$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AqVAPVrzRdj5n8Wfr_ZgIuoXJ0Y.roa File: AqVAPVrzRdj5n8Wfr_ZgIuoXJ0Y.roa (raw, json) Hash identifier: 9m7vsjL4M9P60WUUafw2YKaqNZIYaLCIbkxBb2Rw9xY= Subject key identifier: 02:A5:40:3D:5A:F3:45:D8:F9:9F:C5:9F:AF:F6:60:22:EA:17:27:46 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2726 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AqVAPVrzRdj5n8Wfr_ZgIuoXJ0Y.roa Signing time: Fri 22 Aug 2025 08:43:36 +0000 ROA not before: Fri 22 Aug 2025 08:43:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 122.100.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10022 (0x2726) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=02A5403D5AF345D8F99FC59FAFF66022EA172746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:17:db:4c:79:cc:64:1c:f4:b0:77:ea:4f:31: 4d:35:8b:d0:9c:96:f1:ca:51:ab:23:12:f8:36:64: a5:d5:e8:6e:d5:3f:63:51:5e:d7:9a:81:82:11:bc: 59:e4:c3:3f:a3:54:14:6c:06:36:af:e7:a2:ae:01: 42:2c:61:be:8d:72:7d:c7:34:99:71:e3:ee:94:7f: b4:35:7e:b8:8a:b0:7c:10:82:3c:61:f7:fe:fa:03: a5:34:51:c1:99:fa:1d:fa:bf:1b:62:8e:81:be:a6: bd:c2:23:57:21:f6:b5:4d:37:2f:e1:ff:44:b6:02: f0:95:72:98:76:27:5e:59:8e:e5:bf:f7:d8:a6:ee: 38:09:2d:40:bb:f7:77:0f:95:6d:a6:24:2e:6f:77: c3:ae:4c:bb:1c:5a:24:3d:b3:10:e8:14:a0:2e:1d: d7:02:f3:8b:9e:22:94:99:4b:3c:c0:0e:5c:ad:59: d1:9f:70:12:d5:aa:d3:74:65:e0:31:ff:ce:36:43: 31:6b:03:83:c3:71:de:1a:59:f6:ec:d5:37:10:0f: 32:04:8b:e6:a6:bd:af:da:a7:83:5f:45:6c:b7:5e: 89:01:af:e6:4a:64:b3:7f:41:17:e1:40:ee:ab:31: 34:b3:ae:05:8f:6a:22:53:0c:ad:67:81:0e:30:63: e9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A5:40:3D:5A:F3:45:D8:F9:9F:C5:9F:AF:F6:60:22:EA:17:27:46 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AqVAPVrzRdj5n8Wfr_ZgIuoXJ0Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.96.0/19 Signature Algorithm: sha256WithRSAEncryption 99:2c:42:c5:1f:8a:f1:63:40:25:a0:ab:98:49:e8:5d:25:7a: 9d:3c:a5:5c:e3:13:df:d2:1e:ec:3e:e1:7d:9e:34:80:fb:28: fd:e6:f8:18:ca:ad:2a:0b:44:78:f0:2a:a1:22:21:25:c7:08: 5c:8a:0e:01:b8:53:b8:c7:97:7f:28:14:95:4a:78:a4:51:c3: b9:7f:38:9a:9c:1d:41:82:99:34:4f:35:9e:e8:8d:94:f8:4b: d1:21:93:17:34:68:4b:46:80:17:69:2a:4f:34:9a:6a:0f:34: d5:ae:9a:a9:bb:8d:f2:86:2b:8f:53:57:02:89:43:03:d8:07: 35:af:74:fc:ec:d6:58:57:31:63:92:0f:51:2e:b1:ad:b3:55: df:b3:59:6b:07:60:09:33:47:e8:be:ff:e3:39:51:e8:c7:72: d4:96:49:15:09:db:53:41:ff:3c:ab:7f:da:48:53:fd:8b:58: f8:ad:1d:58:3d:64:0d:10:a6:41:ec:b9:b8:b5:df:15:af:b9: d1:75:b4:4d:52:b6:b1:a1:95:d9:5d:cb:d7:2a:13:cb:fa:af: 59:a3:45:a8:0f:94:b9:f5:a9:b8:97:cd:a0:ae:88:5a:e0:42: bc:b3:f1:7c:29:4d:8e:e4:99:41:6a:7d:cf:cb:c5:5d:e1:5b: 31:d9:4d:38 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJyYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAyQTU0MDNENUFGMzQ1 RDhGOTlGQzU5RkFGRjY2MDIyRUExNzI3NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvF9tMecxkHPSwd+pPMU01i9CclvHKUasjEvg2ZKXV6G7VP2NR XteagYIRvFnkwz+jVBRsBjav56KuAUIsYb6Ncn3HNJlx4+6Uf7Q1friKsHwQgjxh 9/76A6U0UcGZ+h36vxtijoG+pr3CI1ch9rVNNy/h/0S2AvCVcph2J15ZjuW/99im 7jgJLUC793cPlW2mJC5vd8OuTLscWiQ9sxDoFKAuHdcC84ueIpSZSzzADlytWdGf cBLVqtN0ZeAx/842QzFrA4PDcd4aWfbs1TcQDzIEi+amva/ap4NfRWy3XokBr+ZK ZLN/QRfhQO6rMTSzrgWPaiJTDK1ngQ4wY+kRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAqVAPVrzRdj5n8Wfr/ZgIuoXJ0YwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0FxVkFQVnJ6UmRqNW44V2Zy X1pnSXVvWEowWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV6 ZGAwDQYJKoZIhvcNAQELBQADggEBAJksQsUfivFjQCWgq5hJ6F0lep08pVzjE9/S Huw+4X2eNID7KP3m+BjKrSoLRHjwKqEiISXHCFyKDgG4U7jHl38oFJVKeKRRw7l/ OJqcHUGCmTRPNZ7ojZT4S9Ehkxc0aEtGgBdpKk80mmoPNNWumqm7jfKGK49TVwKJ QwPYBzWvdPzs1lhXMWOSD1Eusa2zVd+zWWsHYAkzR+i+/+M5UejHctSWSRUJ21NB /zyrf9pIU/2LWPitHVg9ZA0QpkHsubi13xWvudF1tE1StrGhldldy9cqE8v6r1mj RagPlLn1qbiXzaCuiFrgQryz8XwpTY7kmUFqfc/LxV3hWzHZTTg= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:31 2025 by rpki-client