$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/EWx_6782sNHup9c-uM5RjaeDku4.roa File: EWx_6782sNHup9c-uM5RjaeDku4.roa (raw, json) Hash identifier: U9PGbXkhF6N/ph51nzpm/vTGEGtPehTt3cXzMQ7C2qY= Subject key identifier: 11:6C:7F:EB:BF:36:B0:D1:EE:A7:D7:3E:B8:CE:51:8D:A7:83:92:EE Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26A3 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/EWx_6782sNHup9c-uM5RjaeDku4.roa Signing time: Fri 22 Aug 2025 08:43:07 +0000 ROA not before: Fri 22 Aug 2025 08:43:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 61.61.208.0/21 maxlen: 29 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9891 (0x26a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=116C7FEBBF36B0D1EEA7D73EB8CE518DA78392EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:25:5d:9e:6a:14:9d:08:3b:4e:e8:61:a9:d7: 74:78:41:05:fb:49:57:4d:e2:72:86:60:c4:e1:aa: 97:21:ec:1e:f0:51:fb:94:e2:58:74:fe:0a:70:2a: f1:47:02:11:e3:dd:6d:61:08:65:e8:38:19:56:2e: 02:2d:14:24:0b:6b:73:42:b2:ab:bf:6e:09:83:d7: d6:b9:60:2c:6c:d4:16:cf:0e:d3:36:c8:a7:be:12: 76:aa:46:1c:1d:21:67:32:4a:76:1f:dd:1d:5a:1d: 5f:ea:7b:61:5b:ab:36:36:fb:7b:1e:a3:40:af:26: d2:09:a3:f7:4d:21:c6:0d:d4:d1:60:81:07:56:ac: 07:55:9a:5f:2a:39:f5:d9:d2:91:bc:70:6b:2e:71: e7:07:36:4b:7d:90:e5:25:01:52:cd:d3:91:12:f6: 13:6b:69:ef:ee:42:40:64:be:25:2e:71:bb:10:3c: 30:a0:bb:eb:2e:da:3b:21:c5:33:9d:30:73:6f:4c: 90:7b:8f:67:e6:ab:48:bf:92:71:c0:09:7c:a0:17: 86:a9:2f:cd:13:91:e1:33:de:84:93:45:bd:ff:0b: 18:f3:80:cb:77:5e:7d:07:e8:92:44:c7:4e:95:5e: a6:46:42:6c:1f:30:da:37:c7:c9:6d:55:0e:d7:f2: bb:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:6C:7F:EB:BF:36:B0:D1:EE:A7:D7:3E:B8:CE:51:8D:A7:83:92:EE X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/EWx_6782sNHup9c-uM5RjaeDku4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.208.0/21 Signature Algorithm: sha256WithRSAEncryption 3a:eb:31:c0:86:ec:8c:c0:78:fe:57:e3:ae:3c:45:18:01:2a: 7c:0b:20:65:31:71:d2:7c:00:b0:b1:a1:40:c2:b4:c5:d7:f1: 8f:98:5a:fb:ea:1e:b4:78:30:e8:ed:5a:97:9d:10:8d:26:f0: 98:b8:4f:51:24:d7:39:37:5d:32:38:9b:e8:60:3c:76:a2:58: 3e:f7:f1:5d:16:f9:3d:55:4f:c0:87:48:66:c4:12:6d:28:9f: 6a:c7:7a:09:84:2c:07:55:9d:69:0d:a7:fc:1e:0d:c8:ed:4b: ee:1b:85:6c:93:33:0e:f5:97:e7:82:a1:bd:0d:77:a7:70:40: c5:88:2a:c4:ab:29:49:77:64:fc:b6:9d:64:1c:9b:6b:09:c2: 38:e6:ae:14:a8:42:b9:0a:ef:ba:52:56:92:56:00:1a:60:38: 2e:7c:c9:4a:24:cd:30:40:da:e8:0b:b0:4e:31:d5:b8:59:a0: c4:60:40:87:d2:09:50:0c:94:76:44:9b:6a:28:68:6c:55:d0: 68:e8:c0:15:b6:32:15:af:ea:94:72:ea:01:f7:9e:75:7e:d4: 2b:0e:5a:cc:c2:4f:fc:8c:9f:5d:32:8f:51:28:9e:fa:14:80: 0f:dc:97:3a:ff:7d:f5:48:81:45:4e:e3:52:70:91:22:c8:e1: af:64:5e:f4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJqMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDExNkM3RkVCQkYzNkIw RDFFRUE3RDczRUI4Q0U1MThEQTc4MzkyRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5JV2eahSdCDtO6GGp13R4QQX7SVdN4nKGYMThqpch7B7wUfuU 4lh0/gpwKvFHAhHj3W1hCGXoOBlWLgItFCQLa3NCsqu/bgmD19a5YCxs1BbPDtM2 yKe+EnaqRhwdIWcySnYf3R1aHV/qe2FbqzY2+3seo0CvJtIJo/dNIcYN1NFggQdW rAdVml8qOfXZ0pG8cGsucecHNkt9kOUlAVLN05ES9hNrae/uQkBkviUucbsQPDCg u+su2jshxTOdMHNvTJB7j2fmq0i/knHACXygF4apL80TkeEz3oSTRb3/CxjzgMt3 Xn0H6JJEx06VXqZGQmwfMNo3x8ltVQ7X8ru/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUEWx/6782sNHup9c+uM5RjaeDku4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0VXeF82Nzgyc05IdXA5Yy11 TTVSamFlRGt1NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 PdAwDQYJKoZIhvcNAQELBQADggEBADrrMcCG7IzAeP5X4648RRgBKnwLIGUxcdJ8 ALCxoUDCtMXX8Y+YWvvqHrR4MOjtWpedEI0m8Ji4T1Ek1zk3XTI4m+hgPHaiWD73 8V0W+T1VT8CHSGbEEm0on2rHegmELAdVnWkNp/weDcjtS+4bhWyTMw71l+eCob0N d6dwQMWIKsSrKUl3ZPy2nWQcm2sJwjjmrhSoQrkK77pSVpJWABpgOC58yUokzTBA 2ugLsE4x1bhZoMRgQIfSCVAMlHZEm2ooaGxV0GjowBW2MhWv6pRy6gH3nnV+1CsO WszCT/yMn10yj1EonvoUgA/clzr/ffVIgUVO41JwkSLI4a9kXvQ= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:42 2025 by rpki-client