$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FxwrtadF1QFUbWM473bNqj1mEJE.roa File: FxwrtadF1QFUbWM473bNqj1mEJE.roa (raw, json) Hash identifier: dNxa6gIXR04mZghtfo6BD7EgespAsR8MJr4ZGG66ii8= Subject key identifier: 17:1C:2B:B5:A7:45:D5:01:54:6D:63:38:EF:76:CD:AA:3D:66:10:91 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2716 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FxwrtadF1QFUbWM473bNqj1mEJE.roa Signing time: Fri 22 Aug 2025 08:43:33 +0000 ROA not before: Fri 22 Aug 2025 08:43:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10006 (0x2716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=171C2BB5A745D501546D6338EF76CDAA3D661091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:44:f5:66:15:43:0d:e4:5c:ea:5c:82:d7:ed: dd:7f:20:5d:39:09:15:a0:80:a7:33:bc:03:b0:ae: 94:74:98:2d:ff:48:d0:28:04:b7:9d:6b:0c:33:4d: f8:27:23:e2:6e:b7:ab:ba:d8:4a:d4:76:0c:e7:f9: c7:f1:24:b7:bb:a8:0e:f4:fe:8a:ab:95:04:6a:7b: 63:00:01:ef:47:d2:3a:c3:d1:52:e7:71:ed:ee:67: af:35:92:09:6d:fc:72:6f:ab:a6:2c:a1:b3:7e:b0: 07:2c:8e:b2:d1:4d:a0:3b:e1:c6:85:ac:50:cb:d6: e0:13:b0:bb:a5:68:60:fd:cd:73:9a:c6:6d:6b:96: fb:83:54:01:93:5f:31:64:2a:5e:37:ac:1a:29:79: 93:c2:3a:c1:da:7a:df:b0:36:fd:7f:0a:74:a1:55: 19:c6:65:6f:b3:2b:fe:eb:57:6c:22:02:3d:0b:30: 0b:ac:fc:1c:7a:69:15:a2:85:a4:26:d0:8c:47:13: d4:06:42:14:97:88:c8:8d:60:c4:4e:69:4c:c5:6c: 1d:f1:48:51:24:14:29:f3:06:b7:ca:0e:47:48:20: b4:f4:47:9e:60:de:f5:b3:eb:fe:c9:a9:41:97:aa: 37:73:3b:ba:8a:46:7a:b0:a4:6e:45:0a:2f:ca:18: 5b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:1C:2B:B5:A7:45:D5:01:54:6D:63:38:EF:76:CD:AA:3D:66:10:91 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FxwrtadF1QFUbWM473bNqj1mEJE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.188.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:59:f0:8c:aa:2e:c7:5b:bd:5e:84:3d:c1:cb:39:59:e4:c7: b2:cf:fc:ad:a5:48:2b:c7:41:ca:93:17:f2:74:eb:79:31:28: 08:8b:d2:e0:6e:a4:57:d5:3b:34:35:ee:71:ba:e2:5c:e4:9b: 17:e2:97:3a:f7:6d:ed:83:94:0f:9a:fb:7f:f0:8e:c5:5a:61: 70:f7:13:b2:32:75:e8:42:61:04:9c:96:05:fb:ae:78:1c:34: c3:68:6a:1d:0a:5c:de:1d:e9:10:de:a3:58:c1:17:b0:13:5e: b0:5c:af:60:c0:d9:25:18:e4:09:af:1c:7a:4c:ee:13:0a:3e: f3:73:c6:57:34:86:ef:37:7d:58:08:b5:f1:a3:31:ec:ca:5e: 99:d0:f4:83:1a:c0:3b:db:77:33:af:fd:d5:4f:14:12:5d:e1: 1b:2b:20:12:d9:c3:ba:1d:be:06:dd:4a:d3:dc:a6:f4:54:b7: 92:16:91:02:48:d3:ff:08:a4:f4:da:0a:8e:90:c2:1e:97:49: d1:f4:6c:eb:cf:7b:ed:e3:48:76:f9:50:3d:ca:1b:e4:b3:6e: 60:53:d9:dc:8d:13:80:24:47:5a:c8:0e:9a:dc:ee:80:3e:78: a4:da:6b:0e:92:5f:46:a2:14:f4:a3:4b:7e:0b:3e:cf:45:4b: 10:93:33:34 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJxYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE3MUMyQkI1QTc0NUQ1 MDE1NDZENjMzOEVGNzZDREFBM0Q2NjEwOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBRPVmFUMN5FzqXILX7d1/IF05CRWggKczvAOwrpR0mC3/SNAo BLedawwzTfgnI+Jut6u62ErUdgzn+cfxJLe7qA70/oqrlQRqe2MAAe9H0jrD0VLn ce3uZ681kglt/HJvq6YsobN+sAcsjrLRTaA74caFrFDL1uATsLulaGD9zXOaxm1r lvuDVAGTXzFkKl43rBopeZPCOsHaet+wNv1/CnShVRnGZW+zK/7rV2wiAj0LMAus /Bx6aRWihaQm0IxHE9QGQhSXiMiNYMROaUzFbB3xSFEkFCnzBrfKDkdIILT0R55g 3vWz6/7JqUGXqjdzO7qKRnqwpG5FCi/KGFvvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFxwrtadF1QFUbWM473bNqj1mEJEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0Z4d3J0YWRGMVFGVWJXTTQ3 M2JOcWoxbUVKRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 2rwwDQYJKoZIhvcNAQELBQADggEBAI5Z8IyqLsdbvV6EPcHLOVnkx7LP/K2lSCvH QcqTF/J063kxKAiL0uBupFfVOzQ17nG64lzkmxfilzr3be2DlA+a+3/wjsVaYXD3 E7IydehCYQSclgX7rngcNMNoah0KXN4d6RDeo1jBF7ATXrBcr2DA2SUY5AmvHHpM 7hMKPvNzxlc0hu83fVgItfGjMezKXpnQ9IMawDvbdzOv/dVPFBJd4RsrIBLZw7od vgbdStPcpvRUt5IWkQJI0/8IpPTaCo6Qwh6XSdH0bOvPe+3jSHb5UD3KG+SzbmBT 2dyNE4AkR1rIDprc7oA+eKTaaw6SX0aiFPSjS34LPs9FSxCTMzQ= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:39 2025 by rpki-client