$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HdqJeIJFQV2HlBTRCwjnwYAWyGU.roa File: HdqJeIJFQV2HlBTRCwjnwYAWyGU.roa (raw, json) Hash identifier: KOu2a46WykhHJSxzP6ORI07czQg14P0c8MTOki99/Co= Subject key identifier: 1D:DA:89:78:82:45:41:5D:87:94:14:D1:0B:08:E7:C1:80:16:C8:65 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25F7 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HdqJeIJFQV2HlBTRCwjnwYAWyGU.roa Signing time: Fri 22 Aug 2025 08:42:26 +0000 ROA not before: Fri 22 Aug 2025 08:42:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 61.60.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9719 (0x25f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1DDA89788245415D879414D10B08E7C18016C865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3c:cb:40:f6:1a:05:27:00:f0:94:6e:0b:6b: b7:7b:a9:92:2f:4d:d0:d4:a9:29:15:63:9c:4a:e3: 90:a3:b3:71:fa:fe:a7:af:7b:0b:f1:2c:cc:ae:1f: 0b:2c:22:f4:6f:07:6e:9f:32:d9:08:e1:20:e5:0c: 47:70:12:10:24:67:ad:0a:ad:36:19:1f:ae:37:51: 81:d2:dc:14:b3:6a:a3:61:85:da:2c:9e:be:eb:49: 28:51:3b:49:34:e3:17:08:5a:38:6d:c1:c2:91:24: 73:0a:77:b2:ac:a2:92:7f:00:fd:bb:91:3b:43:45: b4:73:49:65:c4:2e:a3:c3:8a:4d:69:1f:6d:d4:f8: 02:75:2e:8f:c6:ee:6d:50:dd:31:a2:62:d4:c6:74: 64:54:34:d4:c2:82:12:dd:a3:1a:f8:fd:86:ec:66: 16:85:2a:c7:12:62:ca:11:8c:8e:4e:00:f7:7e:02: c0:46:f2:f6:33:aa:67:e1:3a:74:ec:59:48:2f:5c: 34:66:8c:df:3e:d4:2a:c3:0c:63:d2:1d:dc:33:d3: 51:32:75:94:d8:fb:fb:9c:54:8a:d8:bd:df:1b:83: b3:6a:05:52:0d:3c:6c:45:1b:50:7b:8e:10:eb:51: b0:3e:63:9a:c4:b7:8b:c6:75:f4:20:55:2e:df:fe: 4a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:DA:89:78:82:45:41:5D:87:94:14:D1:0B:08:E7:C1:80:16:C8:65 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HdqJeIJFQV2HlBTRCwjnwYAWyGU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.208.0/20 Signature Algorithm: sha256WithRSAEncryption 2f:19:e8:b8:bc:d8:ce:5d:08:ba:5a:4c:dc:b8:0b:78:ec:69: 47:a4:3f:62:49:6d:79:ce:91:1d:36:7f:c9:73:dd:9f:d3:a0: ab:cf:8a:da:21:86:12:91:4e:46:27:dc:f5:4e:03:59:ee:ee: 96:61:f5:a4:a6:db:1a:f9:a0:fe:09:dd:f5:86:e3:64:4e:13: 7d:16:82:83:d6:36:5e:6c:c0:80:4f:a9:60:54:20:db:d9:57: 1b:0d:7a:a2:55:77:2e:82:3c:f1:c4:c0:7f:a2:85:95:d7:46: ef:db:57:a2:4a:1a:a7:15:18:3c:c2:37:4b:11:79:03:89:e6: 92:33:8d:1d:f1:80:df:c0:c9:ad:40:26:32:b2:0b:ef:4f:88: 41:78:36:c3:dc:d5:b2:b5:df:75:dc:ea:d8:85:84:d2:8b:ae: cb:46:85:63:c7:68:88:a0:b0:14:4a:ba:c7:0d:ff:69:95:0f: a1:95:27:d4:cb:a2:38:90:af:b8:3d:c0:35:57:4e:f8:54:21: 99:aa:d7:4d:81:34:12:24:56:aa:22:44:8f:b3:f7:92:be:84: b8:93:67:f7:20:a4:10:f1:a2:0d:3f:9a:67:37:c5:cb:4d:cb: 2c:1b:61:94:f5:6b:de:d9:0d:71:6c:46:1e:c4:33:07:30:ca: 2d:cd:6e:71 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJfcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFEREE4OTc4ODI0NTQx NUQ4Nzk0MTREMTBCMDhFN0MxODAxNkM4NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0PMtA9hoFJwDwlG4La7d7qZIvTdDUqSkVY5xK45Cjs3H6/qev ewvxLMyuHwssIvRvB26fMtkI4SDlDEdwEhAkZ60KrTYZH643UYHS3BSzaqNhhdos nr7rSShRO0k04xcIWjhtwcKRJHMKd7KsopJ/AP27kTtDRbRzSWXELqPDik1pH23U +AJ1Lo/G7m1Q3TGiYtTGdGRUNNTCghLdoxr4/YbsZhaFKscSYsoRjI5OAPd+AsBG 8vYzqmfhOnTsWUgvXDRmjN8+1CrDDGPSHdwz01EydZTY+/ucVIrYvd8bg7NqBVIN PGxFG1B7jhDrUbA+Y5rEt4vGdfQgVS7f/kpfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUHdqJeIJFQV2HlBTRCwjnwYAWyGUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0hkcUplSUpGUVYySGxCVFJD d2pud1lBV3lHVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 PNAwDQYJKoZIhvcNAQELBQADggEBAC8Z6Li82M5dCLpaTNy4C3jsaUekP2JJbXnO kR02f8lz3Z/ToKvPitohhhKRTkYn3PVOA1nu7pZh9aSm2xr5oP4J3fWG42ROE30W goPWNl5swIBPqWBUINvZVxsNeqJVdy6CPPHEwH+ihZXXRu/bV6JKGqcVGDzCN0sR eQOJ5pIzjR3xgN/Aya1AJjKyC+9PiEF4NsPc1bK133Xc6tiFhNKLrstGhWPHaIig sBRKuscN/2mVD6GVJ9TLojiQr7g9wDVXTvhUIZmq102BNBIkVqoiRI+z95K+hLiT Z/cgpBDxog0/mmc3xctNyywbYZT1a97ZDXFsRh7EMwcwyi3NbnE= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:38 2025 by rpki-client