$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BHPv37b5zVsexhySzkMoOfy7GjE.roa File: BHPv37b5zVsexhySzkMoOfy7GjE.roa (raw, json) Hash identifier: BDOejJ323eOMKwO8L1XYQwouIHGrRPkzyGbEOTqnvCQ= Subject key identifier: 04:73:EF:DF:B6:F9:CD:5B:1E:C6:1C:92:CE:43:28:39:FC:BB:1A:31 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25FC Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BHPv37b5zVsexhySzkMoOfy7GjE.roa Signing time: Fri 22 Aug 2025 08:42:27 +0000 ROA not before: Fri 22 Aug 2025 08:42:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 61.58.112.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9724 (0x25fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0473EFDFB6F9CD5B1EC61C92CE432839FCBB1A31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:49:51:81:31:7b:19:89:23:d9:b5:94:b9:a8: b1:b2:a9:0f:16:cd:06:9f:10:53:3a:79:b4:52:60: dc:3c:70:73:97:38:58:3d:89:ba:33:08:d3:02:7b: ee:78:96:e4:a4:9d:3e:c5:da:33:fd:fc:bf:c1:89: da:fd:da:ba:0d:4b:05:8a:10:b5:22:68:a7:11:d6: a2:23:e5:b5:52:0d:d3:3b:f1:0f:1a:96:36:78:b2: 0c:0d:37:37:d8:ce:b5:f4:9a:a9:43:81:d9:b5:e3: 17:fb:13:02:e1:91:49:ef:a5:85:6f:3a:d4:ad:f3: 5a:41:78:09:50:51:80:62:8b:dd:11:e1:2c:cc:8f: 2b:9f:9f:62:f3:96:b9:91:41:84:3e:1e:73:2b:32: 85:92:8b:47:0d:bd:11:d5:fb:1e:0a:a5:d3:90:e7: 73:0f:05:80:86:12:c3:02:20:85:c5:da:a2:2b:fd: dd:e3:b0:8f:73:27:19:90:6b:0a:1c:c4:eb:5d:b9: 82:d8:bd:a5:71:ed:66:f9:d3:1a:87:c1:0b:a8:a4: 4e:4d:a1:b4:6a:e3:d5:06:28:86:bc:38:92:1c:9d: 0b:0e:47:b2:90:47:a4:bc:1c:ed:28:eb:7d:2c:54: e8:14:16:83:16:ef:f9:a9:40:87:07:16:47:00:39: cb:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:73:EF:DF:B6:F9:CD:5B:1E:C6:1C:92:CE:43:28:39:FC:BB:1A:31 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BHPv37b5zVsexhySzkMoOfy7GjE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.112.0/21 Signature Algorithm: sha256WithRSAEncryption 87:e4:d2:02:ad:c4:f5:3a:79:af:10:80:ad:12:0f:1c:bb:d4: ff:10:5c:b1:c0:b2:ee:eb:17:db:1f:bf:16:49:29:05:e7:76: 5b:da:65:50:b1:cb:d7:42:79:6a:2a:a2:f2:bc:f1:01:f1:1a: c2:96:f7:45:94:6b:b5:84:20:61:63:65:26:f3:0b:be:25:b2: 24:da:d3:ad:2a:ae:f2:06:7a:15:b2:d6:c6:d7:22:62:41:30: ee:ca:d3:e3:19:9c:d4:9f:c9:e9:16:b6:39:c8:94:e1:30:fa: d0:ac:aa:be:74:7a:73:e4:da:67:cf:aa:0f:0b:80:24:f3:58: a2:13:b8:9d:c7:db:ec:06:fb:98:59:99:1e:bc:7c:84:0d:6b: d6:48:5d:ca:54:5b:d2:8c:09:11:7a:03:85:9c:76:b2:4f:a9: ad:af:d9:01:9a:e6:86:7f:11:61:74:1c:f5:62:15:66:53:05: 37:7c:31:da:c6:51:08:db:2a:6c:f1:a3:00:8b:4f:20:87:02: bf:82:0b:f3:61:47:4b:ff:2a:d1:b4:d7:5a:0b:50:91:c6:c8: 06:48:43:3d:ff:80:2f:05:68:a2:f8:f1:07:13:1a:b7:06:96: 3a:d1:e0:1c:a6:c8:e9:74:e6:fc:cb:14:3c:9a:1d:53:64:56: ac:57:c8:b7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJfwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA0NzNFRkRGQjZGOUNE NUIxRUM2MUM5MkNFNDMyODM5RkNCQjFBMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKSVGBMXsZiSPZtZS5qLGyqQ8WzQafEFM6ebRSYNw8cHOXOFg9 ibozCNMCe+54luSknT7F2jP9/L/Bidr92roNSwWKELUiaKcR1qIj5bVSDdM78Q8a ljZ4sgwNNzfYzrX0mqlDgdm14xf7EwLhkUnvpYVvOtSt81pBeAlQUYBii90R4SzM jyufn2LzlrmRQYQ+HnMrMoWSi0cNvRHV+x4KpdOQ53MPBYCGEsMCIIXF2qIr/d3j sI9zJxmQawocxOtduYLYvaVx7Wb50xqHwQuopE5NobRq49UGKIa8OJIcnQsOR7KQ R6S8HO0o630sVOgUFoMW7/mpQIcHFkcAOculAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBHPv37b5zVsexhySzkMoOfy7GjEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0JIUHYzN2I1elZzZXhoeVN6 a01vT2Z5N0dqRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OnAwDQYJKoZIhvcNAQELBQADggEBAIfk0gKtxPU6ea8QgK0SDxy71P8QXLHAsu7r F9sfvxZJKQXndlvaZVCxy9dCeWoqovK88QHxGsKW90WUa7WEIGFjZSbzC74lsiTa 060qrvIGehWy1sbXImJBMO7K0+MZnNSfyekWtjnIlOEw+tCsqr50enPk2mfPqg8L gCTzWKITuJ3H2+wG+5hZmR68fIQNa9ZIXcpUW9KMCRF6A4WcdrJPqa2v2QGa5oZ/ EWF0HPViFWZTBTd8MdrGUQjbKmzxowCLTyCHAr+CC/NhR0v/KtG011oLUJHGyAZI Qz3/gC8FaKL48QcTGrcGljrR4BymyOl05vzLFDyaHVNkVqxXyLc= -----END CERTIFICATE-----Generated at Sun Aug 24 11:43:55 2025 by rpki-client