$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LYs35pvTVr_YBQRnNxc39NBHnpo.roa File: LYs35pvTVr_YBQRnNxc39NBHnpo.roa (raw, json) Hash identifier: XOhGQfyEgdQxd3+cm4ErQ+rbkaR/2ia3VX6McNQkmps= Subject key identifier: 2D:8B:37:E6:9B:D3:56:BF:D8:05:04:67:37:17:37:F4:D0:47:9E:9A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2682 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LYs35pvTVr_YBQRnNxc39NBHnpo.roa Signing time: Fri 22 Aug 2025 08:43:00 +0000 ROA not before: Fri 22 Aug 2025 08:43:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9858 (0x2682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2D8B37E69BD356BFD8050467371737F4D0479E9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0d:a8:07:0e:89:33:8e:06:25:be:b0:08:e4: 04:da:96:e5:08:e1:20:92:a6:d9:12:47:db:b8:37: 0a:1b:60:6f:07:4f:b7:82:05:68:5b:c3:4e:55:67: 0b:4f:70:f2:e7:71:14:1f:06:47:39:41:84:63:c6: dc:8d:85:d8:58:e1:84:6d:8d:33:b6:7e:f7:b7:32: 3f:e3:56:36:bd:01:56:e6:18:fc:e8:96:af:51:52: f5:33:e9:6e:0b:6c:5d:0e:ef:9f:48:e0:ba:8f:05: 8f:a4:0e:55:47:7b:44:9a:13:73:a8:2c:42:0b:e2: a4:4c:b7:bc:a7:32:59:e3:50:7a:42:99:b2:b3:9b: 1e:af:4e:71:f9:42:e9:f7:a1:34:55:c8:eb:b5:5b: 71:81:d8:55:05:55:2b:20:c4:ad:fb:5d:86:90:50: 49:5f:ad:20:e1:df:e9:4e:9d:2b:83:2b:b7:d6:1b: ba:e6:f8:63:c1:18:2e:51:db:a9:15:05:dd:88:ab: d6:08:c6:07:7e:5a:f3:d4:95:a1:3e:c0:b2:53:45: 35:53:68:a8:85:84:a7:fc:1a:3d:92:1c:7c:17:85: 6f:28:3e:64:e3:f9:c6:67:c6:23:c3:b2:b6:6c:bd: 1e:76:e3:51:cb:c5:5a:f2:d0:fd:37:cd:56:cf:f8: 2c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:8B:37:E6:9B:D3:56:BF:D8:05:04:67:37:17:37:F4:D0:47:9E:9A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LYs35pvTVr_YBQRnNxc39NBHnpo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.136.0/21 Signature Algorithm: sha256WithRSAEncryption 09:54:2b:9d:94:13:d8:df:38:ad:98:3b:84:4c:8a:e6:6d:97: 47:e4:a5:d3:bf:6d:e0:13:da:ff:87:6a:ce:8c:fe:cf:d3:b7: 16:1f:4b:98:20:8b:96:3b:9f:b1:fb:23:aa:d8:11:54:ee:24: d7:db:12:9f:db:f0:de:80:ee:00:78:0e:95:a7:6c:3f:74:a1: 59:31:ce:3d:3d:80:f5:d9:97:6b:98:cd:fd:f1:4f:b6:fe:f2: 9c:90:3b:7b:ec:26:f8:84:e9:df:d2:1b:d2:b7:6a:71:5e:95: e6:da:63:61:8e:f3:13:d3:2c:f6:81:df:bc:80:b5:de:26:1b: e0:8f:9d:28:91:c4:5f:af:2d:3c:ac:af:a7:07:e6:92:42:e1: 48:26:fb:e2:9f:bc:4b:59:5c:c3:e2:c4:86:c0:5f:8c:53:6f: 6a:15:79:ad:1a:8a:92:31:05:8a:ce:2a:18:67:fd:a6:47:81: e4:df:45:8e:31:6d:17:99:73:77:c9:dc:6c:55:57:69:c5:a1: 3d:7b:bf:10:d5:d4:dc:df:61:67:4a:a5:63:86:08:ec:e9:c3: d8:5c:49:d4:74:23:c9:d5:84:94:12:e5:93:88:a9:04:6a:46: 88:6b:ac:fa:1d:c4:a7:cb:5a:8a:8e:51:af:fd:5c:30:a7:fa: 0c:da:4b:ec -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJoIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJEOEIzN0U2OUJEMzU2 QkZEODA1MDQ2NzM3MTczN0Y0RDA0NzlFOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZDagHDokzjgYlvrAI5ATaluUI4SCSptkSR9u4NwobYG8HT7eC BWhbw05VZwtPcPLncRQfBkc5QYRjxtyNhdhY4YRtjTO2fve3Mj/jVja9AVbmGPzo lq9RUvUz6W4LbF0O759I4LqPBY+kDlVHe0SaE3OoLEIL4qRMt7ynMlnjUHpCmbKz mx6vTnH5Qun3oTRVyOu1W3GB2FUFVSsgxK37XYaQUElfrSDh3+lOnSuDK7fWG7rm +GPBGC5R26kVBd2Iq9YIxgd+WvPUlaE+wLJTRTVTaKiFhKf8Gj2SHHwXhW8oPmTj +cZnxiPDsrZsvR5241HLxVry0P03zVbP+CzTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULYs35pvTVr/YBQRnNxc39NBHnpowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0xZczM1cHZUVnJfWUJRUm5O eGMzOU5CSG5wby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2ogwDQYJKoZIhvcNAQELBQADggEBAAlUK52UE9jfOK2YO4RMiuZtl0fkpdO/beAT 2v+Has6M/s/TtxYfS5ggi5Y7n7H7I6rYEVTuJNfbEp/b8N6A7gB4DpWnbD90oVkx zj09gPXZl2uYzf3xT7b+8pyQO3vsJviE6d/SG9K3anFelebaY2GO8xPTLPaB37yA td4mG+CPnSiRxF+vLTysr6cH5pJC4Ugm++KfvEtZXMPixIbAX4xTb2oVea0aipIx BYrOKhhn/aZHgeTfRY4xbReZc3fJ3GxVV2nFoT17vxDV1NzfYWdKpWOGCOzpw9hc SdR0I8nVhJQS5ZOIqQRqRohrrPodxKfLWoqOUa/9XDCn+gzaS+w= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:34 2025 by rpki-client