$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GIQkO40CxfXQzHuN3wR_xaowC6E.roa File: GIQkO40CxfXQzHuN3wR_xaowC6E.roa (raw, json) Hash identifier: NJiocKB1tM2D1XsLmon2grjsG+KEd77Vx4Hu4rm0Aj4= Subject key identifier: 18:84:24:3B:8D:02:C5:F5:D0:CC:7B:8D:DF:04:7F:C5:AA:30:0B:A1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2678 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GIQkO40CxfXQzHuN3wR_xaowC6E.roa Signing time: Fri 22 Aug 2025 08:42:57 +0000 ROA not before: Fri 22 Aug 2025 08:42:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 61.61.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9848 (0x2678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1884243B8D02C5F5D0CC7B8DDF047FC5AA300BA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bf:88:9e:87:3f:ac:e3:62:f4:75:04:16:c3: 45:58:97:99:24:7f:a4:b8:12:94:6d:ba:f3:6e:32: 06:53:29:bd:d9:04:ff:67:95:19:68:32:df:02:d1: 5f:de:3f:23:90:73:0b:5f:68:55:ec:d2:dd:c4:7e: 65:db:3e:9d:d4:93:61:7c:d5:e9:a5:6d:21:84:90: 4e:b0:03:b3:67:d5:73:97:f3:68:94:4c:b8:4e:b1: b2:f4:18:36:66:3e:ef:ac:9f:77:80:cc:ce:fa:71: 7b:66:97:76:03:b2:cb:52:a6:8b:74:b1:42:54:79: 15:7b:ce:90:30:7a:c1:a5:d7:43:59:18:46:40:cf: f3:7c:a0:1a:b8:fc:06:19:91:30:d3:e4:80:05:8b: d3:71:29:ca:c9:1f:7f:d8:e0:7e:ac:e2:3a:ab:5e: 29:2a:68:15:c5:98:b2:20:fe:61:2e:62:2f:ae:39: e8:c1:50:15:ea:e8:2e:4f:fa:0e:54:37:5e:57:92: eb:b0:24:12:66:a1:b6:49:2e:1b:08:62:2c:38:c3: cb:1b:33:c6:d3:82:73:66:81:24:5b:2c:a0:37:f3: bd:c4:87:7b:44:20:74:81:c7:3c:88:c7:8c:d3:8b: 72:01:26:09:bd:1b:44:7d:f1:de:ea:ed:0f:28:e6: f8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:84:24:3B:8D:02:C5:F5:D0:CC:7B:8D:DF:04:7F:C5:AA:30:0B:A1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GIQkO40CxfXQzHuN3wR_xaowC6E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.220.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:ca:20:43:7e:06:8d:2a:bb:3d:2a:53:f8:92:4a:67:cd:90: 0f:4e:8e:72:cf:11:f0:d2:91:83:2d:fd:6f:e4:d6:9f:6b:45: b8:b8:8c:4e:58:c5:64:e2:f2:47:8b:e1:39:6f:ae:bf:17:08: a9:dd:31:18:a7:f6:92:1c:5f:c1:b0:03:4a:6a:01:b5:6c:b3: 5a:34:3e:ac:ce:d4:ef:22:24:a9:61:6d:aa:21:17:cd:82:ae: 3a:d1:91:56:1d:44:93:6e:ca:c2:48:7f:ad:c5:73:81:37:9a: 57:f0:f4:81:b0:89:4c:34:25:05:92:7c:17:0d:f9:06:72:d8: 33:d5:9f:e9:6e:36:e8:1f:22:96:b5:eb:08:fa:33:2b:00:cd: ca:23:22:15:7f:99:a7:df:bf:6c:6c:c7:ac:7e:63:f4:b1:36: b7:2d:2c:ca:03:ed:7a:ad:bf:f7:11:51:54:5c:ce:19:e7:c7: 15:50:95:1d:02:a8:e6:72:70:6f:bb:d4:bb:e9:f2:34:6d:f7: 65:c1:d7:55:6d:a0:f2:3b:87:ac:55:4e:d8:d2:18:ea:d5:fd: b3:d1:0a:aa:56:6a:09:4a:9a:82:aa:3e:fd:83:da:e2:98:a0: 43:cb:93:df:eb:93:a6:b5:3d:db:83:9a:d4:03:51:31:d5:8e: ae:4b:95:78 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJngwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE4ODQyNDNCOEQwMkM1 RjVEMENDN0I4RERGMDQ3RkM1QUEzMDBCQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZv4iehz+s42L0dQQWw0VYl5kkf6S4EpRtuvNuMgZTKb3ZBP9n lRloMt8C0V/ePyOQcwtfaFXs0t3EfmXbPp3Uk2F81emlbSGEkE6wA7Nn1XOX82iU TLhOsbL0GDZmPu+sn3eAzM76cXtml3YDsstSpot0sUJUeRV7zpAwesGl10NZGEZA z/N8oBq4/AYZkTDT5IAFi9NxKcrJH3/Y4H6s4jqrXikqaBXFmLIg/mEuYi+uOejB UBXq6C5P+g5UN15XkuuwJBJmobZJLhsIYiw4w8sbM8bTgnNmgSRbLKA3873Eh3tE IHSBxzyIx4zTi3IBJgm9G0R98d7q7Q8o5vhRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGIQkO40CxfXQzHuN3wR/xaowC6EwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0dJUWtPNDBDeGZYUXpIdU4z d1JfeGFvd0M2RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 PdwwDQYJKoZIhvcNAQELBQADggEBAEzKIEN+Bo0quz0qU/iSSmfNkA9OjnLPEfDS kYMt/W/k1p9rRbi4jE5YxWTi8keL4Tlvrr8XCKndMRin9pIcX8GwA0pqAbVss1o0 PqzO1O8iJKlhbaohF82CrjrRkVYdRJNuysJIf63Fc4E3mlfw9IGwiUw0JQWSfBcN +QZy2DPVn+luNugfIpa16wj6MysAzcojIhV/maffv2xsx6x+Y/SxNrctLMoD7Xqt v/cRUVRczhnnxxVQlR0CqOZycG+71Lvp8jRt92XB11VtoPI7h6xVTtjSGOrV/bPR CqpWaglKmoKqPv2D2uKYoEPLk9/rk6a1PduDmtQDUTHVjq5LlXg= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:39 2025 by rpki-client