$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RF-VCRnEsFhg9N69N0PZNBOUxdM.roa File: RF-VCRnEsFhg9N69N0PZNBOUxdM.roa (raw, json) Hash identifier: Tov7wb3FQRiFWQgJy8VOIYcWSdbEzCc1VtO+ALwJH4M= Subject key identifier: 44:5F:95:09:19:C4:B0:58:60:F4:DE:BD:37:43:D9:34:13:94:C5:D3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25C5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RF-VCRnEsFhg9N69N0PZNBOUxdM.roa Signing time: Fri 22 Aug 2025 08:42:13 +0000 ROA not before: Fri 22 Aug 2025 08:42:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 61.58.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9669 (0x25c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=445F950919C4B05860F4DEBD3743D9341394C5D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c3:5c:9d:3f:08:f5:5b:7d:45:53:ec:65:21: b6:e1:1c:0f:5b:d7:11:2c:9a:40:7d:f3:67:12:bd: bc:3d:cb:a0:21:5c:e5:fa:96:a6:ce:35:72:53:45: 5e:c8:5c:cd:12:8b:d1:5b:90:09:29:72:54:27:08: 44:27:cd:40:05:37:8e:a1:bf:1f:7f:e4:83:29:5e: f4:e5:ba:90:0a:75:83:f3:7c:d4:4a:e8:14:0d:9a: 76:b4:8f:18:51:d4:44:55:06:ab:3e:4a:1c:a5:50: 25:bb:83:58:ee:b7:ee:c8:8a:fb:10:1f:df:b0:fa: f9:dd:a8:ac:22:d6:f6:b6:b6:54:37:2c:a0:55:cf: d8:53:8b:af:76:8f:88:eb:89:ee:7e:90:e0:bb:f3: aa:18:d0:b8:e5:6f:33:43:af:ad:a5:30:16:87:b2: 92:f6:bb:12:68:56:09:f8:04:08:99:07:17:a1:59: a7:54:2f:a1:bd:74:82:71:71:10:28:6a:1f:f2:96: 33:9d:e4:6c:f1:f9:49:b1:1a:e7:b9:86:e8:fa:af: 54:fd:e3:76:8f:52:02:22:54:47:a7:2a:72:24:a6: b6:9c:14:d2:96:cc:b2:45:95:88:78:29:5a:95:4d: 60:20:de:c9:8b:ab:ae:61:76:52:98:5c:38:e7:10: bc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:5F:95:09:19:C4:B0:58:60:F4:DE:BD:37:43:D9:34:13:94:C5:D3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RF-VCRnEsFhg9N69N0PZNBOUxdM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.96.0/20 Signature Algorithm: sha256WithRSAEncryption 16:a0:2e:8a:ae:b8:5b:8d:0d:64:7f:be:18:07:38:87:7b:c7: bb:88:6d:cc:a9:b8:e8:5f:36:50:0b:ad:9b:21:f6:ee:6a:c7: 43:6f:e8:35:7e:e4:9c:6e:63:a1:de:84:cb:aa:2f:cf:9c:ee: 84:01:2c:72:0f:3a:bc:df:b1:09:0d:2c:4e:13:a1:6d:5d:c3: 2e:cd:81:04:fd:5b:7a:26:a5:6e:96:ff:2a:b5:fa:b9:d5:c5: bb:b6:45:0d:cd:ee:b8:5f:de:c8:c5:bb:38:4a:82:4c:3b:a4: c0:fc:42:fd:54:f8:75:18:69:8c:27:1e:cc:f6:ff:5f:07:63: 92:75:d6:2c:98:6e:ec:bf:b6:7a:92:8a:38:0c:f8:18:13:56: 62:a0:89:20:49:fa:17:66:b4:85:bd:9d:de:f4:00:1f:0d:b5: bc:fc:e5:39:d1:b5:8d:e3:ff:0c:ab:00:8a:34:35:44:fa:cd: db:d5:d6:6d:76:e5:77:be:7a:7b:93:2b:31:fc:f1:f4:e4:56: 62:7e:d7:9e:1b:ec:ed:64:51:f5:23:2d:86:d9:a6:37:10:25: f4:86:44:95:68:2d:53:60:ac:c3:af:c4:41:ee:4d:d3:00:1d: ee:e9:c2:b1:79:ec:1f:df:6c:52:21:8c:74:38:e9:90:14:db: 12:bf:c9:36 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ0NUY5NTA5MTlDNEIw NTg2MEY0REVCRDM3NDNEOTM0MTM5NEM1RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuw1ydPwj1W31FU+xlIbbhHA9b1xEsmkB982cSvbw9y6AhXOX6 lqbONXJTRV7IXM0Si9FbkAkpclQnCEQnzUAFN46hvx9/5IMpXvTlupAKdYPzfNRK 6BQNmna0jxhR1ERVBqs+ShylUCW7g1jut+7IivsQH9+w+vndqKwi1va2tlQ3LKBV z9hTi692j4jrie5+kOC786oY0LjlbzNDr62lMBaHspL2uxJoVgn4BAiZBxehWadU L6G9dIJxcRAoah/yljOd5Gzx+UmxGue5huj6r1T943aPUgIiVEenKnIkpracFNKW zLJFlYh4KVqVTWAg3smLq65hdlKYXDjnELwnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQURF+VCRnEsFhg9N69N0PZNBOUxdMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1JGLVZDUm5Fc0ZoZzlONjlO MFBaTkJPVXhkTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OmAwDQYJKoZIhvcNAQELBQADggEBABagLoquuFuNDWR/vhgHOId7x7uIbcypuOhf NlALrZsh9u5qx0Nv6DV+5JxuY6HehMuqL8+c7oQBLHIPOrzfsQkNLE4ToW1dwy7N gQT9W3ompW6W/yq1+rnVxbu2RQ3N7rhf3sjFuzhKgkw7pMD8Qv1U+HUYaYwnHsz2 /18HY5J11iyYbuy/tnqSijgM+BgTVmKgiSBJ+hdmtIW9nd70AB8Ntbz85TnRtY3j /wyrAIo0NUT6zdvV1m125Xe+enuTKzH88fTkVmJ+154b7O1kUfUjLYbZpjcQJfSG RJVoLVNgrMOvxEHuTdMAHe7pwrF57B/fbFIhjHQ46ZAU2xK/yTY= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:42 2025 by rpki-client