$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1YoqtynLN2sgMpWTQcRLt2iFM7A.roa File: 1YoqtynLN2sgMpWTQcRLt2iFM7A.roa (raw, json) Hash identifier: lG8uYildtO56IjpJl56RvmAjWf0IMhjUFE8yp5jg1MM= Subject key identifier: D5:8A:2A:B7:29:CB:37:6B:20:32:95:93:41:C4:4B:B7:68:85:33:B0 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2615 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1YoqtynLN2sgMpWTQcRLt2iFM7A.roa Signing time: Fri 22 Aug 2025 08:42:33 +0000 ROA not before: Fri 22 Aug 2025 08:42:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.16.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9749 (0x2615) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D58A2AB729CB376B2032959341C44BB7688533B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c6:1f:d4:a3:b6:af:72:c6:ae:25:2a:af:99: c4:5d:d5:f5:e9:09:f7:08:b1:f3:b4:72:32:72:13: 16:5c:ec:93:35:c0:62:4e:9b:08:f2:59:a4:5f:06: e1:25:6e:4e:bf:d3:ef:a2:75:39:4a:16:98:d7:0f: 85:b5:37:35:ea:99:48:33:03:41:1a:68:eb:9f:6d: 8f:d7:ae:df:ed:a9:45:ef:bc:fb:8a:1e:00:04:ef: 07:21:2b:3b:48:3c:e3:24:a0:f0:cb:90:c3:10:56: 08:82:5c:2f:35:50:cd:d4:f4:12:0e:ca:bb:2c:b3: 6e:3b:e0:f5:91:f8:a5:7c:85:25:bf:57:66:fb:f1: db:5d:e6:67:b0:9b:8b:5d:85:5c:22:a2:8b:22:dd: bc:c5:da:9c:17:c5:26:5e:dd:c1:6f:07:3b:d1:85: 42:cc:e8:12:e5:d6:bc:f1:e3:f9:ad:e0:cf:60:61: 9b:b0:45:e7:c0:f8:42:8c:65:db:59:65:2f:ad:54: 6f:a8:a0:a1:49:d3:af:5c:df:2d:51:be:83:52:5f: 90:ad:e0:1f:33:4d:4e:57:79:f5:d6:70:33:44:cd: bb:81:0f:81:2c:a8:36:f8:34:4b:ab:fc:09:9d:63: 10:11:f2:99:ee:7a:b4:7a:f2:e1:cf:21:a4:0d:0c: 13:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:8A:2A:B7:29:CB:37:6B:20:32:95:93:41:C4:4B:B7:68:85:33:B0 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1YoqtynLN2sgMpWTQcRLt2iFM7A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.16.0/20 Signature Algorithm: sha256WithRSAEncryption 0e:5f:1b:63:8f:92:97:d9:3f:2a:ac:96:71:25:80:19:a7:78: c0:a3:7c:28:1d:bd:88:f0:b2:13:65:bd:7b:10:86:9b:31:52: dc:1e:61:37:b3:73:13:59:96:97:01:67:94:b0:bd:d3:12:a7: 68:63:ed:c7:44:fc:62:3d:3b:af:3f:d3:ed:3d:2c:99:2a:b6: ab:a9:b2:19:ed:dd:02:00:34:7e:17:de:b6:ab:23:0b:c3:99: be:56:6c:c0:6f:3e:01:3b:7e:f6:79:e6:91:cf:cb:a9:15:1b: c2:58:10:59:56:2f:ed:f3:19:70:0c:b4:37:81:21:37:61:fd: 0a:ea:fe:be:c2:11:26:6d:9e:31:9e:c9:1e:70:20:b5:03:16: 5a:4d:20:2d:48:04:f8:00:5d:10:9f:1d:75:33:ec:8e:3b:91: 70:1a:9c:e4:b2:93:87:f8:ed:ba:d5:67:92:52:a1:28:50:6f: 90:ed:f3:f9:d0:26:2d:ae:39:23:d6:6f:e1:25:6d:20:51:80: 09:94:9d:e5:a2:0e:91:dc:02:44:c9:fc:62:f1:68:41:3d:f1: 34:a6:a0:6c:8f:5d:8d:49:dd:6a:c5:d1:a7:34:52:2c:96:c4: f9:35:82:76:df:08:34:79:72:73:ee:21:1a:af:b3:4e:c9:23: 40:04:d3:55 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJhUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ1OEEyQUI3MjlDQjM3 NkIyMDMyOTU5MzQxQzQ0QkI3Njg4NTMzQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8xh/Uo7avcsauJSqvmcRd1fXpCfcIsfO0cjJyExZc7JM1wGJO mwjyWaRfBuElbk6/0++idTlKFpjXD4W1NzXqmUgzA0EaaOufbY/Xrt/tqUXvvPuK HgAE7wchKztIPOMkoPDLkMMQVgiCXC81UM3U9BIOyrsss2474PWR+KV8hSW/V2b7 8dtd5mewm4tdhVwioosi3bzF2pwXxSZe3cFvBzvRhULM6BLl1rzx4/mt4M9gYZuw RefA+EKMZdtZZS+tVG+ooKFJ069c3y1RvoNSX5Ct4B8zTU5XefXWcDNEzbuBD4Es qDb4NEur/AmdYxAR8pnuerR68uHPIaQNDBNXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1YoqtynLN2sgMpWTQcRLt2iFM7AwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzFZb3F0eW5MTjJzZ01wV1RR Y1JMdDJpRk03QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 2hAwDQYJKoZIhvcNAQELBQADggEBAA5fG2OPkpfZPyqslnElgBmneMCjfCgdvYjw shNlvXsQhpsxUtweYTezcxNZlpcBZ5SwvdMSp2hj7cdE/GI9O68/0+09LJkqtqup shnt3QIANH4X3rarIwvDmb5WbMBvPgE7fvZ55pHPy6kVG8JYEFlWL+3zGXAMtDeB ITdh/Qrq/r7CESZtnjGeyR5wILUDFlpNIC1IBPgAXRCfHXUz7I47kXAanOSyk4f4 7brVZ5JSoShQb5Dt8/nQJi2uOSPWb+ElbSBRgAmUneWiDpHcAkTJ/GLxaEE98TSm oGyPXY1J3WrF0ac0UiyWxPk1gnbfCDR5cnPuIRqvs07JI0AE01U= -----END CERTIFICATE-----Generated at Sun Aug 24 11:40:30 2025 by rpki-client