$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TyVa9_9zq3Z2AfbUcYJwqDOlqAw.roa File: TyVa9_9zq3Z2AfbUcYJwqDOlqAw.roa (raw, json) Hash identifier: SETy3hMdnhdENBU1yNeibN4EVbpnB3lEe++R4SPtPzY= Subject key identifier: 4F:25:5A:F7:FF:73:AB:76:76:01:F6:D4:71:82:70:A8:33:A5:A8:0C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25E9 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TyVa9_9zq3Z2AfbUcYJwqDOlqAw.roa Signing time: Fri 22 Aug 2025 08:42:23 +0000 ROA not before: Fri 22 Aug 2025 08:42:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4662 IP address blocks: 61.61.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9705 (0x25e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4F255AF7FF73AB767601F6D4718270A833A5A80C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:53:ff:ec:54:07:e7:3c:ee:49:f2:20:e4:60: b8:88:c4:09:6d:84:87:95:b0:5e:e4:53:b2:e7:d5: 9d:68:f1:9e:85:98:a3:66:6c:43:bd:6e:69:c7:ab: 64:d8:17:58:73:47:b4:a7:4b:b5:2b:98:5d:a4:7c: 5c:88:fb:3f:d5:97:4f:ad:2e:9e:22:58:37:85:de: 14:c3:1d:ae:f7:e2:22:3d:85:c0:22:27:11:8d:37: b1:26:d9:94:a5:a0:3b:f5:93:c3:fc:6b:d1:b3:27: 9b:33:fd:e6:01:8e:16:2c:88:d5:d2:65:77:9d:2b: b6:5e:36:6c:ed:4e:22:6e:04:d8:96:b6:33:cb:45: 54:8d:0e:4c:94:33:0d:c9:ce:d9:0d:27:eb:62:9b: 93:13:f6:7a:bb:71:92:be:2a:f0:12:28:35:5f:e7: 4c:1d:4a:a2:77:cd:da:10:c4:d1:ee:2c:cf:eb:23: 52:81:ac:e7:85:e5:b3:c9:c2:4f:fc:d1:22:18:b5: 7b:62:38:b1:77:65:5a:5a:f4:63:25:52:07:fb:81: 7d:fc:aa:a6:fc:69:43:94:e4:d8:ae:2c:27:05:d4: 36:04:8f:aa:5e:3e:0d:53:05:ae:90:b4:1d:5d:db: 0c:2d:9d:5f:c7:65:e9:f5:d0:8e:16:c8:0e:df:8d: f2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:25:5A:F7:FF:73:AB:76:76:01:F6:D4:71:82:70:A8:33:A5:A8:0C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TyVa9_9zq3Z2AfbUcYJwqDOlqAw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.224.0/20 Signature Algorithm: sha256WithRSAEncryption 7c:fc:2c:40:e3:04:1e:68:27:7f:1a:61:50:84:87:16:c7:19: 77:f9:d6:e5:df:40:69:cc:2b:7d:a1:41:af:e9:b2:31:cc:c4: 75:d8:b0:04:9e:47:fd:7e:c5:4c:e5:ac:55:21:4c:c8:db:d7: e4:0d:87:71:0f:6f:85:b6:1a:70:29:88:8e:0a:b4:06:ed:6b: 80:79:92:da:f3:a2:8b:99:09:86:88:cf:64:47:0a:3e:15:05: df:60:2a:f3:fa:a4:48:5a:c9:03:bd:57:5a:c1:1b:46:22:eb: a8:df:1d:ca:98:09:28:71:e6:73:1d:81:46:c6:45:4e:1e:a5: a9:ad:35:91:2b:b1:f1:f1:41:09:2b:29:6b:d7:53:70:0a:97: 44:28:9f:98:79:f2:27:22:55:ed:99:ac:74:75:f2:91:48:77: 17:ce:1e:cb:8a:d9:bb:24:6f:32:8c:26:56:ea:50:1f:10:03: f1:28:8f:dc:b2:43:05:28:9f:17:53:b1:08:be:8c:75:c8:5f: 0a:52:bd:e2:68:95:14:93:83:93:fd:f2:40:0a:02:ab:20:11: 2c:54:4f:d6:44:fc:98:a1:ed:06:68:b9:72:93:fc:c0:0b:c4: e2:0f:72:18:fb:04:68:b0:5d:f3:52:a3:ba:ae:5a:41:b0:21: 00:cf:e3:83 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJekwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRGMjU1QUY3RkY3M0FC NzY3NjAxRjZENDcxODI3MEE4MzNBNUE4MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyU//sVAfnPO5J8iDkYLiIxAlthIeVsF7kU7Ln1Z1o8Z6FmKNm bEO9bmnHq2TYF1hzR7SnS7UrmF2kfFyI+z/Vl0+tLp4iWDeF3hTDHa734iI9hcAi JxGNN7Em2ZSloDv1k8P8a9GzJ5sz/eYBjhYsiNXSZXedK7ZeNmztTiJuBNiWtjPL RVSNDkyUMw3JztkNJ+tim5MT9nq7cZK+KvASKDVf50wdSqJ3zdoQxNHuLM/rI1KB rOeF5bPJwk/80SIYtXtiOLF3ZVpa9GMlUgf7gX38qqb8aUOU5NiuLCcF1DYEj6pe Pg1TBa6QtB1d2wwtnV/HZen10I4WyA7fjfJPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUTyVa9/9zq3Z2AfbUcYJwqDOlqAwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1R5VmE5Xzl6cTNaMkFmYlVj WUp3cURPbHFBdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 PeAwDQYJKoZIhvcNAQELBQADggEBAHz8LEDjBB5oJ38aYVCEhxbHGXf51uXfQGnM K32hQa/psjHMxHXYsASeR/1+xUzlrFUhTMjb1+QNh3EPb4W2GnApiI4KtAbta4B5 ktrzoouZCYaIz2RHCj4VBd9gKvP6pEhayQO9V1rBG0Yi66jfHcqYCShx5nMdgUbG RU4epamtNZErsfHxQQkrKWvXU3AKl0Qon5h58iciVe2ZrHR18pFIdxfOHsuK2bsk bzKMJlbqUB8QA/Eoj9yyQwUonxdTsQi+jHXIXwpSveJolRSTg5P98kAKAqsgESxU T9ZE/Jih7QZouXKT/MALxOIPchj7BGiwXfNSo7quWkGwIQDP44M= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:31 2025 by rpki-client