$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/X3zg4FEi0XAmLLFa1OpiQzHUZUo.roa File: X3zg4FEi0XAmLLFa1OpiQzHUZUo.roa (raw, json) Hash identifier: fM/jRv7/RvCm9y0bCN4ro41SrIFFlKzirLyvUVXFqoU= Subject key identifier: 5F:7C:E0:E0:51:22:D1:70:26:2C:B1:5A:D4:EA:62:43:31:D4:65:4A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2636 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/X3zg4FEi0XAmLLFa1OpiQzHUZUo.roa Signing time: Fri 22 Aug 2025 08:42:42 +0000 ROA not before: Fri 22 Aug 2025 08:42:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 124.6.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9782 (0x2636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5F7CE0E05122D170262CB15AD4EA624331D4654A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4a:38:d4:c4:0e:46:df:09:b2:90:19:57:1c: 5f:bd:9c:80:bc:d7:26:e2:74:57:f3:94:7a:2a:73: d4:f8:48:89:67:ba:9a:e1:e6:1d:0b:20:ee:ae:10: 22:c0:f7:ed:2b:12:7c:4d:65:79:75:be:30:b1:f9: c7:a9:47:bf:52:66:a0:03:f6:59:27:7b:de:ed:a7: 8b:12:3d:59:b9:22:37:e2:d7:85:7c:8a:3d:a6:eb: 53:6e:38:f2:6c:dd:82:3b:c1:1f:0e:e6:dc:2b:e5: fb:c4:84:1a:1e:11:83:18:53:e1:d6:b3:85:17:96: 78:19:78:e7:b7:87:21:01:65:0e:d5:26:d1:cf:73: 4d:90:7c:92:0c:2c:44:df:a8:a1:a4:43:71:73:db: 8b:8e:97:60:cf:52:d3:12:d0:cb:f4:88:f5:4f:5d: a4:0b:50:65:b9:2a:11:ce:c6:51:c4:b5:bf:98:c7: 4e:ee:18:3a:97:db:5f:ea:d3:56:11:34:6f:43:8d: e3:0d:d5:58:52:ee:9a:65:d6:fd:72:c7:65:e0:32: 9f:36:0c:cd:94:3e:80:c0:bc:34:85:8c:56:7c:75: 21:b4:d4:ac:85:ac:d2:fd:73:21:81:6f:ea:1d:b9: 10:31:48:0c:66:c0:a5:90:32:4b:fc:d6:8a:42:83: 6f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7C:E0:E0:51:22:D1:70:26:2C:B1:5A:D4:EA:62:43:31:D4:65:4A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/X3zg4FEi0XAmLLFa1OpiQzHUZUo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.6.28.0/22 Signature Algorithm: sha256WithRSAEncryption 76:a9:d1:3e:c1:32:f9:db:1e:53:12:c5:06:20:23:dd:f8:55: 2b:95:e7:ca:42:cd:9b:ff:c3:d4:9f:9d:d7:e8:6f:d5:ac:d8: 6f:a3:3a:f5:66:7f:54:f4:c4:b4:e1:23:0a:5b:b5:eb:7c:26: 2c:05:d9:65:2b:71:d5:c6:3c:59:1e:c0:87:33:4a:db:17:03: 8c:22:23:7d:fa:34:ad:2b:da:c2:ca:fb:44:eb:67:64:1c:3f: 04:71:db:72:f3:41:f8:00:b0:fb:fb:0b:0a:4d:19:27:d1:fc: 04:42:91:2c:af:af:35:cc:1e:d3:a1:8c:fc:7c:70:49:88:7d: 65:fd:74:40:b9:60:24:ca:3f:7d:e4:b4:4a:af:e7:52:a4:55: c3:17:f8:32:f3:ba:44:ca:46:8c:05:aa:e4:12:72:47:51:49: d8:b3:22:88:e9:ed:16:a4:d3:dc:65:37:3b:c1:83:79:f0:80: 27:12:64:43:24:89:c1:58:be:ac:9b:82:ad:a4:bf:20:87:38: ef:79:ff:0e:6b:6d:c3:a9:83:98:b0:5a:b0:5e:cb:15:52:46: 98:89:9f:42:58:5a:f9:a7:b7:c1:e5:c9:7d:29:c1:08:1a:c4: 18:14:59:30:1d:aa:b5:39:79:7e:87:dc:ad:26:07:65:7a:42: 36:93:7e:f7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJjYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVGN0NFMEUwNTEyMkQx NzAyNjJDQjE1QUQ0RUE2MjQzMzFENDY1NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYSjjUxA5G3wmykBlXHF+9nIC81ybidFfzlHoqc9T4SIlnuprh 5h0LIO6uECLA9+0rEnxNZXl1vjCx+cepR79SZqAD9lkne97tp4sSPVm5Ijfi14V8 ij2m61NuOPJs3YI7wR8O5twr5fvEhBoeEYMYU+HWs4UXlngZeOe3hyEBZQ7VJtHP c02QfJIMLETfqKGkQ3Fz24uOl2DPUtMS0Mv0iPVPXaQLUGW5KhHOxlHEtb+Yx07u GDqX21/q01YRNG9DjeMN1VhS7ppl1v1yx2XgMp82DM2UPoDAvDSFjFZ8dSG01KyF rNL9cyGBb+oduRAxSAxmwKWQMkv81opCg29fAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUX3zg4FEi0XAmLLFa1OpiQzHUZUowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1gzemc0RkVpMFhBbUxMRmEx T3BpUXpIVVpVby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ8 BhwwDQYJKoZIhvcNAQELBQADggEBAHap0T7BMvnbHlMSxQYgI934VSuV58pCzZv/ w9Sfndfob9Ws2G+jOvVmf1T0xLThIwpbtet8JiwF2WUrcdXGPFkewIczStsXA4wi I336NK0r2sLK+0TrZ2QcPwRx23LzQfgAsPv7CwpNGSfR/ARCkSyvrzXMHtOhjPx8 cEmIfWX9dEC5YCTKP33ktEqv51KkVcMX+DLzukTKRowFquQSckdRSdizIojp7Rak 09xlNzvBg3nwgCcSZEMkicFYvqybgq2kvyCHOO95/w5rbcOpg5iwWrBeyxVSRpiJ n0JYWvmnt8HlyX0pwQgaxBgUWTAdqrU5eX6H3K0mB2V6QjaTfvc= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:37 2025 by rpki-client