MXN8H2uyTy58DrYC2rdOtd32UHN9q5z+RvJMP 3H4UmHgPE7CQM+t89KDzYGSXw2YLdKUs9Mu/CYRNl1PCntsYJlB2taEPM+U3Uw8N sHfSi9Wv/qOW5yHejnjQc5ADzI6aGwMvfKFswj9vo/XEUn6rd9gN6oyQj98lY/Gi +SkE2GELzTf/rY8GmYQpQ/t0JLtIXNjLl+ypzogJy41Hw2fRq2zu8vmE54HcJukb LQaW2coF97N0OSfRuj9xs6/P2BqSQR0nOtZs6D8RGa+/rNfX1fAF3ds5QPXDNELo IQhBgYwJ0WleLHe9YmbRYEC5NExOgCND3RilAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+FOCG4npuZIj0M7NBHITrK2WwrIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULy1GT0NHNG5wdVpJajBNN05C SElUcksyV3dySS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 PdEwDQYJKoZIhvcNAQELBQADggEBAEB4nalqXS6IYYL7LBBIiDLCbZa5dvb1GaVx cxvhoBMQAnsdqLxUQWtGnOkLtYGLwy+C69a72zv8TUxWGJ3mHYrUIhj6HkKHsAVK ESnk6dpMW8W/xMA2Ov0zaVXcp7LEF0hSxTfNKd8myLcByn1kIwQW9kt3g0T5up3r kFKIh1kEpFTgJzOQb6LQD9iRi3sqQWcchfK0jm3Y40YqipWVoVALXmJMhktmU93C BWrWEcm+9JDX1XW2PehCD3X0bt6kw07rMUED8pOR+42NeiAClQZkOR0pt2ggPGXX y7/HX30xjKsDUHZ/0yjjnGc8zKIKR52kGpH22YkHsnE9uiNImU0= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:35 2025 by rpki-client