$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/H7k3_BU8-XE4OngRQA-k4fqiR2o.roa File: H7k3_BU8-XE4OngRQA-k4fqiR2o.roa (raw, json) Hash identifier: eqnMW+L9EqnFD2nhrjRnWxH/GmZ4t2yv05H47xiP3SA= Subject key identifier: 1F:B9:37:FC:15:3C:F9:71:38:3A:78:11:40:0F:A4:E1:FA:A2:47:6A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25FA Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/H7k3_BU8-XE4OngRQA-k4fqiR2o.roa Signing time: Fri 22 Aug 2025 08:42:27 +0000 ROA not before: Fri 22 Aug 2025 08:42:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9722 (0x25fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1FB937FC153CF971383A7811400FA4E1FAA2476A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e0:ac:4b:38:e0:41:7b:96:e9:e5:57:8b:a4: e5:01:af:2a:d6:f7:86:5a:29:b8:3b:54:d2:d2:c9: f5:7d:fd:62:12:eb:ca:98:35:76:f2:8f:bf:fe:b5: fd:b0:76:e3:09:f9:77:d1:14:d4:37:e7:fe:de:74: 3e:10:00:15:c8:ef:09:dc:54:0a:59:c5:3d:9b:66: 45:ca:6b:9d:ee:58:c7:86:97:32:32:9e:e7:68:3d: a5:ee:2b:3a:dc:6f:b2:9d:34:d0:72:c6:ea:57:18: 29:4a:9c:9e:25:41:dd:e9:d2:5a:40:65:40:da:19: b8:27:2d:da:a6:69:1c:58:26:1e:0a:30:28:25:7e: cd:fa:48:55:8f:f4:89:a1:d8:f5:79:9d:6c:c1:ea: f5:ad:18:66:ee:8c:8b:f0:da:95:e9:d4:64:b1:fe: 69:49:a9:85:91:6c:3a:cd:cb:41:70:80:e8:40:f2: 01:8d:88:46:ba:33:69:38:36:d1:24:d9:e6:07:93: db:6f:48:97:31:0c:49:4c:2b:de:7d:02:33:07:ac: 4e:b8:fb:10:76:48:90:d1:7c:ab:90:4d:bc:bb:56: 38:2d:9c:d1:a3:ab:13:34:e7:70:23:e3:b2:4a:96: 4c:fc:84:1e:67:91:de:4f:28:99:f7:ea:96:2e:35: 86:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:B9:37:FC:15:3C:F9:71:38:3A:78:11:40:0F:A4:E1:FA:A2:47:6A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/H7k3_BU8-XE4OngRQA-k4fqiR2o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.232.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:9e:ff:20:17:3e:38:f1:f5:c9:3a:c5:27:1e:8e:3c:64:da: 18:4d:33:97:bd:26:de:68:17:e9:e6:08:b3:55:df:ef:80:de: 16:f2:f4:53:9d:8b:24:19:88:5a:fd:6f:80:88:95:fc:67:33: 9d:1a:ce:2b:ee:0e:c0:d6:24:9b:e1:48:32:65:01:53:e2:db: df:db:df:a5:18:a8:7d:ec:94:61:b8:8c:d8:a1:c2:58:36:9d: 43:83:14:59:48:16:da:84:20:b7:7e:8b:53:42:06:04:19:38: 91:6d:05:f5:11:eb:63:f9:0d:d8:f1:a5:2a:5a:7d:db:0d:6b: cb:ca:3d:bc:3a:df:ca:de:2c:a1:52:fc:31:6b:50:c5:27:f3: 9e:8b:e4:fd:b1:43:d5:61:10:60:99:07:5c:33:a1:c0:d6:48: f7:8e:1d:b6:b0:7e:6b:b8:e7:68:9d:7c:66:e1:5b:4b:a8:51: 43:fc:7e:27:dc:77:70:65:fc:57:0a:a5:ec:fc:f6:77:48:62: 4f:fb:2f:f7:d6:09:a1:16:17:6d:a6:b3:13:21:e9:61:5f:c0: 50:db:f7:50:23:30:23:22:74:98:e7:49:13:20:df:34:9b:67: eb:0b:be:cb:de:c4:bb:7a:f2:10:9a:6f:30:bd:43:fe:ef:f7: bd:7b:9b:fa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJfowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFGQjkzN0ZDMTUzQ0Y5 NzEzODNBNzgxMTQwMEZBNEUxRkFBMjQ3NkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC14KxLOOBBe5bp5VeLpOUBryrW94ZaKbg7VNLSyfV9/WIS68qY NXbyj7/+tf2wduMJ+XfRFNQ35/7edD4QABXI7wncVApZxT2bZkXKa53uWMeGlzIy nudoPaXuKzrcb7KdNNByxupXGClKnJ4lQd3p0lpAZUDaGbgnLdqmaRxYJh4KMCgl fs36SFWP9Imh2PV5nWzB6vWtGGbujIvw2pXp1GSx/mlJqYWRbDrNy0FwgOhA8gGN iEa6M2k4NtEk2eYHk9tvSJcxDElMK959AjMHrE64+xB2SJDRfKuQTby7VjgtnNGj qxM053Aj47JKlkz8hB5nkd5PKJn36pYuNYa7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUH7k3/BU8+XE4OngRQA+k4fqiR2owHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0g3azNfQlU4LVhFNE9uZ1JR QS1rNGZxaVIyby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2ugwDQYJKoZIhvcNAQELBQADggEBAC6e/yAXPjjx9ck6xScejjxk2hhNM5e9Jt5o F+nmCLNV3++A3hby9FOdiyQZiFr9b4CIlfxnM50azivuDsDWJJvhSDJlAVPi29/b 36UYqH3slGG4jNihwlg2nUODFFlIFtqEILd+i1NCBgQZOJFtBfUR62P5DdjxpSpa fdsNa8vKPbw638reLKFS/DFrUMUn856L5P2xQ9VhEGCZB1wzocDWSPeOHbawfmu4 52idfGbhW0uoUUP8fifcd3Bl/FcKpez89ndIYk/7L/fWCaEWF22msxMh6WFfwFDb 91AjMCMidJjnSRMg3zSbZ+sLvsvexLt68hCabzC9Q/7v9717m/o= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:34 2025 by rpki-client