$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KsEiqZUycuqeCKKuAwb_6VkI9Rw.roa File: KsEiqZUycuqeCKKuAwb_6VkI9Rw.roa (raw, json) Hash identifier: kA20lfzAr8uazOjlAi/9a3Hfbpm8mzz6mUiwiNwLOzE= Subject key identifier: 2A:C1:22:A9:95:32:72:EA:9E:08:A2:AE:03:06:FF:E9:59:08:F5:1C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25E5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KsEiqZUycuqeCKKuAwb_6VkI9Rw.roa Signing time: Fri 22 Aug 2025 08:42:22 +0000 ROA not before: Fri 22 Aug 2025 08:42:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9701 (0x25e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2AC122A9953272EA9E08A2AE0306FFE95908F51C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:80:c2:64:29:1b:85:4a:0e:a8:b7:89:4f:ea: a0:9f:3d:c3:ac:32:45:dd:a7:67:e5:f2:4e:62:70: cd:cb:ca:ef:ed:88:5f:b0:9c:c8:35:f2:8d:a9:8e: 08:2f:95:e1:f1:5a:f6:8f:a3:1f:b2:e6:fe:6a:c6: d1:0e:74:83:54:7d:56:d3:18:7b:17:a2:dc:2f:05: f4:72:27:05:bf:cd:45:1b:26:89:8f:5e:eb:fe:bb: 27:60:97:e8:4e:e7:f8:dc:ac:42:6c:c2:28:b0:03: 09:4c:5d:4a:f8:bd:61:83:fb:81:3a:a9:b3:69:16: 97:2d:ed:64:8a:8c:6a:26:1f:07:00:01:92:d3:77: c3:bf:7c:f6:ae:25:50:48:49:98:82:d1:3a:e0:c6: 88:5e:f5:22:b4:87:dc:73:22:ad:8d:4a:fe:05:ad: 6b:cc:ef:19:35:e6:ae:b2:32:b8:a9:24:9e:3e:1e: 41:6b:40:cc:63:1b:b1:5a:97:8f:a2:e2:68:e2:93: ed:61:b6:b8:8f:ab:5e:c2:5b:8d:bb:a9:db:b7:35: 16:83:d7:02:2a:7c:45:b5:91:35:5a:50:a2:a9:ce: bc:f3:4f:fd:c8:60:d2:43:9c:63:9f:fe:7b:2c:38: 99:b3:00:ca:ee:4b:cf:8e:1f:ba:9f:dc:69:95:25: ef:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C1:22:A9:95:32:72:EA:9E:08:A2:AE:03:06:FF:E9:59:08:F5:1C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KsEiqZUycuqeCKKuAwb_6VkI9Rw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.222.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:22:0f:bd:5c:63:37:a3:9e:9a:6b:66:e9:9f:9e:3d:0f:8f: 37:9e:69:e4:de:16:0b:28:63:b8:43:d4:e7:12:ab:e1:e3:c0: d0:90:18:ad:ed:11:39:db:21:27:51:89:9c:f7:32:16:d8:f0: be:3f:3c:d2:2d:48:c9:f9:8c:d4:c5:1f:59:63:c3:60:3e:02: a2:d0:d1:79:88:af:9d:f0:89:c0:93:b8:db:8a:f3:c3:3b:78: 9f:33:07:d0:c5:3c:76:19:19:d7:57:02:e4:05:da:31:dc:52: bc:98:3b:7a:99:db:c7:72:12:1d:a9:bb:24:0e:b3:6a:28:58: c2:d5:2a:49:84:50:bf:ed:df:d2:52:59:0d:5d:08:0f:3f:1b: 7c:c7:df:c1:29:74:db:65:08:e2:e7:3b:de:11:54:75:10:2e: 99:1a:08:c5:21:e9:9a:f1:ad:15:a6:0d:b3:fc:bb:c1:06:7c: b6:18:8f:df:1d:9a:1c:1c:ac:9b:c1:27:7f:39:fe:f8:d5:66: f0:e4:1c:5d:a3:c9:17:76:5a:47:2b:08:a2:c0:3f:18:e8:fd: 08:81:26:2e:eb:b2:67:d2:da:ab:80:38:fa:57:2d:31:3a:91: cf:fd:96:59:af:a8:1d:25:b8:50:16:a6:ce:c0:44:3e:0b:c9: b7:81:e7:38 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJBQzEyMkE5OTUzMjcy RUE5RTA4QTJBRTAzMDZGRkU5NTkwOEY1MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlgMJkKRuFSg6ot4lP6qCfPcOsMkXdp2fl8k5icM3Lyu/tiF+w nMg18o2pjggvleHxWvaPox+y5v5qxtEOdINUfVbTGHsXotwvBfRyJwW/zUUbJomP Xuv+uydgl+hO5/jcrEJswiiwAwlMXUr4vWGD+4E6qbNpFpct7WSKjGomHwcAAZLT d8O/fPauJVBISZiC0Trgxohe9SK0h9xzIq2NSv4FrWvM7xk15q6yMripJJ4+HkFr QMxjG7Fal4+i4mjik+1htriPq17CW427qdu3NRaD1wIqfEW1kTVaUKKpzrzzT/3I YNJDnGOf/nssOJmzAMruS8+OH7qf3GmVJe8VAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKsEiqZUycuqeCKKuAwb/6VkI9RwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0tzRWlxWlV5Y3VxZUNLS3VB d2JfNlZrSTlSdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0 2t4wDQYJKoZIhvcNAQELBQADggEBAHwiD71cYzejnpprZumfnj0PjzeeaeTeFgso Y7hD1OcSq+HjwNCQGK3tETnbISdRiZz3MhbY8L4/PNItSMn5jNTFH1ljw2A+AqLQ 0XmIr53wicCTuNuK88M7eJ8zB9DFPHYZGddXAuQF2jHcUryYO3qZ28dyEh2puyQO s2ooWMLVKkmEUL/t39JSWQ1dCA8/G3zH38EpdNtlCOLnO94RVHUQLpkaCMUh6Zrx rRWmDbP8u8EGfLYYj98dmhwcrJvBJ385/vjVZvDkHF2jyRd2WkcrCKLAPxjo/QiB Ji7rsmfS2quAOPpXLTE6kc/9llmvqB0luFAWps7ARD4LybeB5zg= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:33 2025 by rpki-client