$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JGsABDySfVFaLe-qKVODVuykxdA.roa File: JGsABDySfVFaLe-qKVODVuykxdA.roa (raw, json) Hash identifier: /bFW1btDelARkaPpHKYIdP3BQT5JI9197HyuIMersp0= Subject key identifier: 24:6B:00:04:3C:92:7D:51:5A:2D:EF:AA:29:53:83:56:EC:A4:C5:D0 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25D2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JGsABDySfVFaLe-qKVODVuykxdA.roa Signing time: Fri 22 Aug 2025 08:42:17 +0000 ROA not before: Fri 22 Aug 2025 08:42:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 122.254.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9682 (0x25d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=246B00043C927D515A2DEFAA29538356ECA4C5D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d0:76:22:ef:2d:59:c0:59:aa:cb:bc:e0:93: ea:db:c7:6b:df:b1:1f:26:f5:4e:ee:3d:89:0a:1c: 19:5a:a4:5f:cb:df:23:92:6d:17:bf:37:0f:e1:e2: 3a:42:61:da:fd:b9:04:04:ac:97:e8:01:81:a1:3a: 21:47:07:9a:e1:e5:fa:55:44:a9:e4:c4:f0:26:0b: 52:c4:1f:dd:d0:bb:1b:26:cd:f7:30:9a:97:ad:b8: 7c:18:79:fd:0f:15:21:7b:1e:51:d7:ad:4c:82:56: 43:53:02:69:76:bd:c7:36:74:d2:9f:f2:82:80:ce: 2b:7b:b8:d9:16:7c:12:f6:07:28:99:01:a8:d4:fd: 91:a3:fb:c3:29:a4:36:95:d4:11:78:77:79:ec:11: b4:4a:82:2f:56:08:cf:25:ba:1f:a3:1c:ca:c4:20: 2b:82:93:67:85:64:6a:b0:b8:15:80:d8:8a:48:6e: 12:98:a5:47:66:aa:8f:c5:c8:ef:f6:5b:37:dc:e9: e0:62:00:0c:e5:f7:f2:ea:fb:c8:e2:00:f0:47:55: f9:68:46:a1:85:9a:89:c2:07:8d:d1:8e:7f:fc:cd: 6f:b5:a1:a5:5b:55:b8:a4:a5:16:cf:82:cf:9c:69: 7b:0b:36:e5:51:70:41:d4:9c:c3:e0:5b:9f:e4:82: f2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:6B:00:04:3C:92:7D:51:5A:2D:EF:AA:29:53:83:56:EC:A4:C5:D0 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JGsABDySfVFaLe-qKVODVuykxdA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.36.0/22 Signature Algorithm: sha256WithRSAEncryption 94:51:e1:d2:94:b1:7d:e4:ad:ff:62:00:a8:d9:17:17:69:2d: d7:61:ba:fc:2e:95:4c:5f:76:9d:1e:41:cb:5c:e3:99:75:3c: 31:64:fb:d8:01:e7:7d:1d:6b:1f:58:ba:a6:c0:0d:79:e6:88: 0b:bc:d8:5d:c4:2a:94:fc:09:9a:85:04:74:43:b0:a1:eb:a4: 58:0d:ca:3d:bc:ca:00:d2:90:1c:07:c2:42:1b:e3:f2:8d:64: d7:6a:ac:16:2f:16:2b:dd:eb:8e:a0:2c:99:a6:4b:c8:1a:91: 82:e9:24:46:73:73:cd:26:7e:c7:db:61:9a:97:83:6b:46:8a: 1a:a8:05:6f:5f:f7:53:3a:92:37:e8:bc:b4:b8:ed:c3:ff:6d: a6:c5:fb:25:a5:2d:c3:45:74:24:96:e5:28:00:6d:21:5b:9c: a1:77:0f:7c:91:cc:47:a1:85:48:68:c9:30:e1:6e:79:72:1a: cd:0b:ce:cb:45:a8:68:1a:ef:6c:82:e9:b3:10:ea:d7:b3:15: 63:3c:4c:f6:42:e3:69:d4:fe:e0:dc:2e:f5:45:e7:f7:d9:b7: f9:bd:f4:20:76:86:b1:2a:e3:5a:0c:3f:9a:3c:50:2d:63:20: 84:90:cb:50:0a:fc:71:f8:5f:70:fa:5f:cb:e6:f6:d0:5e:0b: 04:02:be:1e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJdIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI0NkIwMDA0M0M5MjdE NTE1QTJERUZBQTI5NTM4MzU2RUNBNEM1RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC40HYi7y1ZwFmqy7zgk+rbx2vfsR8m9U7uPYkKHBlapF/L3yOS bRe/Nw/h4jpCYdr9uQQErJfoAYGhOiFHB5rh5fpVRKnkxPAmC1LEH93Quxsmzfcw mpetuHwYef0PFSF7HlHXrUyCVkNTAml2vcc2dNKf8oKAzit7uNkWfBL2ByiZAajU /ZGj+8MppDaV1BF4d3nsEbRKgi9WCM8luh+jHMrEICuCk2eFZGqwuBWA2IpIbhKY pUdmqo/FyO/2Wzfc6eBiAAzl9/Lq+8jiAPBHVfloRqGFmonCB43Rjn/8zW+1oaVb VbikpRbPgs+caXsLNuVRcEHUnMPgW5/kgvLNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJGsABDySfVFaLe+qKVODVuykxdAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0pHc0FCRHlTZlZGYUxlLXFL Vk9EVnV5a3hkQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ6 /iQwDQYJKoZIhvcNAQELBQADggEBAJRR4dKUsX3krf9iAKjZFxdpLddhuvwulUxf dp0eQctc45l1PDFk+9gB530dax9YuqbADXnmiAu82F3EKpT8CZqFBHRDsKHrpFgN yj28ygDSkBwHwkIb4/KNZNdqrBYvFivd646gLJmmS8gakYLpJEZzc80mfsfbYZqX g2tGihqoBW9f91M6kjfovLS47cP/babF+yWlLcNFdCSW5SgAbSFbnKF3D3yRzEeh hUhoyTDhbnlyGs0LzstFqGga72yC6bMQ6tezFWM8TPZC42nU/uDcLvVF5/fZt/m9 9CB2hrEq41oMP5o8UC1jIISQy1AK/HH4X3D6X8vm9tBeCwQCvh4= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:35 2025 by rpki-client