$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SlQZzIMteHPT3I-0ikCkhyJjVHs.roa File: SlQZzIMteHPT3I-0ikCkhyJjVHs.roa (raw, json) Hash identifier: /X9QF3HsOSMqBxMq27fT4U+IDhAFOIcx7fmiJgFaqJk= Subject key identifier: 4A:54:19:CC:83:2D:78:73:D3:DC:8F:B4:8A:40:A4:87:22:63:54:7B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2700 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SlQZzIMteHPT3I-0ikCkhyJjVHs.roa Signing time: Fri 22 Aug 2025 08:43:28 +0000 ROA not before: Fri 22 Aug 2025 08:43:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 61.58.112.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9984 (0x2700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4A5419CC832D7873D3DC8FB48A40A4872263547B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a8:e9:a4:2f:e2:6c:fd:aa:d8:ef:11:60:f5: 4f:25:02:84:e3:e6:e4:d2:9c:d5:f7:97:14:85:cc: 2b:48:b7:5d:30:3e:92:4a:9b:4e:76:8b:22:30:8f: 80:c8:be:43:08:b0:2e:10:6e:aa:7c:1c:fd:c6:39: 4d:ae:66:36:ff:5a:08:c8:f7:b1:ff:f7:23:3f:92: 06:c4:91:23:6c:b9:ae:8a:d3:b4:80:b4:37:af:81: 05:18:92:21:33:d6:bc:ec:52:8a:1c:ac:79:6e:1f: 41:9d:8c:20:f5:16:aa:b9:48:ba:2f:7d:d8:05:a7: ea:3f:71:6a:e7:5c:cb:ba:a8:2a:84:27:14:05:ee: 9c:90:8f:2a:42:cc:18:10:22:3f:24:ec:af:43:bd: b8:61:39:7e:ac:43:e4:19:19:84:20:21:7d:b7:25: 33:ee:1c:45:7f:55:94:4f:4d:f0:d5:33:13:80:17: ea:db:24:ff:f1:29:64:85:10:58:70:86:6c:c7:e9: 27:cc:64:7f:a9:78:80:7f:91:27:26:08:dd:0a:9d: ed:d5:12:cf:8b:58:c8:4e:b9:b4:4e:a0:ab:e7:95: e7:a0:f1:f8:ed:f4:b7:1c:b5:95:e1:6e:71:f0:66: 0f:da:3f:27:31:4b:77:5d:7a:61:99:91:73:f5:aa: d8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:54:19:CC:83:2D:78:73:D3:DC:8F:B4:8A:40:A4:87:22:63:54:7B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SlQZzIMteHPT3I-0ikCkhyJjVHs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.112.0/20 Signature Algorithm: sha256WithRSAEncryption 50:e4:4c:ae:36:75:c8:02:c5:4b:d7:cb:09:94:b9:06:5b:ac: ce:bd:b0:0a:4a:7b:84:46:3b:85:10:dc:7b:f3:15:b1:f1:89: 92:18:38:f8:cc:e8:30:84:39:c1:ae:02:44:f2:db:5a:4b:d9: d6:3f:f8:bf:4e:f8:b2:eb:29:ea:a0:67:84:bf:d5:bd:46:76: 89:30:a0:94:e9:c3:06:d3:2a:69:d5:17:cf:93:8e:85:c6:53: 0b:6c:1a:7d:0a:df:8f:18:2f:3d:4d:86:63:50:37:b5:6b:a4: 7e:bc:40:eb:52:9c:e5:d8:95:79:21:21:dd:36:0b:92:f3:9e: 34:83:1e:d2:f6:e8:a8:ab:3e:78:c3:b0:a8:80:9c:e5:1d:1c: ba:a9:12:7f:39:0a:49:bf:e9:0d:48:e7:b0:f3:71:00:48:56: 04:63:b6:5f:7d:a3:a1:58:4f:95:16:a4:ea:67:ed:0f:9b:32: fb:50:0d:ba:64:80:85:fc:38:1d:8f:50:6f:70:a9:f9:2a:39: d7:d8:6f:29:1f:40:ae:83:ec:52:27:b6:97:67:d3:f2:a8:4b: 7c:75:f2:5a:77:7c:a6:da:b7:a9:3e:56:dc:05:44:9c:ab:52: 18:25:e6:33:67:68:ec:30:04:fc:91:25:23:7f:48:75:aa:db: 29:b7:17:63 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJwAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRBNTQxOUNDODMyRDc4 NzNEM0RDOEZCNDhBNDBBNDg3MjI2MzU0N0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgqOmkL+Js/arY7xFg9U8lAoTj5uTSnNX3lxSFzCtIt10wPpJK m052iyIwj4DIvkMIsC4Qbqp8HP3GOU2uZjb/WgjI97H/9yM/kgbEkSNsua6K07SA tDevgQUYkiEz1rzsUoocrHluH0GdjCD1Fqq5SLovfdgFp+o/cWrnXMu6qCqEJxQF 7pyQjypCzBgQIj8k7K9DvbhhOX6sQ+QZGYQgIX23JTPuHEV/VZRPTfDVMxOAF+rb JP/xKWSFEFhwhmzH6SfMZH+peIB/kScmCN0Kne3VEs+LWMhOubROoKvnleeg8fjt 9LcctZXhbnHwZg/aPycxS3ddemGZkXP1qtgtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSlQZzIMteHPT3I+0ikCkhyJjVHswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1NsUVp6SU10ZUhQVDNJLTBp a0NraHlKalZIcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OnAwDQYJKoZIhvcNAQELBQADggEBAFDkTK42dcgCxUvXywmUuQZbrM69sApKe4RG O4UQ3HvzFbHxiZIYOPjM6DCEOcGuAkTy21pL2dY/+L9O+LLrKeqgZ4S/1b1Gdokw oJTpwwbTKmnVF8+TjoXGUwtsGn0K348YLz1NhmNQN7VrpH68QOtSnOXYlXkhId02 C5LznjSDHtL26KirPnjDsKiAnOUdHLqpEn85Ckm/6Q1I57DzcQBIVgRjtl99o6FY T5UWpOpn7Q+bMvtQDbpkgIX8OB2PUG9wqfkqOdfYbykfQK6D7FIntpdn0/KoS3x1 8lp3fKbat6k+VtwFRJyrUhgl5jNnaOwwBPyRJSN/SHWq2ym3F2M= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:38 2025 by rpki-client