$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MfUw8hDeNovP6RiaAxzVwHwfycE.roa File: MfUw8hDeNovP6RiaAxzVwHwfycE.roa (raw, json) Hash identifier: 5tBT/KxsAjGSKNmTcXqN5t9kS7/gZDYUFcJd+O0X390= Subject key identifier: 31:F5:30:F2:10:DE:36:8B:CF:E9:18:9A:03:1C:D5:C0:7C:1F:C9:C1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2620 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MfUw8hDeNovP6RiaAxzVwHwfycE.roa Signing time: Fri 22 Aug 2025 08:42:37 +0000 ROA not before: Fri 22 Aug 2025 08:42:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 124.6.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9760 (0x2620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=31F530F210DE368BCFE9189A031CD5C07C1FC9C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:96:18:25:49:06:94:25:2d:5e:02:ea:86: 13:75:97:7b:6b:3e:c2:66:93:12:15:d6:88:de:64: e1:64:fc:56:dd:6c:43:67:b4:67:2f:23:63:11:70: e0:ca:33:14:48:16:a5:24:07:22:03:b5:9a:2c:0b: 3d:38:8e:2a:68:3a:83:29:08:d5:cc:a1:a9:37:86: 50:97:fc:0c:0a:66:59:bc:80:94:30:39:8f:51:e6: 9c:54:f0:a3:37:de:87:10:63:fa:89:22:a6:72:71: 4a:8f:71:4e:12:ed:a1:eb:45:3e:7c:a0:14:e6:9a: 50:cc:d0:70:24:63:a2:9e:95:8c:53:c2:21:59:98: 44:36:e6:e7:fa:ee:19:8d:6a:d0:6a:cc:9f:7d:ea: 04:4d:56:91:49:3a:83:e2:e1:98:68:f5:b9:13:c9: b5:db:b8:8b:5c:44:2a:f3:36:d7:f9:11:34:06:f9: 40:c1:86:cb:6e:f0:fe:35:a1:7b:65:0a:59:a6:c7: 68:1d:0f:19:78:6f:5f:ac:83:0c:47:6c:10:e0:21: 2c:18:39:25:ae:89:00:c3:ea:52:38:87:3d:27:5d: 57:73:bc:71:c1:42:52:39:56:1d:aa:dd:7b:53:e4: 39:67:d3:d7:69:37:ae:aa:eb:59:cf:7a:ba:9e:61: c4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F5:30:F2:10:DE:36:8B:CF:E9:18:9A:03:1C:D5:C0:7C:1F:C9:C1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MfUw8hDeNovP6RiaAxzVwHwfycE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.6.16.0/22 Signature Algorithm: sha256WithRSAEncryption 23:72:af:b5:15:19:09:e9:46:1d:c4:81:07:1f:b8:39:7e:df: b0:1e:cf:c9:f1:1b:d5:5d:4c:d2:ef:c2:48:a2:ca:6d:7b:7a: a2:04:62:8c:9e:7c:b5:1c:53:13:44:26:62:78:be:7d:99:67: 4e:03:0c:a8:da:e4:4e:3c:f2:92:18:e8:03:25:9c:7b:97:06: da:79:7c:95:59:e8:76:93:4d:aa:35:18:f1:d8:41:8a:85:5e: f1:ea:60:9e:25:82:c2:3c:c1:c2:8a:6e:87:8f:3b:29:a2:9f: c0:17:17:24:8c:9b:1b:c3:07:19:89:81:25:46:e5:c3:da:b3: e7:15:d1:45:df:a9:59:59:c4:c5:92:02:3f:41:3d:bc:b6:cc: 28:70:69:ed:d8:f8:f9:39:9c:7f:98:e1:88:1f:ac:34:d2:c4: 50:28:2f:4c:50:30:24:19:c6:02:84:8d:12:24:72:d6:a2:4a: 86:88:8d:28:dd:85:0d:07:48:70:89:93:eb:5f:db:44:78:77: 86:45:81:09:ea:d8:72:6b:0a:ba:6d:a7:b1:80:cb:a7:f6:26: 36:99:0f:06:72:eb:bd:0e:58:25:7d:d5:44:57:f3:90:34:ac: e0:f8:fd:6e:60:0a:f3:86:51:b3:3b:23:b3:8a:90:ea:dd:5c: 51:6b:b3:46 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMxRjUzMEYyMTBERTM2 OEJDRkU5MTg5QTAzMUNENUMwN0MxRkM5QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/rZYYJUkGlCUtXgLqhhN1l3trPsJmkxIV1ojeZOFk/FbdbENn tGcvI2MRcODKMxRIFqUkByIDtZosCz04jipoOoMpCNXMoak3hlCX/AwKZlm8gJQw OY9R5pxU8KM33ocQY/qJIqZycUqPcU4S7aHrRT58oBTmmlDM0HAkY6KelYxTwiFZ mEQ25uf67hmNatBqzJ996gRNVpFJOoPi4Zho9bkTybXbuItcRCrzNtf5ETQG+UDB hstu8P41oXtlClmmx2gdDxl4b1+sgwxHbBDgISwYOSWuiQDD6lI4hz0nXVdzvHHB QlI5Vh2q3XtT5Dln09dpN66q61nPerqeYcRbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUMfUw8hDeNovP6RiaAxzVwHwfycEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL01mVXc4aERlTm92UDZSaWFB eHpWd0h3ZnljRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ8 BhAwDQYJKoZIhvcNAQELBQADggEBACNyr7UVGQnpRh3EgQcfuDl+37Aez8nxG9Vd TNLvwkiiym17eqIEYoyefLUcUxNEJmJ4vn2ZZ04DDKja5E488pIY6AMlnHuXBtp5 fJVZ6HaTTao1GPHYQYqFXvHqYJ4lgsI8wcKKboePOymin8AXFySMmxvDBxmJgSVG 5cPas+cV0UXfqVlZxMWSAj9BPby2zChwae3Y+Pk5nH+Y4YgfrDTSxFAoL0xQMCQZ xgKEjRIkctaiSoaIjSjdhQ0HSHCJk+tf20R4d4ZFgQnq2HJrCrptp7GAy6f2JjaZ DwZy670OWCV91URX85A0rOD4/W5gCvOGUbM7I7OKkOrdXFFrs0Y= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:46 2025 by rpki-client