$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CM77bX1CDpi_unCHTVBQ8LK2eVI.roa File: CM77bX1CDpi_unCHTVBQ8LK2eVI.roa (raw, json) Hash identifier: DpWBjNzdx0d6MEEfqhul7KOtDctY0HVA/FEglrLNtiU= Subject key identifier: 08:CE:FB:6D:7D:42:0E:98:BF:BA:70:87:4D:50:50:F0:B2:B6:79:52 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 273B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CM77bX1CDpi_unCHTVBQ8LK2eVI.roa Signing time: Fri 22 Aug 2025 08:43:40 +0000 ROA not before: Fri 22 Aug 2025 08:43:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10043 (0x273b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=08CEFB6D7D420E98BFBA70874D5050F0B2B67952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:f7:68:18:43:47:78:23:8b:63:20:31:ff: af:03:ec:0a:11:98:66:43:05:86:fe:f4:4a:db:01: f1:99:1f:aa:88:1e:57:88:c4:cd:54:33:6b:2f:2c: 02:f3:bd:72:01:99:90:f3:32:bc:7b:55:33:85:dc: 35:e9:41:8a:90:80:88:72:a7:34:aa:99:9d:a0:be: 64:8d:7a:99:91:b3:f0:df:4c:85:d7:a0:c9:a5:ca: 7c:6c:6d:5b:89:76:5f:07:c0:4a:16:9e:62:de:19: a7:1b:ae:5b:d5:8d:88:06:0c:1e:ec:f9:5f:8e:ff: 95:05:ba:64:9d:88:7b:7f:ea:e6:3b:a3:ec:4c:d4: 07:52:6f:4c:8c:14:15:5f:04:da:bd:7f:ea:4d:08: 16:2a:c5:0f:6f:11:0e:79:69:71:3f:e0:a9:5d:b4: e7:76:95:1f:1d:17:9e:30:f0:f9:74:bc:25:86:5e: 15:5a:01:c0:4a:3b:e5:dc:6a:45:11:36:34:32:62: df:76:93:80:0c:c9:ef:33:de:f2:3e:9e:8d:38:67: 6c:13:22:e6:ed:5f:bf:e5:ae:96:bd:20:2e:74:49: 5e:34:18:4d:51:f8:01:65:d0:80:1c:a1:b7:3c:44: 50:29:2d:1f:65:7e:b8:d4:2d:d1:a5:10:7b:99:68: 34:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CE:FB:6D:7D:42:0E:98:BF:BA:70:87:4D:50:50:F0:B2:B6:79:52 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CM77bX1CDpi_unCHTVBQ8LK2eVI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.168.0/21 Signature Algorithm: sha256WithRSAEncryption 06:4a:98:5b:47:d3:21:15:f9:9c:08:ff:20:6b:0e:f3:86:3b: c4:4c:52:20:01:4b:37:74:f9:7b:55:23:8f:5e:3a:f5:46:e5: 8d:02:a8:6f:85:e9:71:54:55:bc:fc:bd:49:94:fa:df:2b:85: 3e:7d:d2:7e:b9:a6:32:76:20:ef:c4:79:19:16:55:40:96:f9: be:0b:e6:21:12:ca:f8:78:43:45:94:67:90:80:60:63:6b:4e: a2:53:bb:a2:43:c9:17:46:ac:fe:55:69:77:20:67:76:9b:9e: 2f:ff:41:78:1c:e2:26:42:36:91:23:d4:e1:b9:4b:f5:32:eb: 08:da:60:32:be:88:4e:32:8d:62:c8:24:9a:3e:e8:53:14:85: f1:d4:d2:1e:e9:39:3b:69:b5:d9:a3:52:ae:3a:0a:9d:42:82: 0c:3a:6c:ad:11:db:b5:76:cb:45:a3:ad:1e:df:68:13:c9:9f: 56:64:10:00:2b:38:b8:8e:0e:6a:3d:38:1e:02:76:b5:c8:3a: 89:e1:6f:ef:cf:53:f3:94:e8:7c:16:dc:a2:73:f6:47:c5:20: d9:d5:c0:7b:10:31:db:4b:1c:7b:d8:84:86:db:7b:e1:ea:ce: ab:fe:93:63:c3:8a:80:9e:e6:2f:2b:a6:64:cf:a2:b5:9a:b1: 87:b2:6a:a1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJzswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzNDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA4Q0VGQjZEN0Q0MjBF OThCRkJBNzA4NzRENTA1MEYwQjJCNjc5NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJhPdoGENHeCOLYyAx/68D7AoRmGZDBYb+9ErbAfGZH6qIHleI xM1UM2svLALzvXIBmZDzMrx7VTOF3DXpQYqQgIhypzSqmZ2gvmSNepmRs/DfTIXX oMmlynxsbVuJdl8HwEoWnmLeGacbrlvVjYgGDB7s+V+O/5UFumSdiHt/6uY7o+xM 1AdSb0yMFBVfBNq9f+pNCBYqxQ9vEQ55aXE/4KldtOd2lR8dF54w8Pl0vCWGXhVa AcBKO+XcakURNjQyYt92k4AMye8z3vI+no04Z2wTIubtX7/lrpa9IC50SV40GE1R +AFl0IAcobc8RFApLR9lfrjULdGlEHuZaDQZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUCM77bX1CDpi/unCHTVBQ8LK2eVIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0NNNzdiWDFDRHBpX3VuQ0hU VkJROExLMmVWSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2qgwDQYJKoZIhvcNAQELBQADggEBAAZKmFtH0yEV+ZwI/yBrDvOGO8RMUiABSzd0 +XtVI49eOvVG5Y0CqG+F6XFUVbz8vUmU+t8rhT590n65pjJ2IO/EeRkWVUCW+b4L 5iESyvh4Q0WUZ5CAYGNrTqJTu6JDyRdGrP5VaXcgZ3abni//QXgc4iZCNpEj1OG5 S/Uy6wjaYDK+iE4yjWLIJJo+6FMUhfHU0h7pOTtptdmjUq46Cp1Cggw6bK0R27V2 y0WjrR7faBPJn1ZkEAArOLiODmo9OB4CdrXIOonhb+/PU/OU6HwW3KJz9kfFINnV wHsQMdtLHHvYhIbbe+Hqzqv+k2PDioCe5i8rpmTPorWasYeyaqE= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:39 2025 by rpki-client