$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Mhm2vPZN63uPXJv_Xc4YGHYlerY.roa File: Mhm2vPZN63uPXJv_Xc4YGHYlerY.roa (raw, json) Hash identifier: AbbGBSufMuoXrnLwFMoEUTzpxmMSl5Uyb6pcXp3bOyI= Subject key identifier: 32:19:B6:BC:F6:4D:EB:7B:8F:5C:9B:FF:5D:CE:18:18:76:25:7A:B6 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25CB Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Mhm2vPZN63uPXJv_Xc4YGHYlerY.roa Signing time: Fri 22 Aug 2025 08:42:15 +0000 ROA not before: Fri 22 Aug 2025 08:42:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9675 (0x25cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3219B6BCF64DEB7B8F5C9BFF5DCE181876257AB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:04:01:38:71:7e:89:38:ff:be:d7:33:c4:a9: 11:57:8d:33:13:ee:55:0f:f0:de:30:97:3c:3f:3c: 06:bb:ca:b4:dd:71:b3:f1:90:b7:6f:0a:b9:3e:af: ff:d6:f1:79:82:6d:19:75:a8:d4:99:f7:ce:0a:6c: b5:d2:6b:9e:d6:3e:4c:5c:17:b9:bb:59:65:3e:28: bd:59:13:c7:ba:d6:6f:ce:50:e0:fc:5e:d0:5c:8c: d3:ba:9c:70:3f:9d:d4:72:a6:56:50:21:fe:37:44: eb:f3:a7:6c:08:1f:fc:32:5b:66:a4:39:f9:34:01: 24:75:6a:01:f8:7a:a9:ac:b7:3d:ff:29:ff:20:5d: 7d:7f:10:4e:3c:27:04:28:34:58:22:ee:da:3c:09: a7:8f:2a:25:64:ea:eb:8e:5c:c3:23:f8:79:4f:83: 4b:65:34:f3:ff:ae:c7:0d:8b:2f:e8:b7:64:27:12: b8:98:f3:68:81:e0:10:a7:b9:13:10:68:9f:6b:56: 12:99:2a:50:9e:df:81:64:2b:06:d0:b1:3e:23:56: 78:cd:3f:d2:7d:b8:78:d2:bb:f5:79:c3:ab:d7:50: e8:ca:bf:a5:bd:9c:85:82:3f:c4:ab:8d:18:4c:4f: 80:74:d8:fb:26:6c:eb:54:05:ff:cc:75:f0:60:d6: 31:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:19:B6:BC:F6:4D:EB:7B:8F:5C:9B:FF:5D:CE:18:18:76:25:7A:B6 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Mhm2vPZN63uPXJv_Xc4YGHYlerY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.186.0/23 Signature Algorithm: sha256WithRSAEncryption 08:34:77:de:ce:6f:83:6c:b6:d7:74:43:47:10:e5:e5:2f:f8: 3b:9b:a2:d7:5b:0a:17:59:8d:24:07:79:67:74:1e:65:4d:b9: 90:a9:85:cb:c3:7e:59:ed:21:31:fc:c1:13:6a:54:60:ae:bc: 23:ac:c4:e3:21:d9:21:42:9f:01:88:74:5d:83:58:ae:d9:60: bf:8b:55:7b:62:8e:12:4b:e8:c2:d6:68:0e:ec:3e:91:79:58: 98:78:25:5d:37:42:7f:f9:36:8b:36:28:1d:11:f7:a7:22:f0: dc:29:a4:45:e7:20:af:83:3c:11:57:2b:5a:95:32:73:1a:6a: 1c:21:9e:8b:a3:d2:02:6a:3a:cd:a1:09:bf:b5:1e:01:f4:58: f4:7e:8a:46:06:ab:3e:0f:36:c9:3b:59:ce:61:f6:89:ab:74: 33:79:27:28:92:13:56:68:b9:82:66:5e:d6:11:a7:12:c6:54: 8e:1b:b6:03:70:0a:e0:58:f2:32:a0:a1:72:a2:ea:8c:58:aa: 7f:2c:13:06:56:3d:14:77:e7:25:fa:19:d3:40:da:74:dc:d7: 60:8b:ef:22:a4:1b:39:bb:a6:cb:bc:f8:0c:12:f1:bb:56:99: ee:fb:6e:2f:dc:73:c6:1d:5d:ca:2c:03:01:2c:9d:de:c7:e5: 63:35:8d:55 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJcswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMyMTlCNkJDRjY0REVC N0I4RjVDOUJGRjVEQ0UxODE4NzYyNTdBQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFBAE4cX6JOP++1zPEqRFXjTMT7lUP8N4wlzw/PAa7yrTdcbPx kLdvCrk+r//W8XmCbRl1qNSZ984KbLXSa57WPkxcF7m7WWU+KL1ZE8e61m/OUOD8 XtBcjNO6nHA/ndRyplZQIf43ROvzp2wIH/wyW2akOfk0ASR1agH4eqmstz3/Kf8g XX1/EE48JwQoNFgi7to8CaePKiVk6uuOXMMj+HlPg0tlNPP/rscNiy/ot2QnEriY 82iB4BCnuRMQaJ9rVhKZKlCe34FkKwbQsT4jVnjNP9J9uHjSu/V5w6vXUOjKv6W9 nIWCP8SrjRhMT4B02PsmbOtUBf/MdfBg1jGhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUMhm2vPZN63uPXJv/Xc4YGHYlerYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL01obTJ2UFpONjN1UFhKdl9Y YzRZR0hZbGVyWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0 2rowDQYJKoZIhvcNAQELBQADggEBAAg0d97Ob4Nsttd0Q0cQ5eUv+DubotdbChdZ jSQHeWd0HmVNuZCphcvDflntITH8wRNqVGCuvCOsxOMh2SFCnwGIdF2DWK7ZYL+L VXtijhJL6MLWaA7sPpF5WJh4JV03Qn/5Nos2KB0R96ci8NwppEXnIK+DPBFXK1qV MnMaahwhnouj0gJqOs2hCb+1HgH0WPR+ikYGqz4PNsk7Wc5h9omrdDN5JyiSE1Zo uYJmXtYRpxLGVI4btgNwCuBY8jKgoXKi6oxYqn8sEwZWPRR35yX6GdNA2nTc12CL 7yKkGzm7psu8+AwS8btWme77bi/cc8YdXcosAwEsnd7H5WM1jVU= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:24 2025 by rpki-client