$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OLlY0-NkIUsuBIHW0S_4wpIqfr8.roa File: OLlY0-NkIUsuBIHW0S_4wpIqfr8.roa (raw, json) Hash identifier: S8McWIr/HKYa9X+yOme59Zi1Y/I42G7NkEca0woc1eM= Subject key identifier: 38:B9:58:D3:E3:64:21:4B:2E:04:81:D6:D1:2F:F8:C2:92:2A:7E:BF Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 268D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OLlY0-NkIUsuBIHW0S_4wpIqfr8.roa Signing time: Fri 22 Aug 2025 08:43:02 +0000 ROA not before: Fri 22 Aug 2025 08:43:02 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9869 (0x268d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=38B958D3E364214B2E0481D6D12FF8C2922A7EBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:01:11:9f:be:2c:e7:2d:70:0f:64:ae:92:d8: 1d:11:fe:6c:43:03:16:ad:a7:e2:95:15:76:14:42: e6:d3:ca:47:c2:0d:d4:52:c9:fb:1f:2e:2d:e6:95: 77:fe:94:1f:bd:fc:f7:04:9f:4b:76:56:e1:68:0e: d2:c8:33:e8:1e:75:65:94:4a:8a:5f:1f:da:da:f3: cd:b4:0d:fd:90:67:8f:54:ef:ba:42:92:79:ce:bf: ba:b9:47:d2:e2:ac:bd:e3:2a:61:ef:35:ae:71:7e: f4:b9:73:f9:c9:7e:c9:55:f2:fc:73:2c:e5:f7:09: ce:e7:8c:fa:44:a1:d8:0b:e1:65:81:eb:b5:ad:fc: e5:a1:bf:d5:d8:aa:ef:9d:20:8d:ca:8d:98:b6:a6: f5:3d:3d:61:00:7c:17:b0:16:66:d9:92:d3:3d:28: b5:f0:8d:8d:32:7c:9d:ef:eb:f4:61:d3:16:b5:66: f8:75:b7:4c:52:8d:cf:d8:a5:e2:22:d3:43:2a:20: 66:59:f6:b3:b9:0e:db:e2:0c:92:08:2a:a3:24:13: a2:67:09:a1:7a:5e:50:f4:49:ea:c9:74:27:54:92: 88:46:cd:76:a4:8d:06:f9:0a:4c:4e:24:2f:35:39: bc:f0:4b:e5:15:3a:dc:c7:97:ac:70:ef:09:b2:e0: 0c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:B9:58:D3:E3:64:21:4B:2E:04:81:D6:D1:2F:F8:C2:92:2A:7E:BF X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OLlY0-NkIUsuBIHW0S_4wpIqfr8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.160.0/20 Signature Algorithm: sha256WithRSAEncryption 72:e7:6d:f6:5d:52:91:9b:22:a7:60:b1:01:1d:84:af:d9:a4: bf:7a:45:96:a6:dd:8a:f7:2c:41:00:2d:14:44:4a:d1:19:e9: d8:f8:7a:28:a8:e8:9c:53:88:a8:45:86:20:50:3b:ba:18:a4: 1e:f9:c3:f7:54:49:02:59:b2:9e:de:86:04:5c:a6:59:43:96: 9d:8c:99:02:86:d4:8d:c5:67:b5:3e:9a:27:00:3f:9e:8b:8b: 48:9e:a2:61:3a:f4:37:ee:04:5e:ea:84:87:60:9b:4e:e2:59: de:de:6a:d0:d9:fa:45:d9:90:d3:4a:3f:0a:ef:9d:59:05:cd: 24:4a:3b:4d:b6:83:bb:ad:95:fb:b7:7c:3a:aa:5d:b9:9f:c9: bc:ed:f3:05:bd:f2:ca:44:25:b4:82:a6:15:1f:7b:8a:88:3d: 1a:32:b2:70:cc:06:19:91:46:6b:c0:08:97:c1:4e:d8:c8:e2: da:62:69:4c:38:59:da:ee:aa:69:ec:cb:da:f0:92:26:07:a9: 65:09:91:c1:12:0c:e9:bd:82:37:b8:57:dd:4a:69:43:e5:5c: c1:80:91:09:01:0a:51:98:82:c0:bf:ce:56:67:d6:7f:14:19: 85:3d:81:b0:23:51:a9:e9:ff:be:c8:42:56:53:2c:1c:89:65: f4:11:a6:09 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJo0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM4Qjk1OEQzRTM2NDIx NEIyRTA0ODFENkQxMkZGOEMyOTIyQTdFQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBARGfviznLXAPZK6S2B0R/mxDAxatp+KVFXYUQubTykfCDdRS yfsfLi3mlXf+lB+9/PcEn0t2VuFoDtLIM+gedWWUSopfH9ra8820Df2QZ49U77pC knnOv7q5R9LirL3jKmHvNa5xfvS5c/nJfslV8vxzLOX3Cc7njPpEodgL4WWB67Wt /OWhv9XYqu+dII3KjZi2pvU9PWEAfBewFmbZktM9KLXwjY0yfJ3v6/Rh0xa1Zvh1 t0xSjc/YpeIi00MqIGZZ9rO5DtviDJIIKqMkE6JnCaF6XlD0SerJdCdUkohGzXak jQb5CkxOJC81ObzwS+UVOtzHl6xw7wmy4AxZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOLlY0+NkIUsuBIHW0S/4wpIqfr8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09MbFkwLU5rSVVzdUJJSFcw U180d3BJcWZyOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 2qAwDQYJKoZIhvcNAQELBQADggEBAHLnbfZdUpGbIqdgsQEdhK/ZpL96RZam3Yr3 LEEALRREStEZ6dj4eiio6JxTiKhFhiBQO7oYpB75w/dUSQJZsp7ehgRcpllDlp2M mQKG1I3FZ7U+micAP56Li0ieomE69DfuBF7qhIdgm07iWd7eatDZ+kXZkNNKPwrv nVkFzSRKO022g7utlfu3fDqqXbmfybzt8wW98spEJbSCphUfe4qIPRoysnDMBhmR RmvACJfBTtjI4tpiaUw4Wdruqmnsy9rwkiYHqWUJkcESDOm9gje4V91KaUPlXMGA kQkBClGYgsC/zlZn1n8UGYU9gbAjUanp/77IQlZTLByJZfQRpgk= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:38 2025 by rpki-client