$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IydV8hqnJCONYpWzdclfbJ6cJcE.roa File: IydV8hqnJCONYpWzdclfbJ6cJcE.roa (raw, json) Hash identifier: 0op3IECCd8b/XQB6AyHYi82VvPtUX9Fw6P5ffP5B3XA= Subject key identifier: 23:27:55:F2:1A:A7:24:23:8D:62:95:B3:75:C9:5F:6C:9E:9C:25:C1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26F8 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IydV8hqnJCONYpWzdclfbJ6cJcE.roa Signing time: Fri 22 Aug 2025 08:43:26 +0000 ROA not before: Fri 22 Aug 2025 08:43:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 61.58.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9976 (0x26f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=232755F21AA724238D6295B375C95F6C9E9C25C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7b:ae:89:b6:2c:6c:53:a7:8d:c5:b6:62:bc: 56:25:26:06:10:d6:09:ff:8f:15:ce:f0:6f:99:d6: 14:e1:70:14:e4:5f:26:a7:fe:63:62:e4:95:91:c3: b9:7a:46:99:98:53:a3:72:24:7d:72:91:f9:28:ee: cd:fe:45:69:05:e3:52:c1:2e:f7:d0:db:ea:cd:99: 90:df:ed:d2:e9:34:17:76:55:bf:68:f2:4b:4e:28: dd:49:3d:f0:53:bb:5c:fe:47:91:e0:11:11:ab:c6: 06:b1:7b:24:73:cf:f3:49:e0:4b:79:42:8f:ca:eb: 91:36:cf:d1:be:cc:53:50:dd:f3:b9:45:3f:89:38: 4e:72:06:31:eb:55:35:b7:2c:8e:d3:65:58:49:4c: a4:de:39:38:27:37:ee:70:ea:71:af:d5:a3:70:7b: 82:8e:5b:a4:68:6f:10:72:6f:9a:52:31:00:95:a6: 9d:f3:2f:5a:4c:99:57:66:2b:84:9b:c6:10:46:bf: fc:28:e5:7c:45:a9:60:26:09:af:7a:46:d1:2e:ec: b5:1b:ab:98:14:53:cf:4e:ad:18:7a:d6:46:da:71: 0a:54:cf:13:2f:c0:7e:12:05:52:92:94:bc:b0:ca: 98:b8:54:59:47:37:7d:3f:ac:a2:0a:5c:f9:7c:7b: 23:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:27:55:F2:1A:A7:24:23:8D:62:95:B3:75:C9:5F:6C:9E:9C:25:C1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IydV8hqnJCONYpWzdclfbJ6cJcE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.112.0/21 Signature Algorithm: sha256WithRSAEncryption 29:6d:7f:23:fd:ab:a5:f7:e4:1e:a5:5c:b7:e3:a1:7b:59:bc: f2:99:57:1d:4b:d6:40:99:a0:5d:b5:8e:69:8f:de:7d:f3:92: 8a:c0:50:d2:ed:5b:10:04:00:7a:73:5b:db:14:13:95:8a:fa: 85:fb:1f:cb:be:2f:a8:76:f5:a0:d3:1b:c2:6c:60:22:9d:7f: 61:af:c4:40:82:b5:08:b3:16:41:b5:88:eb:1d:5a:1c:d8:c3: 4e:49:9d:59:59:ba:75:b4:55:7b:3e:61:a5:52:24:d3:ac:12: 57:ac:7c:c0:ab:e3:96:8a:19:86:77:53:4f:98:b2:c2:8f:ca: 57:13:a0:e2:eb:f1:73:ff:55:a2:1c:7f:ca:23:52:89:ed:9c: 21:11:ae:e4:ea:82:cf:82:75:ae:1c:41:6e:42:c8:71:39:cb: 0b:72:88:19:5b:11:7e:fb:7b:32:90:b0:26:b7:f6:44:dd:83: 77:e4:fd:7e:3f:e3:d8:7c:a3:27:43:f6:b5:22:89:48:d6:ae: d4:c3:db:7d:dd:b7:99:96:eb:80:ae:83:c5:61:9b:92:af:f2: 46:87:8b:9f:53:88:bb:21:da:9b:6a:f3:61:8f:09:ea:f2:6f: cc:7d:9d:0a:fa:60:fb:9f:19:91:51:5e:c6:0b:5f:33:02:4f: 1e:5d:53:5e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJvgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIzMjc1NUYyMUFBNzI0 MjM4RDYyOTVCMzc1Qzk1RjZDOUU5QzI1QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbe66JtixsU6eNxbZivFYlJgYQ1gn/jxXO8G+Z1hThcBTkXyan /mNi5JWRw7l6RpmYU6NyJH1ykfko7s3+RWkF41LBLvfQ2+rNmZDf7dLpNBd2Vb9o 8ktOKN1JPfBTu1z+R5HgERGrxgaxeyRzz/NJ4Et5Qo/K65E2z9G+zFNQ3fO5RT+J OE5yBjHrVTW3LI7TZVhJTKTeOTgnN+5w6nGv1aNwe4KOW6RobxByb5pSMQCVpp3z L1pMmVdmK4SbxhBGv/wo5XxFqWAmCa96RtEu7LUbq5gUU89OrRh61kbacQpUzxMv wH4SBVKSlLywypi4VFlHN30/rKIKXPl8eyO/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIydV8hqnJCONYpWzdclfbJ6cJcEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0l5ZFY4aHFuSkNPTllwV3pk Y2xmYko2Y0pjRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OnAwDQYJKoZIhvcNAQELBQADggEBACltfyP9q6X35B6lXLfjoXtZvPKZVx1L1kCZ oF21jmmP3n3zkorAUNLtWxAEAHpzW9sUE5WK+oX7H8u+L6h29aDTG8JsYCKdf2Gv xECCtQizFkG1iOsdWhzYw05JnVlZunW0VXs+YaVSJNOsElesfMCr45aKGYZ3U0+Y ssKPylcToOLr8XP/VaIcf8ojUontnCERruTqgs+Cda4cQW5CyHE5ywtyiBlbEX77 ezKQsCa39kTdg3fk/X4/49h8oydD9rUiiUjWrtTD233dt5mW64Cug8Vhm5Kv8kaH i59TiLsh2ptq82GPCeryb8x9nQr6YPufGZFRXsYLXzMCTx5dU14= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:15 2025 by rpki-client