$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HixURAbmOedUerIJJzebq3uGk2w.roa File: HixURAbmOedUerIJJzebq3uGk2w.roa (raw, json) Hash identifier: 1/nG4AUpiUSR/dJ6XakK7u22g2HZ9Q7KvSizR+eiH0s= Subject key identifier: 1E:2C:54:44:06:E6:39:E7:54:7A:B2:09:27:37:9B:AB:7B:86:93:6C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 264F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HixURAbmOedUerIJJzebq3uGk2w.roa Signing time: Fri 22 Aug 2025 08:42:48 +0000 ROA not before: Fri 22 Aug 2025 08:42:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 2407:4b00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9807 (0x264f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1E2C544406E639E7547AB20927379BAB7B86936C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7d:49:de:55:91:81:a9:a3:2c:b4:30:0f:db: 95:83:10:3d:c0:69:27:e0:88:7f:d0:67:0b:54:45: bb:b8:3d:98:fc:a0:27:7c:0e:b9:b8:3a:66:44:e5: 32:32:11:2f:fd:a5:98:bb:24:76:90:78:a3:80:68: c0:b2:ed:74:59:d7:b7:67:e2:53:ba:70:16:4e:9b: 26:e3:dc:6b:c7:fb:92:f8:b9:38:2e:1d:8b:64:81: 8e:7e:35:bf:94:3a:88:21:30:c9:9e:48:64:cc:1a: e5:1a:b4:93:96:aa:e3:be:e2:a5:49:7e:d9:23:19: e9:e5:b3:bd:70:8d:75:dd:47:db:88:57:96:af:02: 0e:b8:ad:fc:38:ad:4f:1d:e0:7b:46:a6:fb:00:61: ef:d7:3c:7d:12:72:f6:25:b1:c1:47:11:db:fc:35: a4:b9:b4:66:fa:f4:ab:0a:45:6b:fa:05:a0:35:96: 5b:95:ab:4b:4c:42:68:ef:39:21:c2:0a:ad:02:00: 1a:d7:47:07:83:bf:9e:19:74:82:27:0e:a1:f7:f4: 39:bf:2a:92:93:dc:20:2b:5b:f1:bc:42:31:2a:1a: 8d:10:ce:33:9f:d6:86:90:1b:e2:07:fc:4d:0a:44: f3:1f:65:58:16:92:18:ae:56:60:14:dd:9b:f2:bc: 6e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2C:54:44:06:E6:39:E7:54:7A:B2:09:27:37:9B:AB:7B:86:93:6C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HixURAbmOedUerIJJzebq3uGk2w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4b00::/32 Signature Algorithm: sha256WithRSAEncryption 49:6d:5a:6e:0a:88:7d:25:56:e6:f4:a1:a6:71:04:b4:3e:f5: 26:32:7f:2a:be:37:55:2f:5d:56:79:b0:6c:05:d9:76:1e:2b: dd:0d:3d:9e:0a:40:9c:52:a9:24:85:9e:c5:43:45:fd:c9:3f: 3c:fa:90:db:c0:3e:bf:46:d8:64:50:81:d2:39:19:d4:2c:e6: d6:db:fd:1d:39:24:29:f1:99:57:f3:ec:04:18:c2:6e:3a:d1: ec:1a:31:e3:69:bc:e2:7d:79:9b:80:bc:93:cc:5e:e3:4c:7f: d3:14:11:b5:95:62:0e:15:34:e9:d8:5d:8b:31:24:27:98:78: fc:bb:e1:cd:79:7e:13:5d:a4:ad:f5:7b:54:cb:21:7c:67:74: 06:ff:24:e5:4f:c9:4b:9e:0f:dc:44:b3:da:b2:8a:57:dd:68: 71:e3:e9:23:72:b7:bc:83:95:f4:d8:c0:13:68:e6:da:73:ae: e3:5e:77:cd:fb:a2:88:b5:53:a9:8a:6a:3d:e2:d5:3d:7f:8d: dc:86:7d:cb:29:29:8c:f3:02:fa:2c:23:56:59:4e:cf:af:ed: f7:20:d6:a9:fe:87:a5:f5:51:62:5f:53:18:f2:5e:a9:f4:ae: a1:f8:aa:ae:ca:41:3f:2d:78:f8:29:74:e1:6f:de:82:12:ed: 35:b0:02:a7 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICJk8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFFMkM1NDQ0MDZFNjM5 RTc1NDdBQjIwOTI3Mzc5QkFCN0I4NjkzNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4fUneVZGBqaMstDAP25WDED3AaSfgiH/QZwtURbu4PZj8oCd8 Drm4OmZE5TIyES/9pZi7JHaQeKOAaMCy7XRZ17dn4lO6cBZOmybj3GvH+5L4uTgu HYtkgY5+Nb+UOoghMMmeSGTMGuUatJOWquO+4qVJftkjGenls71wjXXdR9uIV5av Ag64rfw4rU8d4HtGpvsAYe/XPH0ScvYlscFHEdv8NaS5tGb69KsKRWv6BaA1lluV q0tMQmjvOSHCCq0CABrXRweDv54ZdIInDqH39Dm/KpKT3CArW/G8QjEqGo0QzjOf 1oaQG+IH/E0KRPMfZVgWkhiuVmAU3ZvyvG5rAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUHixURAbmOedUerIJJzebq3uGk2wwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0hpeFVSQWJtT2VkVWVySUpK emVicTN1R2sydy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk B0sAMA0GCSqGSIb3DQEBCwUAA4IBAQBJbVpuCoh9JVbm9KGmcQS0PvUmMn8qvjdV L11WebBsBdl2HivdDT2eCkCcUqkkhZ7FQ0X9yT88+pDbwD6/RthkUIHSORnULObW 2/0dOSQp8ZlX8+wEGMJuOtHsGjHjabzifXmbgLyTzF7jTH/TFBG1lWIOFTTp2F2L MSQnmHj8u+HNeX4TXaSt9XtUyyF8Z3QG/yTlT8lLng/cRLPasopX3Whx4+kjcre8 g5X02MATaObac67jXnfN+6KItVOpimo94tU9f43chn3LKSmM8wL6LCNWWU7Pr+33 INap/oel9VFiX1MY8l6p9K6h+KquykE/LXj4KXThb96CEu01sAKn -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:30 2025 by rpki-client