$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XbxgdKREXfAefOHkaIaLJjp7nsg.roa File: XbxgdKREXfAefOHkaIaLJjp7nsg.roa (raw, json) Hash identifier: cQ2sHY91CGN0g8eObtiLH2QVpdgeWGNiLBS4kXx2BP0= Subject key identifier: 5D:BC:60:74:A4:44:5D:F0:1E:7C:E1:E4:68:86:8B:26:3A:7B:9E:C8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26D2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XbxgdKREXfAefOHkaIaLJjp7nsg.roa Signing time: Fri 22 Aug 2025 08:43:17 +0000 ROA not before: Fri 22 Aug 2025 08:43:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 115.165.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9938 (0x26d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5DBC6074A4445DF01E7CE1E468868B263A7B9EC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:28:34:46:b1:df:8d:c5:9e:61:1e:f8:f5:04: 95:84:29:a6:70:65:58:af:14:ea:73:ee:d4:00:49: 56:56:43:18:0a:3a:c1:e2:e0:b3:f3:b0:ba:15:bd: 61:de:96:a8:cb:ef:a6:b6:e7:60:fd:96:b0:c6:af: cc:ab:64:c8:32:0d:7c:3d:cb:6f:1b:35:95:36:59: 96:8c:d7:59:96:de:c3:8f:77:10:0b:4f:fb:b6:89: d4:a5:ac:27:24:cc:84:79:d9:22:59:02:be:f4:d6: 6c:87:b6:9e:04:fe:cd:d2:07:bf:e6:6a:fb:5e:91: d0:c4:f3:c9:41:49:81:08:99:d1:3d:aa:61:da:f4: 20:7e:1a:3a:50:d8:5e:78:96:b7:a4:9c:be:d0:00: 49:fe:18:4a:41:1d:96:77:f3:f7:d6:c3:c7:9e:14: d6:c0:95:ff:fd:3a:6d:c2:85:9d:d7:7e:e9:85:97: 92:e1:9a:e0:6b:3c:99:91:8b:73:8b:ab:bf:15:4e: bd:a1:f1:3c:79:84:29:4f:8f:53:2b:b1:eb:97:25: 64:5e:10:71:a6:05:a0:89:21:8a:27:40:28:f4:fc: b6:67:fc:a4:6d:a9:5e:ee:1d:36:21:97:bb:f4:2a: 1f:92:03:7a:ca:ad:ad:b0:85:b7:b8:ee:be:38:55: 59:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:BC:60:74:A4:44:5D:F0:1E:7C:E1:E4:68:86:8B:26:3A:7B:9E:C8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XbxgdKREXfAefOHkaIaLJjp7nsg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.165.232.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:81:05:9d:b2:9d:a3:7c:8b:2c:4d:c5:71:8b:10:bd:4a:7b: 17:e3:4d:45:f9:69:54:92:29:de:b8:ac:a1:c2:e8:17:a4:6c: 55:8b:cf:23:f2:74:bd:87:79:61:f7:39:aa:1a:90:c2:64:27: 9d:3a:83:ae:8a:c3:5f:4f:db:f4:12:8d:40:04:2e:6a:b4:4a: 3d:98:79:12:0d:87:ce:bc:11:d4:a0:51:92:fd:b6:66:b2:d9: 39:10:e0:6d:36:83:5e:4c:e2:81:d5:b1:98:ec:20:ac:cc:0c: 24:7d:29:c8:f6:9e:d8:e5:03:f0:1a:cd:3d:02:61:41:ad:0d: de:41:2c:02:6f:e6:9b:82:8e:d5:ee:39:79:f7:3b:15:7f:11: f1:1b:b8:22:23:2a:84:3b:da:6c:e9:a7:79:16:fc:d0:07:a7: bc:3d:df:e4:7e:c6:13:c2:a6:1d:5c:c3:7c:54:71:11:b4:0e: 01:16:86:26:2a:0a:64:d0:79:a6:f2:41:18:96:72:c5:a5:f5: bf:ec:8f:fa:8a:55:be:77:18:81:6b:66:66:d1:4e:f4:c3:19: e9:36:cc:41:1e:ac:d5:f0:be:14:44:62:f1:84:5e:bf:46:41: ae:a4:db:2c:21:c2:31:26:25:29:a7:7b:f5:8c:4a:50:fb:14: 0c:90:46:6a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJtIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVEQkM2MDc0QTQ0NDVE RjAxRTdDRTFFNDY4ODY4QjI2M0E3QjlFQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdKDRGsd+NxZ5hHvj1BJWEKaZwZVivFOpz7tQASVZWQxgKOsHi 4LPzsLoVvWHelqjL76a252D9lrDGr8yrZMgyDXw9y28bNZU2WZaM11mW3sOPdxAL T/u2idSlrCckzIR52SJZAr701myHtp4E/s3SB7/mavtekdDE88lBSYEImdE9qmHa 9CB+GjpQ2F54lreknL7QAEn+GEpBHZZ38/fWw8eeFNbAlf/9Om3ChZ3XfumFl5Lh muBrPJmRi3OLq78VTr2h8Tx5hClPj1MrseuXJWReEHGmBaCJIYonQCj0/LZn/KRt qV7uHTYhl7v0Kh+SA3rKra2whbe47r44VVmtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXbxgdKREXfAefOHkaIaLJjp7nsgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1hieGdkS1JFWGZBZWZPSGth SWFMSmpwN25zZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJz pegwDQYJKoZIhvcNAQELBQADggEBAF+BBZ2ynaN8iyxNxXGLEL1KexfjTUX5aVSS Kd64rKHC6BekbFWLzyPydL2HeWH3OaoakMJkJ506g66Kw19P2/QSjUAELmq0Sj2Y eRINh868EdSgUZL9tmay2TkQ4G02g15M4oHVsZjsIKzMDCR9Kcj2ntjlA/AazT0C YUGtDd5BLAJv5puCjtXuOXn3OxV/EfEbuCIjKoQ72mzpp3kW/NAHp7w93+R+xhPC ph1cw3xUcRG0DgEWhiYqCmTQeabyQRiWcsWl9b/sj/qKVb53GIFrZmbRTvTDGek2 zEEerNXwvhREYvGEXr9GQa6k2ywhwjEmJSmne/WMSlD7FAyQRmo= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:27 2025 by rpki-client