$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O4XW0KFWZb1SOzTSB4IkaNfa3iI.roa File: O4XW0KFWZb1SOzTSB4IkaNfa3iI.roa (raw, json) Hash identifier: J3zMhb3k6SiCmstCwWAYxhvUpyLaC9e6MJOm8gKJQ/g= Subject key identifier: 3B:85:D6:D0:A1:56:65:BD:52:3B:34:D2:07:82:24:68:D7:DA:DE:22 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2607 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O4XW0KFWZb1SOzTSB4IkaNfa3iI.roa Signing time: Fri 22 Aug 2025 08:42:30 +0000 ROA not before: Fri 22 Aug 2025 08:42:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 180.218.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9735 (0x2607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3B85D6D0A15665BD523B34D207822468D7DADE22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8d:94:30:64:00:61:39:ac:95:83:fd:bb:d8: 86:4a:03:49:5b:2e:54:10:2e:52:71:ae:78:cb:7c: da:26:27:44:0f:d2:78:d3:39:89:56:e9:44:b3:fb: 88:89:40:0c:c7:80:83:fd:13:31:7e:0c:9f:33:e4: f9:88:53:39:9a:1f:0c:f6:39:e0:fa:b6:53:5b:54: 71:30:00:da:61:92:29:c9:68:c5:fd:5c:14:5d:50: 03:a0:1b:5c:b6:49:f4:45:70:64:f2:74:22:dc:9b: 7b:76:b2:87:07:d4:5b:dc:97:6b:97:98:ba:81:c8: ac:83:fc:1c:3b:73:bc:f4:18:66:6f:56:7e:e0:31: 43:57:8d:10:27:cb:5a:83:b0:88:82:97:43:a8:9f: 33:86:97:ea:33:8f:41:fb:78:23:a6:71:c9:15:e5: 2b:14:86:c7:d3:30:1c:23:cb:cf:94:f6:81:42:8e: f7:47:21:f1:77:f4:00:01:00:b7:90:53:c8:2f:05: 0a:4d:eb:d7:73:7e:5c:f7:a8:3f:6c:ec:27:a9:a8: d5:9d:f1:7e:7f:13:7c:98:0b:91:4a:91:23:a7:93: 82:fb:01:3f:56:6a:e3:3c:7f:70:04:97:61:df:c5: 8b:3a:76:91:df:7d:0b:2d:35:b8:ff:5a:0e:d1:09: ec:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:85:D6:D0:A1:56:65:BD:52:3B:34:D2:07:82:24:68:D7:DA:DE:22 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O4XW0KFWZb1SOzTSB4IkaNfa3iI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.104.0/21 Signature Algorithm: sha256WithRSAEncryption 3e:b9:57:16:3b:5e:54:00:54:12:ed:18:1e:79:09:68:f6:4f: 15:13:cf:20:ae:95:a0:1c:dc:c2:9f:5c:ec:29:2c:4d:df:ae: 83:c4:cb:19:f4:2b:6a:fc:58:1a:89:c0:aa:80:41:27:ce:9c: 9b:b7:c6:27:e2:08:2d:02:18:49:aa:c3:41:2e:99:d4:f9:0c: 4f:c4:8c:3e:b8:b8:94:3d:81:8a:c7:49:48:99:9e:43:4f:f2: 82:7d:96:b9:74:d7:30:37:6f:2e:fc:91:a8:77:b4:d3:32:2e: 75:a0:70:dc:96:96:15:42:01:d8:18:c5:87:65:34:0c:89:77: d1:b4:43:96:c3:56:b4:61:84:67:0e:82:1a:d6:03:c8:7b:e9: 8a:04:34:13:d5:14:8d:c0:9e:aa:97:aa:d6:2b:b0:ba:7c:76: fd:31:9f:f7:fb:73:40:cd:08:87:e5:f4:a5:93:3d:55:f0:c1: a0:cf:31:fe:ee:27:2d:50:d1:05:e2:24:e0:6c:c4:f6:1b:8d: 83:9f:5b:7c:e0:df:b8:72:0b:66:69:91:47:44:a0:04:3d:c5: 05:25:a2:ea:9e:f6:17:43:68:d6:98:1a:72:aa:20:63:33:e6: cd:5e:a4:6a:fb:0d:22:f0:99:47:94:06:a4:05:51:b7:80:54: bc:d4:42:ab -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJgcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNCODVENkQwQTE1NjY1 QkQ1MjNCMzREMjA3ODIyNDY4RDdEQURFMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9jZQwZABhOayVg/272IZKA0lbLlQQLlJxrnjLfNomJ0QP0njT OYlW6USz+4iJQAzHgIP9EzF+DJ8z5PmIUzmaHwz2OeD6tlNbVHEwANphkinJaMX9 XBRdUAOgG1y2SfRFcGTydCLcm3t2socH1Fvcl2uXmLqByKyD/Bw7c7z0GGZvVn7g MUNXjRAny1qDsIiCl0OonzOGl+ozj0H7eCOmcckV5SsUhsfTMBwjy8+U9oFCjvdH IfF39AABALeQU8gvBQpN69dzflz3qD9s7CepqNWd8X5/E3yYC5FKkSOnk4L7AT9W auM8f3AEl2HfxYs6dpHffQstNbj/Wg7RCezTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUO4XW0KFWZb1SOzTSB4IkaNfa3iIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL080WFcwS0ZXWmIxU096VFNC NElrYU5mYTNpSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2mgwDQYJKoZIhvcNAQELBQADggEBAD65VxY7XlQAVBLtGB55CWj2TxUTzyCulaAc 3MKfXOwpLE3froPEyxn0K2r8WBqJwKqAQSfOnJu3xifiCC0CGEmqw0EumdT5DE/E jD64uJQ9gYrHSUiZnkNP8oJ9lrl01zA3by78kah3tNMyLnWgcNyWlhVCAdgYxYdl NAyJd9G0Q5bDVrRhhGcOghrWA8h76YoENBPVFI3AnqqXqtYrsLp8dv0xn/f7c0DN CIfl9KWTPVXwwaDPMf7uJy1Q0QXiJOBsxPYbjYOfW3zg37hyC2ZpkUdEoAQ9xQUl ouqe9hdDaNaYGnKqIGMz5s1epGr7DSLwmUeUBqQFUbeAVLzUQqs= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:33 2025 by rpki-client