$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XKVlFCF1zBwopwxLcVdgP_dHvug.roa File: XKVlFCF1zBwopwxLcVdgP_dHvug.roa (raw, json) Hash identifier: hoDTiAPiV47CC1mzhHMmOdSrSCBGn6YD9pVQ+4NwFhs= Subject key identifier: 5C:A5:65:14:21:75:CC:1C:28:A7:0C:4B:71:57:60:3F:F7:47:BE:E8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2701 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XKVlFCF1zBwopwxLcVdgP_dHvug.roa Signing time: Fri 22 Aug 2025 08:43:28 +0000 ROA not before: Fri 22 Aug 2025 08:43:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 61.56.160.0/19 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9985 (0x2701) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5CA565142175CC1C28A70C4B7157603FF747BEE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d5:ad:ac:31:17:5e:88:de:cd:43:59:d9:df: 48:13:45:47:56:7d:b2:ef:52:aa:02:66:4b:23:d5: 56:5e:ed:ab:6a:63:53:b0:4b:b0:00:00:d2:4f:1e: 24:99:ac:d6:7e:f6:1f:c0:03:0e:b6:51:d5:82:70: a4:3c:b8:fe:f4:0f:d7:e0:e2:e8:19:51:d3:dc:ed: e7:08:ad:6a:e2:3f:b7:28:9a:9f:35:cb:5e:02:a0: e8:8c:fc:23:1e:1a:fa:8e:96:87:43:c3:27:45:0d: f8:80:32:ef:52:ab:57:61:ef:12:05:a8:e0:e3:e6: 67:35:21:3b:b0:58:38:e2:05:e6:a5:ed:ec:0a:30: 20:ad:aa:f8:c8:4b:f0:37:a4:bf:00:af:bc:1c:a7: f3:ab:8b:83:14:e0:85:fa:26:9c:63:3f:8d:7b:5c: 1d:fa:ca:28:1e:6d:a2:17:6e:54:b1:5f:58:68:d6: 3c:49:56:ab:3c:50:33:bb:1d:e4:26:b2:d9:ce:60: c2:db:86:c0:44:e3:26:e4:d6:7d:7d:f2:88:be:df: 6c:f3:a1:3d:f7:c8:e9:74:4a:46:98:a0:52:f2:f2: f3:cf:b5:8f:b7:bd:cf:2d:b8:4a:9e:1e:23:93:48: 22:74:55:0a:3b:fe:ca:f1:de:a6:00:9a:25:ae:9b: 8b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A5:65:14:21:75:CC:1C:28:A7:0C:4B:71:57:60:3F:F7:47:BE:E8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XKVlFCF1zBwopwxLcVdgP_dHvug.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.160.0/19 Signature Algorithm: sha256WithRSAEncryption 0e:dc:6e:8d:d8:13:68:d5:31:d9:0a:76:d9:5e:c5:0c:79:ae: f3:b6:1d:94:d6:da:8a:00:87:c4:a6:2a:9b:3e:08:3d:22:a6: ca:bf:f1:cc:f0:75:52:62:95:47:b3:2f:e9:a1:66:ec:c7:26: 94:ac:01:0f:7c:47:0d:9e:db:d4:f6:6c:38:eb:d7:48:04:18: 7e:f5:a8:ff:cb:14:0e:ec:fe:ec:2e:a9:19:ff:3b:c3:7b:e4: 6f:c3:47:5f:08:c0:40:93:2f:50:e2:19:e8:51:f7:8f:a3:bf: 69:cd:68:02:df:b9:5c:a4:80:34:c8:84:ce:c7:9f:26:6d:37: bb:80:e5:db:64:d3:3e:e5:08:71:b4:4d:e8:ad:d7:8f:00:fa: 4b:dd:f5:cd:56:b8:1e:b0:da:74:3e:a7:5b:f5:b0:a3:e6:89: b7:03:8b:25:c4:c4:82:55:af:4d:41:86:70:c0:f5:ff:0d:df: fb:96:d3:f3:f9:1c:f3:ab:e1:85:b1:e6:19:39:3f:1d:3e:22: 44:03:e3:de:2f:fb:3d:f9:0e:36:68:82:0e:14:83:6f:7b:96: 53:51:96:3d:16:1b:9b:fe:e7:88:1e:8c:30:d9:ec:78:34:75: e5:d9:ee:f7:ad:e2:41:f3:06:4c:56:08:c5:b8:ee:9b:2a:a0: 34:65:3a:69 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJwEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVDQTU2NTE0MjE3NUND MUMyOEE3MEM0QjcxNTc2MDNGRjc0N0JFRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ1a2sMRdeiN7NQ1nZ30gTRUdWfbLvUqoCZksj1VZe7atqY1Ow S7AAANJPHiSZrNZ+9h/AAw62UdWCcKQ8uP70D9fg4ugZUdPc7ecIrWriP7comp81 y14CoOiM/CMeGvqOlodDwydFDfiAMu9Sq1dh7xIFqODj5mc1ITuwWDjiBeal7ewK MCCtqvjIS/A3pL8Ar7wcp/Ori4MU4IX6JpxjP417XB36yigebaIXblSxX1ho1jxJ Vqs8UDO7HeQmstnOYMLbhsBE4ybk1n198oi+32zzoT33yOl0SkaYoFLy8vPPtY+3 vc8tuEqeHiOTSCJ0VQo7/srx3qYAmiWum4vHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXKVlFCF1zBwopwxLcVdgP/dHvugwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1hLVmxGQ0YxekJ3b3B3eExj VmRnUF9kSHZ1Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU9 OKAwDQYJKoZIhvcNAQELBQADggEBAA7cbo3YE2jVMdkKdtlexQx5rvO2HZTW2ooA h8SmKps+CD0ipsq/8czwdVJilUezL+mhZuzHJpSsAQ98Rw2e29T2bDjr10gEGH71 qP/LFA7s/uwuqRn/O8N75G/DR18IwECTL1DiGehR94+jv2nNaALfuVykgDTIhM7H nyZtN7uA5dtk0z7lCHG0Teit148A+kvd9c1WuB6w2nQ+p1v1sKPmibcDiyXExIJV r01BhnDA9f8N3/uW0/P5HPOr4YWx5hk5Px0+IkQD494v+z35DjZogg4Ug297llNR lj0WG5v+54gejDDZ7Hg0deXZ7vet4kHzBkxWCMW47psqoDRlOmk= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:40 2025 by rpki-client