$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3G5G-aSvt5qIPOTrs9IOLO1RoKI.roa File: 3G5G-aSvt5qIPOTrs9IOLO1RoKI.roa (raw, json) Hash identifier: 1F0rpgM93ph8JHLqiPmO/Od1jYk6/yO3wY9b0tN4hyg= Subject key identifier: DC:6E:46:F9:A4:AF:B7:9A:88:3C:E4:EB:B3:D2:0E:2C:ED:51:A0:A2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2621 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3G5G-aSvt5qIPOTrs9IOLO1RoKI.roa Signing time: Fri 22 Aug 2025 08:42:37 +0000 ROA not before: Fri 22 Aug 2025 08:42:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 124.6.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9761 (0x2621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DC6E46F9A4AFB79A883CE4EBB3D20E2CED51A0A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:74:4b:4b:e5:1a:d4:2a:af:b9:e7:44:70:13: 95:c0:2f:29:87:3e:ce:c9:ea:fd:5e:59:d4:7f:f8: 4a:29:8f:ec:aa:05:f8:11:42:38:01:ba:98:9c:4a: 6a:f1:1e:64:87:1e:fd:35:0b:81:e8:ec:e9:ce:28: 1d:f4:a1:22:bd:39:bf:d6:00:e0:a3:15:27:fa:99: da:bd:11:e8:7f:f4:b6:5c:22:a9:db:97:4e:fa:24: 07:ae:ad:9c:af:fe:e7:18:ec:b8:3f:81:83:43:bd: 9d:54:03:87:e2:ee:92:9c:84:b7:a6:f1:81:a4:2b: de:a1:8c:6d:58:a7:70:ba:d3:4a:42:0d:35:16:25: da:83:8f:d3:90:ae:fc:d2:a4:88:cd:00:cf:25:75: 36:46:a6:03:42:9a:98:04:92:07:b7:55:5a:7e:b5: 3a:3c:98:68:fc:e5:db:db:ff:84:43:ad:c7:98:6d: 7a:34:59:1c:44:bd:cd:c2:c7:39:3b:be:31:25:2e: 1e:ba:af:59:69:3d:95:d7:d5:05:f2:ab:8b:07:b1: 29:67:06:60:db:83:39:7f:6d:a1:2e:45:61:a5:58: 8b:8c:d2:fd:62:8e:a0:f0:d0:2d:bc:fc:77:6f:a1: 91:f9:5b:00:35:f8:e9:f6:06:07:13:ae:f2:59:16: 3b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:6E:46:F9:A4:AF:B7:9A:88:3C:E4:EB:B3:D2:0E:2C:ED:51:A0:A2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3G5G-aSvt5qIPOTrs9IOLO1RoKI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.6.0.0/21 Signature Algorithm: sha256WithRSAEncryption 82:f7:a7:6c:11:66:05:f5:53:c5:e5:fe:7b:48:ae:a5:f5:b1: 83:e7:e4:9b:db:61:de:a1:f4:77:b0:7f:da:f3:1e:3a:84:65: cf:a4:fb:e2:97:32:68:be:5b:68:45:9c:7d:a1:03:7a:ff:37: 83:18:fe:8e:04:3a:68:07:ef:c9:53:4d:ec:3f:bf:2c:3e:30: a5:dd:dd:df:d8:04:40:31:89:8e:b4:ec:3f:b4:f5:e7:21:a0: 82:2f:75:67:da:e9:2a:b5:f9:e5:57:d3:d5:30:41:64:32:df: c4:a0:fb:cf:e0:4a:c6:d6:bb:7a:12:ec:c5:d0:5f:9a:96:22: db:7a:1e:d2:81:73:1a:b9:8d:df:9c:6a:a2:78:42:f0:cd:12: 48:49:9b:c3:52:c5:0a:c1:14:fb:2d:e1:13:b9:e7:7b:01:46: 9e:68:4b:71:54:56:f1:5a:5c:b8:3e:82:87:cc:aa:67:ee:b1: 5d:05:4a:03:ac:36:0f:a6:43:f2:8c:1c:bb:ef:93:90:d1:45: 08:9a:2d:45:84:af:23:83:d0:77:a5:13:d3:52:b5:3d:f5:c6: 86:45:bd:c3:db:9b:4d:38:ea:d1:72:39:ff:10:52:76:6a:99: 4b:ef:7e:10:b8:67:9c:af:1a:cf:fb:36:a2:53:57:c9:82:1d: 66:8d:55:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJiEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERDNkU0NkY5QTRBRkI3 OUE4ODNDRTRFQkIzRDIwRTJDRUQ1MUEwQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbdEtL5RrUKq+550RwE5XALymHPs7J6v1eWdR/+Eopj+yqBfgR QjgBupicSmrxHmSHHv01C4Ho7OnOKB30oSK9Ob/WAOCjFSf6mdq9Eeh/9LZcIqnb l076JAeurZyv/ucY7Lg/gYNDvZ1UA4fi7pKchLem8YGkK96hjG1Yp3C600pCDTUW JdqDj9OQrvzSpIjNAM8ldTZGpgNCmpgEkge3VVp+tTo8mGj85dvb/4RDrceYbXo0 WRxEvc3Cxzk7vjElLh66r1lpPZXX1QXyq4sHsSlnBmDbgzl/baEuRWGlWIuM0v1i jqDw0C28/HdvoZH5WwA1+On2BgcTrvJZFju/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3G5G+aSvt5qIPOTrs9IOLO1RoKIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzNHNUctYVN2dDVxSVBPVHJz OUlPTE8xUm9LSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN8 BgAwDQYJKoZIhvcNAQELBQADggEBAIL3p2wRZgX1U8Xl/ntIrqX1sYPn5JvbYd6h 9Hewf9rzHjqEZc+k++KXMmi+W2hFnH2hA3r/N4MY/o4EOmgH78lTTew/vyw+MKXd 3d/YBEAxiY607D+09echoIIvdWfa6Sq1+eVX09UwQWQy38Sg+8/gSsbWu3oS7MXQ X5qWItt6HtKBcxq5jd+caqJ4QvDNEkhJm8NSxQrBFPst4RO553sBRp5oS3FUVvFa XLg+gofMqmfusV0FSgOsNg+mQ/KMHLvvk5DRRQiaLUWEryOD0HelE9NStT31xoZF vcPbm0046tFyOf8QUnZqmUvvfhC4Z5yvGs/7NqJTV8mCHWaNVUg= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:43 2025 by rpki-client