$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8weKsOc1exyClQgWxcYudHcO4so.roa File: 8weKsOc1exyClQgWxcYudHcO4so.roa (raw, json) Hash identifier: 3yKmfotELHNPsiqfwB7EcKssiiOyRNCDygJ6MfWth6w= Subject key identifier: F3:07:8A:B0:E7:35:7B:1C:82:95:08:16:C5:C6:2E:74:77:0E:E2:CA Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26A8 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8weKsOc1exyClQgWxcYudHcO4so.roa Signing time: Fri 22 Aug 2025 08:43:08 +0000 ROA not before: Fri 22 Aug 2025 08:43:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 211.76.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9896 (0x26a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F3078AB0E7357B1C82950816C5C62E74770EE2CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:78:fa:60:23:b0:aa:88:39:10:36:33:44:2c: 78:48:e7:54:e6:fe:33:33:e0:a4:22:a7:c7:c7:90: 60:e5:5c:af:49:a2:95:dd:4f:79:39:73:a1:0c:80: 4f:f8:95:7f:df:b8:f7:91:b6:9c:8e:fa:59:dd:13: 1c:c0:78:4e:1e:b7:55:e2:d3:0c:c9:b9:89:12:51: b0:1c:84:22:8c:a5:ae:0b:0f:71:04:5a:5f:b5:14: a0:58:60:60:16:19:06:05:b1:89:1f:dc:b9:68:f1: 1e:3c:7f:0c:27:a3:58:3d:3e:46:2d:6f:c6:95:80: 9d:d6:65:95:94:e3:14:ad:27:3e:44:e2:a1:76:53: f2:93:81:87:25:d9:17:c4:f2:af:b7:7e:c9:ef:bb: 10:ae:3d:08:67:56:91:4e:55:e0:95:e5:db:b4:85: 4e:49:71:27:12:55:56:da:b7:46:6a:fc:8e:37:8d: 94:31:70:61:22:20:fb:85:6a:cd:bf:04:eb:93:d0: 57:a0:43:54:ca:66:03:81:78:40:ac:67:d7:32:cd: c9:5b:0f:79:a2:45:87:2e:fb:42:3a:9a:23:d8:5a: e7:48:6d:1c:b4:f9:b3:5e:fe:f3:df:fe:f7:10:63: 74:d7:d5:58:50:58:79:b8:94:00:7c:dd:91:8c:d4: a4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:07:8A:B0:E7:35:7B:1C:82:95:08:16:C5:C6:2E:74:77:0E:E2:CA X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8weKsOc1exyClQgWxcYudHcO4so.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.46.0/23 Signature Algorithm: sha256WithRSAEncryption 36:5c:2d:41:cb:5e:b3:26:24:0d:28:b3:64:93:d9:d8:d4:45: 51:10:7d:35:61:8f:e3:18:b6:cf:46:22:f7:06:60:9d:18:b6: 86:60:26:a7:cc:d6:8b:e1:21:75:d1:67:9c:a4:80:39:7b:b4: 4a:61:99:cf:e3:75:81:12:6c:05:83:16:90:cf:24:39:f0:23: a5:b6:43:9b:ee:23:65:78:3f:03:8e:f8:48:d7:4f:eb:5f:7b: 6a:7a:e6:9e:1b:11:45:5a:80:40:52:f3:dd:23:cd:93:69:56: d9:2c:31:3d:c3:f0:e6:92:34:4d:8a:ca:80:5f:46:db:fe:48: 31:78:74:0f:09:ac:b3:e0:cf:19:a0:d8:ff:a1:dd:ef:46:b1: 56:d1:f1:26:21:42:69:35:17:9f:39:e2:47:b9:ef:3e:9a:00: 78:0e:3e:fe:a6:7a:79:1a:3c:ec:f2:f5:70:5b:6f:8b:a2:6e: 2b:0c:b9:2f:86:e9:55:75:d4:d8:ce:bf:e9:73:37:ed:a6:23: f0:86:cd:c6:97:09:fe:84:69:71:09:49:cc:fd:5a:0c:26:d6: bf:86:d3:01:9f:bd:b8:e4:80:cf:66:c9:10:ee:8a:3e:de:7c: b7:41:7c:9f:33:b5:d3:e4:77:a1:c3:0d:bf:ba:46:7a:b6:10: 5f:04:b4:5c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJqgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYzMDc4QUIwRTczNTdC MUM4Mjk1MDgxNkM1QzYyRTc0NzcwRUUyQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoePpgI7CqiDkQNjNELHhI51Tm/jMz4KQip8fHkGDlXK9JopXd T3k5c6EMgE/4lX/fuPeRtpyO+lndExzAeE4et1Xi0wzJuYkSUbAchCKMpa4LD3EE Wl+1FKBYYGAWGQYFsYkf3Llo8R48fwwno1g9PkYtb8aVgJ3WZZWU4xStJz5E4qF2 U/KTgYcl2RfE8q+3fsnvuxCuPQhnVpFOVeCV5du0hU5JcScSVVbat0Zq/I43jZQx cGEiIPuFas2/BOuT0FegQ1TKZgOBeECsZ9cyzclbD3miRYcu+0I6miPYWudIbRy0 +bNe/vPf/vcQY3TX1VhQWHm4lAB83ZGM1KS3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8weKsOc1exyClQgWxcYudHcO4sowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzh3ZUtzT2MxZXh5Q2xRZ1d4 Y1l1ZEhjTzRzby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHT TC4wDQYJKoZIhvcNAQELBQADggEBADZcLUHLXrMmJA0os2ST2djURVEQfTVhj+MY ts9GIvcGYJ0YtoZgJqfM1ovhIXXRZ5ykgDl7tEphmc/jdYESbAWDFpDPJDnwI6W2 Q5vuI2V4PwOO+EjXT+tfe2p65p4bEUVagEBS890jzZNpVtksMT3D8OaSNE2KyoBf Rtv+SDF4dA8JrLPgzxmg2P+h3e9GsVbR8SYhQmk1F5854ke57z6aAHgOPv6menka POzy9XBbb4uibisMuS+G6VV11NjOv+lzN+2mI/CGzcaXCf6EaXEJScz9Wgwm1r+G 0wGfvbjkgM9myRDuij7efLdBfJ8ztdPkd6HDDb+6Rnq2EF8EtFw= -----END CERTIFICATE-----Generated at Sun Aug 24 11:40:27 2025 by rpki-client