$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LTqdx1B9PBv-ijCzr9wBw0cDJ7g.roa File: LTqdx1B9PBv-ijCzr9wBw0cDJ7g.roa (raw, json) Hash identifier: Usw390ovysyyvBzdvJREyrnPyuJM0O7jNLhQtNxxrho= Subject key identifier: 2D:3A:9D:C7:50:7D:3C:1B:FE:8A:30:B3:AF:DC:01:C3:47:03:27:B8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 260E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LTqdx1B9PBv-ijCzr9wBw0cDJ7g.roa Signing time: Fri 22 Aug 2025 08:42:32 +0000 ROA not before: Fri 22 Aug 2025 08:42:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 123.0.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9742 (0x260e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2D3A9DC7507D3C1BFE8A30B3AFDC01C3470327B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:78:8d:a2:54:df:14:c9:32:14:12:2a:d9:a0: 20:df:5c:05:08:39:40:c3:ee:32:cd:38:ae:37:71: 31:4e:73:bb:7c:ec:bb:1a:60:fa:6a:90:95:cf:81: 98:ad:6f:5d:99:54:c5:9a:2f:0f:cf:83:5e:8d:22: bd:d8:3d:9d:63:51:da:f5:22:c7:03:c8:54:de:a2: a7:37:df:57:dc:be:e1:8f:a8:f2:d9:73:59:42:cd: bd:1f:ab:46:0f:81:7c:cd:a8:e5:b9:6b:5b:09:72: a1:a4:30:57:97:30:7b:df:3c:0a:40:ef:67:21:75: 4e:94:db:80:f7:91:c1:f4:47:de:b1:c0:bf:6b:cb: e8:cd:83:7c:87:ad:6c:ae:86:a9:22:70:83:d4:85: 8e:4e:b7:33:f1:23:56:54:6d:36:a0:91:a6:8a:55: 8b:60:1f:ea:fb:e5:16:ce:70:f6:3b:b0:9d:1b:66: f5:be:9c:d9:bd:00:48:d7:75:84:33:5e:91:61:8b: 8d:e6:10:c3:90:ad:24:51:6d:9f:92:30:ed:b6:9c: 56:fc:e8:ab:87:ce:bd:6e:ed:28:54:1e:08:87:63: 9d:f1:50:22:f3:22:06:de:24:cc:3f:6e:d2:f6:1f: e3:4e:ef:07:ac:ca:4e:83:dd:f5:80:e3:af:bb:ed: 25:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:3A:9D:C7:50:7D:3C:1B:FE:8A:30:B3:AF:DC:01:C3:47:03:27:B8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LTqdx1B9PBv-ijCzr9wBw0cDJ7g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.32.0/21 Signature Algorithm: sha256WithRSAEncryption 01:fc:45:6e:7c:c1:ee:b7:3c:8a:d9:31:db:09:7a:40:77:cf: 28:81:03:6b:69:f8:19:f6:36:55:4b:c9:8c:bd:d0:d0:b3:14: 15:3e:8d:c7:db:aa:5b:68:47:fb:43:2c:f1:02:cb:be:3d:22: ca:68:5f:e9:14:92:88:30:5a:e0:7e:ae:33:b2:c4:25:92:d2: ce:4c:89:b4:c2:a5:f6:76:b3:8e:a7:fe:a9:04:57:a9:4d:f9: 23:07:4e:73:a9:e0:c8:8b:a0:af:24:c6:52:2a:58:ed:5d:b3: 3f:ce:02:a2:a4:72:7c:93:6f:5f:67:62:2b:0f:7b:5a:63:21: bd:1f:0e:d6:a7:bf:c0:ff:89:ee:03:46:54:4d:ca:aa:9b:1b: 5f:1e:07:13:6a:68:cb:e9:82:a2:de:4d:64:3c:fe:48:82:fa: 58:cb:d0:d2:b4:c1:d2:4e:30:70:02:d1:da:01:8c:df:e7:fa: e4:bf:4d:0d:0e:99:d4:89:85:88:cb:23:91:e8:fb:5e:4c:85: 29:89:69:10:19:cc:5c:27:28:82:9e:76:d1:ce:51:9b:e2:66: dc:f4:2a:cc:0d:52:94:71:f1:51:73:5c:d6:53:62:1c:72:80: d2:2b:08:8a:a1:81:56:92:51:4a:b2:5e:56:05:96:ef:38:2e: bd:e5:6f:63 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJg4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJEM0E5REM3NTA3RDND MUJGRThBMzBCM0FGREMwMUMzNDcwMzI3QjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHeI2iVN8UyTIUEirZoCDfXAUIOUDD7jLNOK43cTFOc7t87Lsa YPpqkJXPgZitb12ZVMWaLw/Pg16NIr3YPZ1jUdr1IscDyFTeoqc331fcvuGPqPLZ c1lCzb0fq0YPgXzNqOW5a1sJcqGkMFeXMHvfPApA72chdU6U24D3kcH0R96xwL9r y+jNg3yHrWyuhqkicIPUhY5OtzPxI1ZUbTagkaaKVYtgH+r75RbOcPY7sJ0bZvW+ nNm9AEjXdYQzXpFhi43mEMOQrSRRbZ+SMO22nFb86KuHzr1u7ShUHgiHY53xUCLz IgbeJMw/btL2H+NO7wesyk6D3fWA46+77SVpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULTqdx1B9PBv+ijCzr9wBw0cDJ7gwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0xUcWR4MUI5UEJ2LWlqQ3py OXdCdzBjREo3Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 ACAwDQYJKoZIhvcNAQELBQADggEBAAH8RW58we63PIrZMdsJekB3zyiBA2tp+Bn2 NlVLyYy90NCzFBU+jcfbqltoR/tDLPECy749IspoX+kUkogwWuB+rjOyxCWS0s5M ibTCpfZ2s46n/qkEV6lN+SMHTnOp4MiLoK8kxlIqWO1dsz/OAqKkcnyTb19nYisP e1pjIb0fDtanv8D/ie4DRlRNyqqbG18eBxNqaMvpgqLeTWQ8/kiC+ljL0NK0wdJO MHAC0doBjN/n+uS/TQ0OmdSJhYjLI5Ho+15MhSmJaRAZzFwnKIKedtHOUZviZtz0 KswNUpRx8VFzXNZTYhxygNIrCIqhgVaSUUqyXlYFlu84Lr3lb2M= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:41 2025 by rpki-client