$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Tu7nCAJIzgImGTu9BU0G-pSi1eA.roa File: Tu7nCAJIzgImGTu9BU0G-pSi1eA.roa (raw, json) Hash identifier: 9AXv8hmWSPN9bZ3olZL8q0zvEOTLJ5Pq5+8cYasR0og= Subject key identifier: 4E:EE:E7:08:02:48:CE:02:26:19:3B:BD:05:4D:06:FA:94:A2:D5:E0 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26F2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Tu7nCAJIzgImGTu9BU0G-pSi1eA.roa Signing time: Fri 22 Aug 2025 08:43:25 +0000 ROA not before: Fri 22 Aug 2025 08:43:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 124.6.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9970 (0x26f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4EEEE7080248CE0226193BBD054D06FA94A2D5E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ef:5c:37:3e:ff:e9:10:a3:7b:a7:6d:7f:ea: 9b:4f:5e:0d:bd:32:b5:58:52:c8:69:38:d4:a4:3b: 95:fa:03:51:16:fb:16:fc:e0:f7:55:3d:9d:7b:5d: 56:e2:f5:da:5d:47:e2:73:e0:5c:a2:a8:6d:3e:55: 4e:a7:4e:08:89:a5:e7:e5:17:87:63:6b:d4:68:1b: c4:04:66:fc:ba:29:a5:7a:90:ab:e8:d7:9f:2a:38: 9b:0a:6e:b2:24:7d:74:6b:d7:da:c3:31:b8:7b:2f: 34:55:7a:dc:50:a3:0c:a7:f6:04:4c:e4:8d:87:5e: e7:39:43:70:e5:72:6f:92:55:46:e3:ac:0d:1c:00: d5:1a:fa:7b:8f:fa:e2:31:c2:1b:a7:20:e5:ad:1d: af:e9:89:13:a4:7d:7e:4f:41:ec:98:fb:ae:0b:f7: ce:35:18:f2:4b:c1:66:ae:fa:3f:5a:d9:70:9a:6d: ca:69:27:32:4b:be:a8:c4:07:84:f2:0d:8e:e4:50: f7:4e:5b:8b:b5:e3:2d:b8:f6:af:33:cc:53:f1:e4: 13:63:08:05:28:5c:14:80:87:a9:1e:61:df:20:f6: b2:e6:33:49:28:9b:7c:75:11:2b:be:08:8f:0d:e6: b2:6f:75:ad:83:2e:32:42:47:5a:1a:a2:14:c7:b3: b5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:EE:E7:08:02:48:CE:02:26:19:3B:BD:05:4D:06:FA:94:A2:D5:E0 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Tu7nCAJIzgImGTu9BU0G-pSi1eA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.6.8.0/22 Signature Algorithm: sha256WithRSAEncryption 59:30:ef:fb:8a:87:c2:82:29:e5:c0:dc:88:a5:a6:12:e8:3c: df:ac:96:89:6c:46:bc:08:32:90:c3:d1:b1:26:ac:d9:89:db: 89:d1:21:9f:a9:32:a1:1b:29:4c:04:dd:d9:d9:ae:85:f7:bc: 1c:a2:b4:0a:26:0c:fd:f7:af:57:50:cc:fe:0c:03:c6:db:c4: ff:d6:6d:ac:b0:88:ec:04:d8:89:48:68:71:23:c8:5e:57:ef: 4c:41:0d:81:4f:0d:00:35:fb:8b:85:cc:63:6f:90:c9:7f:27: 5f:84:9c:ca:d3:50:a1:ad:77:d4:fa:8c:94:7d:c9:ed:20:e4: 95:a7:8c:3a:58:3e:1c:9a:ee:3c:38:9e:e6:e9:6d:96:24:e0: e4:5c:94:c1:79:53:32:92:f4:84:32:d9:df:26:40:67:bd:fd: 27:a8:d0:f2:77:89:7c:ca:8f:37:3d:73:97:63:4b:2a:04:84: a7:12:8c:8e:e7:f4:ca:bd:8d:8a:6d:96:77:d8:a3:85:65:54: f7:66:2f:81:4c:ea:53:da:ad:e9:61:ba:5f:e3:bc:dd:fa:2e: d2:8d:27:d0:05:ee:58:a1:f9:6a:c6:08:2b:64:82:9c:b4:12: d0:49:af:d6:f9:c4:88:7e:8b:f9:15:46:af:1c:00:24:b2:cd: 10:ae:e0:29 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRFRUVFNzA4MDI0OENF MDIyNjE5M0JCRDA1NEQwNkZBOTRBMkQ1RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx71w3Pv/pEKN7p21/6ptPXg29MrVYUshpONSkO5X6A1EW+xb8 4PdVPZ17XVbi9dpdR+Jz4FyiqG0+VU6nTgiJpeflF4dja9RoG8QEZvy6KaV6kKvo 158qOJsKbrIkfXRr19rDMbh7LzRVetxQowyn9gRM5I2HXuc5Q3Dlcm+SVUbjrA0c ANUa+nuP+uIxwhunIOWtHa/piROkfX5PQeyY+64L9841GPJLwWau+j9a2XCabcpp JzJLvqjEB4TyDY7kUPdOW4u14y249q8zzFPx5BNjCAUoXBSAh6keYd8g9rLmM0ko m3x1ESu+CI8N5rJvda2DLjJCR1oaohTHs7VRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUTu7nCAJIzgImGTu9BU0G+pSi1eAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1R1N25DQUpJemdJbUdUdTlC VTBHLXBTaTFlQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ8 BggwDQYJKoZIhvcNAQELBQADggEBAFkw7/uKh8KCKeXA3IilphLoPN+slolsRrwI MpDD0bEmrNmJ24nRIZ+pMqEbKUwE3dnZroX3vByitAomDP33r1dQzP4MA8bbxP/W baywiOwE2IlIaHEjyF5X70xBDYFPDQA1+4uFzGNvkMl/J1+EnMrTUKGtd9T6jJR9 ye0g5JWnjDpYPhya7jw4nubpbZYk4ORclMF5UzKS9IQy2d8mQGe9/Seo0PJ3iXzK jzc9c5djSyoEhKcSjI7n9Mq9jYptlnfYo4VlVPdmL4FM6lParelhul/jvN36LtKN J9AF7lih+WrGCCtkgpy0EtBJr9b5xIh+i/kVRq8cACSyzRCu4Ck= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:39 2025 by rpki-client