$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XHUrWn6c6CObFy1TZNZkG1xEC9A.roa File: XHUrWn6c6CObFy1TZNZkG1xEC9A.roa (raw, json) Hash identifier: S1G2WaBdugNoKn9PTkbbGW8n1ywtymgWkR1rdNNhHGs= Subject key identifier: 5C:75:2B:5A:7E:9C:E8:23:9B:17:2D:53:64:D6:64:1B:5C:44:0B:D0 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25E2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XHUrWn6c6CObFy1TZNZkG1xEC9A.roa Signing time: Fri 22 Aug 2025 08:42:21 +0000 ROA not before: Fri 22 Aug 2025 08:42:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9698 (0x25e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5C752B5A7E9CE8239B172D5364D6641B5C440BD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:07:7d:1a:01:af:7a:a6:73:0f:fe:85:ef:5e: a2:1f:a6:98:21:86:64:52:f9:d7:2f:81:4a:9e:33: d2:af:84:9c:34:b8:e9:d5:3c:07:20:93:31:e5:de: 85:dd:94:f6:a8:4e:d9:11:ec:da:c9:77:e5:ea:0b: f2:52:ca:01:87:41:9a:12:cd:0a:3b:11:55:a7:63: 2d:72:45:69:51:c5:95:d0:ee:a5:6f:34:7d:e9:3a: 6d:8b:e8:72:7a:22:76:ee:0b:1a:67:55:28:07:8f: d7:b7:cc:56:f3:b4:0a:0a:4f:83:73:03:c0:14:1f: c6:89:e0:d1:7e:f4:de:d4:69:76:95:07:1f:9e:ce: dc:d3:18:0a:e8:c8:e2:f6:93:ac:77:8b:d5:27:a2: 2e:b0:0c:6e:18:43:88:7f:b4:7c:80:d0:29:e3:9c: 5a:df:5c:3f:5a:af:fe:b2:bb:7f:8d:06:1c:33:6c: 4d:e7:f0:3e:33:94:89:49:78:b4:28:27:ac:12:70: 9b:fc:b0:13:c3:5c:38:eb:ea:d1:15:87:e5:61:a8: 44:c9:a2:2c:1c:f4:fd:5e:53:af:91:07:56:08:05: 76:0b:15:ae:f5:ff:e4:05:0f:4b:64:21:49:28:0c: e4:59:fd:43:65:b7:d2:b0:31:48:c3:b4:90:d4:21: 6b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:75:2B:5A:7E:9C:E8:23:9B:17:2D:53:64:D6:64:1B:5C:44:0B:D0 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XHUrWn6c6CObFy1TZNZkG1xEC9A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.56.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:5a:c3:35:8e:24:c7:ab:af:4f:0b:1a:5f:51:01:26:ee:a0: af:a2:fe:3e:4e:44:d4:7f:bc:00:ec:fa:47:8a:5f:64:a0:64: 4d:82:82:74:05:d2:0b:2f:68:ab:9f:ae:18:73:b6:5d:7a:00: 8d:4f:d0:55:b8:a1:f4:f2:af:bd:07:4f:58:ea:e5:b2:f9:96: 86:ce:e8:3a:47:71:5d:94:7e:cf:7e:b7:b4:c1:81:74:4b:40: 0d:c3:a2:83:d1:2b:0f:68:b1:8d:e1:bc:ce:2f:9f:28:f9:26: b6:db:13:a6:06:51:c4:58:18:5a:ec:c1:fa:29:20:51:9e:1f: 38:b4:57:db:2f:23:a0:64:f1:80:72:8f:a5:73:b1:de:68:c4: 70:20:2e:b0:6f:0f:41:bc:7f:67:ba:2c:3f:3c:f3:ae:c3:c9: f9:eb:a6:62:0f:27:df:5c:a3:0f:6a:dc:ac:88:71:f1:d2:fb: 1b:26:76:5b:dd:38:f8:5b:f7:56:8b:73:5e:4f:1f:b5:6d:ef: 4b:0a:eb:2e:b5:e6:2f:b0:3e:a6:f8:23:1c:a2:42:ec:29:62: 24:5b:8e:a4:01:bd:2a:c2:a0:49:4e:17:2d:de:51:f0:ae:3f: 92:ca:ab:50:1f:80:1a:df:8f:ec:3b:68:63:4a:33:59:5f:dd: 2e:b4:24:52 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJeIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVDNzUyQjVBN0U5Q0U4 MjM5QjE3MkQ1MzY0RDY2NDFCNUM0NDBCRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuB30aAa96pnMP/oXvXqIfppghhmRS+dcvgUqeM9KvhJw0uOnV PAcgkzHl3oXdlPaoTtkR7NrJd+XqC/JSygGHQZoSzQo7EVWnYy1yRWlRxZXQ7qVv NH3pOm2L6HJ6InbuCxpnVSgHj9e3zFbztAoKT4NzA8AUH8aJ4NF+9N7UaXaVBx+e ztzTGAroyOL2k6x3i9Unoi6wDG4YQ4h/tHyA0CnjnFrfXD9ar/6yu3+NBhwzbE3n 8D4zlIlJeLQoJ6wScJv8sBPDXDjr6tEVh+VhqETJoiwc9P1eU6+RB1YIBXYLFa71 /+QFD0tkIUkoDORZ/UNlt9KwMUjDtJDUIWuJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXHUrWn6c6CObFy1TZNZkG1xEC9AwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1hIVXJXbjZjNkNPYkZ5MVRa TlprRzF4RUM5QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 2jgwDQYJKoZIhvcNAQELBQADggEBAD1awzWOJMerr08LGl9RASbuoK+i/j5ORNR/ vADs+keKX2SgZE2CgnQF0gsvaKufrhhztl16AI1P0FW4ofTyr70HT1jq5bL5lobO 6DpHcV2Ufs9+t7TBgXRLQA3DooPRKw9osY3hvM4vnyj5JrbbE6YGUcRYGFrswfop IFGeHzi0V9svI6Bk8YByj6Vzsd5oxHAgLrBvD0G8f2e6LD88867DyfnrpmIPJ99c ow9q3KyIcfHS+xsmdlvdOPhb91aLc15PH7Vt70sK6y615i+wPqb4IxyiQuwpYiRb jqQBvSrCoElOFy3eUfCuP5LKq1AfgBrfj+w7aGNKM1lf3S60JFI= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:33 2025 by rpki-client