$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1N0RMZ1B4tjuRn9yFbxoyP-JvOo.roa File: 1N0RMZ1B4tjuRn9yFbxoyP-JvOo.roa (raw, json) Hash identifier: iNDocZk5HZKjYKmAUxsO9bFuHjBnRQdtXi1/EDpw0Qs= Subject key identifier: D4:DD:11:31:9D:41:E2:D8:EE:46:7F:72:15:BC:68:C8:FF:89:BC:EA Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2646 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1N0RMZ1B4tjuRn9yFbxoyP-JvOo.roa Signing time: Fri 22 Aug 2025 08:42:46 +0000 ROA not before: Fri 22 Aug 2025 08:42:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 115.165.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9798 (0x2646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D4DD11319D41E2D8EE467F7215BC68C8FF89BCEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b1:5a:77:11:42:b4:03:a6:29:fe:20:a3:34: 45:52:e7:07:d5:ae:8a:2a:b0:8f:aa:80:dc:87:a4: 50:f7:62:3e:8a:5d:41:32:ec:87:f5:49:61:59:41: 54:95:1c:a9:c4:fb:f9:17:7d:7d:1e:3f:ed:d6:9f: f1:d0:1f:67:d6:be:c5:86:a5:d2:02:73:15:41:4c: 64:a5:33:eb:59:84:1f:ce:27:9d:a6:5f:2f:99:1c: d6:ab:cb:01:f3:b3:ce:8e:ff:bf:9f:43:86:af:bb: 8b:e8:56:a4:42:d1:3e:f6:51:4f:fa:48:12:16:90: cb:b6:00:32:6f:96:82:80:e2:0e:a7:5b:39:46:df: 94:c4:03:9d:d5:f2:b3:30:f0:f9:f2:e7:89:5b:6e: 8d:c7:aa:51:71:2b:11:ca:41:f6:3b:0a:fb:ed:97: 5a:91:2b:02:ea:9d:33:f7:5c:5d:99:56:3d:42:06: c6:04:10:66:82:bc:a8:bc:a0:62:c5:e4:59:9f:d6: c0:a0:17:17:e8:70:0b:fb:2b:cb:a2:25:76:e4:57: 3d:9d:8b:97:91:b8:8d:e1:89:e5:1a:d7:cd:57:00: c0:27:a9:6c:9d:8d:55:31:ec:90:f2:51:16:c0:c7: 35:bb:e4:24:b8:9d:a4:4d:a4:9e:c1:75:e0:d9:18: 70:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DD:11:31:9D:41:E2:D8:EE:46:7F:72:15:BC:68:C8:FF:89:BC:EA X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1N0RMZ1B4tjuRn9yFbxoyP-JvOo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.165.192.0/18 Signature Algorithm: sha256WithRSAEncryption 47:d9:4e:ba:43:04:a4:cc:2c:c3:0f:26:25:be:1d:07:c7:12: 40:43:90:ce:5c:d7:74:18:78:f5:46:4c:5b:70:43:f7:ba:cc: 54:f3:2d:d4:5c:ce:10:2c:1c:0f:c7:4a:14:af:f9:c5:fd:98: d3:77:1f:1e:9d:00:ef:d2:b0:4d:a9:50:4b:2c:aa:35:40:8a: e9:b2:17:a5:1a:26:5d:ca:ab:b9:fc:0f:3d:fe:38:f6:34:9b: a9:71:30:6a:da:fa:db:c1:ea:28:7d:d0:c6:77:6c:48:4e:ac: 01:a2:c2:27:5a:f8:f5:9a:0b:24:77:1c:c5:f8:ec:5b:c4:21: 7f:45:14:08:87:70:c6:98:91:bb:ce:37:fa:f0:f3:df:6e:da: 3f:89:cf:93:57:32:74:87:43:64:a7:d9:1c:4f:b8:57:38:65: 96:20:51:0f:8d:de:3a:c7:aa:a4:1b:3d:33:e3:c0:f9:d1:cb: be:a9:a3:3c:0b:9f:73:aa:86:be:09:ef:b6:c2:cd:84:50:f5: 2a:db:25:93:1b:ab:13:04:74:25:90:31:2a:72:51:50:c3:5d: 65:82:63:c2:b2:7e:19:86:59:27:c6:cd:36:29:38:3c:dc:32: 67:0e:23:fa:4e:1b:96:39:b3:0e:ca:63:29:03:f0:6e:6f:39: 83:0e:07:7c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJkYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ0REQxMTMxOUQ0MUUy RDhFRTQ2N0Y3MjE1QkM2OEM4RkY4OUJDRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvsVp3EUK0A6Yp/iCjNEVS5wfVrooqsI+qgNyHpFD3Yj6KXUEy 7If1SWFZQVSVHKnE+/kXfX0eP+3Wn/HQH2fWvsWGpdICcxVBTGSlM+tZhB/OJ52m Xy+ZHNarywHzs86O/7+fQ4avu4voVqRC0T72UU/6SBIWkMu2ADJvloKA4g6nWzlG 35TEA53V8rMw8Pny54lbbo3HqlFxKxHKQfY7Cvvtl1qRKwLqnTP3XF2ZVj1CBsYE EGaCvKi8oGLF5Fmf1sCgFxfocAv7K8uiJXbkVz2di5eRuI3hieUa181XAMAnqWyd jVUx7JDyURbAxzW75CS4naRNpJ7BdeDZGHDJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1N0RMZ1B4tjuRn9yFbxoyP+JvOowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzFOMFJNWjFCNHRqdVJuOXlG YnhveVAtSnZPby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZz pcAwDQYJKoZIhvcNAQELBQADggEBAEfZTrpDBKTMLMMPJiW+HQfHEkBDkM5c13QY ePVGTFtwQ/e6zFTzLdRczhAsHA/HShSv+cX9mNN3Hx6dAO/SsE2pUEssqjVAiumy F6UaJl3Kq7n8Dz3+OPY0m6lxMGra+tvB6ih90MZ3bEhOrAGiwida+PWaCyR3HMX4 7FvEIX9FFAiHcMaYkbvON/rw899u2j+Jz5NXMnSHQ2Sn2RxPuFc4ZZYgUQ+N3jrH qqQbPTPjwPnRy76pozwLn3Oqhr4J77bCzYRQ9SrbJZMbqxMEdCWQMSpyUVDDXWWC Y8KyfhmGWSfGzTYpODzcMmcOI/pOG5Y5sw7KYykD8G5vOYMOB3w= -----END CERTIFICATE-----Generated at Sun Aug 24 11:43:48 2025 by rpki-client