$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7T-DuHjACPBWbzxz3Sc2wbGoWIU.roa File: 7T-DuHjACPBWbzxz3Sc2wbGoWIU.roa (raw, json) Hash identifier: 3lAcGL0Qta7RiG9m4Edk4q0b0EIVz7CV8Ctbd2gg7i8= Subject key identifier: ED:3F:83:B8:78:C0:08:F0:56:6F:3C:73:DD:27:36:C1:B1:A8:58:85 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2604 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7T-DuHjACPBWbzxz3Sc2wbGoWIU.roa Signing time: Fri 22 Aug 2025 08:42:30 +0000 ROA not before: Fri 22 Aug 2025 08:42:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 180.218.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9732 (0x2604) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ED3F83B878C008F0566F3C73DD2736C1B1A85885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:89:03:7b:7c:15:0f:66:bf:9b:14:94:68:3f: e3:d6:38:ba:fd:bc:49:3d:70:bf:69:39:04:f7:05: 8f:89:f1:c5:6a:29:63:6c:c6:43:52:ff:1b:9f:16: d6:35:dd:81:be:7a:f6:de:b0:1f:7d:0d:38:c3:0d: f6:c2:25:b6:0c:e9:a8:67:40:18:f4:5b:51:8c:49: 29:1b:6e:09:0c:84:fb:45:db:ee:d3:42:b4:2d:7c: 94:f4:5b:0c:1c:0e:94:ac:6e:f5:85:a3:f1:de:ae: cc:01:7d:50:30:0f:cd:fa:c3:8a:7b:aa:9e:21:d9: 13:29:9b:67:04:6d:1e:6d:c2:3d:fa:76:27:22:e8: e7:6c:cf:65:e5:a4:55:5a:fc:d7:48:69:0b:c4:6e: 1f:69:af:93:ca:bc:71:64:37:f4:2c:d0:da:45:a0: 6a:b0:7e:c7:8f:21:2b:cc:56:be:0c:5c:cc:9c:5f: de:e7:78:a6:a4:27:df:19:7e:36:3d:52:44:40:96: 6d:91:b4:fa:5f:c1:54:e7:a1:7b:13:82:f8:9e:17: 63:90:43:e8:75:05:0e:ec:5e:1f:d4:ad:26:3b:20: 47:32:a6:f3:70:45:af:2e:80:34:c5:3c:12:bf:c6: 69:da:c1:69:67:b5:3e:ca:9e:c6:99:28:cb:3f:91: 64:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:3F:83:B8:78:C0:08:F0:56:6F:3C:73:DD:27:36:C1:B1:A8:58:85 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7T-DuHjACPBWbzxz3Sc2wbGoWIU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.44.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:0e:b6:47:99:99:57:9c:69:2a:fc:fe:6c:97:84:ba:8a:85: 7c:41:f2:ab:5b:10:5d:a6:65:0d:63:63:2d:31:26:51:60:5e: 22:a7:2b:4b:90:02:f7:cd:c7:62:a0:0b:a7:28:0b:c0:eb:fd: 47:b5:af:63:f7:70:d8:eb:46:a7:73:d2:68:f5:a1:13:b2:a4: b4:72:3a:17:9d:2e:d7:da:13:3c:6a:58:de:0b:27:aa:2c:18: d5:90:ab:70:f8:1c:60:76:0f:6b:1f:41:23:60:89:6c:9f:5c: 0b:2d:64:c2:85:c1:71:7a:07:32:e8:2c:3a:9e:40:22:46:7d: 79:0f:9b:6b:ea:ac:cb:cc:ab:05:9d:c6:57:bd:52:7a:7c:a4: f7:d8:52:d9:f1:63:16:ef:02:04:b0:13:61:19:92:6f:0f:ad: de:c5:2d:c8:07:d1:47:a5:f4:bf:a1:6e:f1:5c:f9:d6:af:d3: 3f:dd:4c:2b:03:5c:a3:98:4b:6b:18:42:98:c3:e0:27:35:0c: 0d:30:0d:a4:2f:a4:f4:8f:aa:6c:dc:4c:02:ce:f1:b2:3b:f8: 86:4b:e5:04:a5:5e:15:05:60:c3:47:3b:48:e7:b6:ba:c0:2c: 06:70:91:3b:45:4a:1b:8d:1a:4d:57:69:ff:79:27:17:3d:3e: a8:7b:85:1c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVEM0Y4M0I4NzhDMDA4 RjA1NjZGM0M3M0REMjczNkMxQjFBODU4ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbiQN7fBUPZr+bFJRoP+PWOLr9vEk9cL9pOQT3BY+J8cVqKWNs xkNS/xufFtY13YG+evbesB99DTjDDfbCJbYM6ahnQBj0W1GMSSkbbgkMhPtF2+7T QrQtfJT0WwwcDpSsbvWFo/HerswBfVAwD836w4p7qp4h2RMpm2cEbR5twj36dici 6Odsz2XlpFVa/NdIaQvEbh9pr5PKvHFkN/Qs0NpFoGqwfsePISvMVr4MXMycX97n eKakJ98ZfjY9UkRAlm2RtPpfwVTnoXsTgvieF2OQQ+h1BQ7sXh/UrSY7IEcypvNw Ra8ugDTFPBK/xmnawWlntT7KnsaZKMs/kWRdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7T+DuHjACPBWbzxz3Sc2wbGoWIUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzdULUR1SGpBQ1BCV2J6eHoz U2Myd2JHb1dJVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2iwwDQYJKoZIhvcNAQELBQADggEBAF8OtkeZmVecaSr8/myXhLqKhXxB8qtbEF2m ZQ1jYy0xJlFgXiKnK0uQAvfNx2KgC6coC8Dr/Ue1r2P3cNjrRqdz0mj1oROypLRy OhedLtfaEzxqWN4LJ6osGNWQq3D4HGB2D2sfQSNgiWyfXAstZMKFwXF6BzLoLDqe QCJGfXkPm2vqrMvMqwWdxle9Unp8pPfYUtnxYxbvAgSwE2EZkm8Prd7FLcgH0Uel 9L+hbvFc+dav0z/dTCsDXKOYS2sYQpjD4Cc1DA0wDaQvpPSPqmzcTALO8bI7+IZL 5QSlXhUFYMNHO0jntrrALAZwkTtFShuNGk1Xaf95Jxc9Pqh7hRw= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:39 2025 by rpki-client