$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Xi-vGA7-UDgz2qQLp3h2dYxoilg.roa File: Xi-vGA7-UDgz2qQLp3h2dYxoilg.roa (raw, json) Hash identifier: GFiTnjmcAjWxzBFC3gbPdRiEZDVbq1G0IEvDS2vwFWU= Subject key identifier: 5E:2F:AF:18:0E:FE:50:38:33:DA:A4:0B:A7:78:76:75:8C:68:8A:58 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2630 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Xi-vGA7-UDgz2qQLp3h2dYxoilg.roa Signing time: Fri 22 Aug 2025 08:42:40 +0000 ROA not before: Fri 22 Aug 2025 08:42:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 61.58.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9776 (0x2630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5E2FAF180EFE503833DAA40BA77876758C688A58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cf:bd:5c:46:c4:db:81:af:4e:95:e0:43:f7: 6a:77:1e:91:58:bc:a9:c9:41:42:b9:a3:c6:95:15: 8e:4d:b7:7e:fe:ad:64:6f:ad:ab:02:19:cb:81:98: 58:60:63:a3:ea:a9:c4:58:20:b4:36:31:51:c4:aa: 81:fc:a0:95:cf:80:61:e2:04:5a:a0:8f:f5:b1:f0: 4d:d8:41:fc:1a:ea:cc:56:1f:60:a3:74:cf:a1:7a: f3:a6:42:ff:e2:cc:ad:5d:b7:b6:91:71:51:6e:af: 5b:28:ac:34:2c:22:92:51:ad:bc:35:88:3c:2f:cc: 0e:5d:aa:d1:12:15:60:8b:9c:3e:54:78:fa:d3:ff: c4:e1:17:22:14:45:5c:40:c4:e9:14:9c:7e:a2:11: 36:e6:01:2a:a3:db:a0:73:14:ad:b5:94:1b:62:ea: 59:13:38:64:30:ae:86:37:d6:06:42:7f:b1:bd:ae: 4d:65:43:63:06:58:08:54:01:b1:86:cd:d9:01:b9: ff:39:86:89:de:d2:24:a0:c0:67:66:c4:4e:91:04: aa:73:84:a8:43:7d:09:e7:d7:32:67:ba:4e:e4:d3: 0e:81:dc:c4:e4:f6:42:6b:fa:4f:b6:48:11:6f:b0: b7:3f:69:65:4e:23:04:99:63:1a:5d:d2:a0:c2:0a: 01:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:2F:AF:18:0E:FE:50:38:33:DA:A4:0B:A7:78:76:75:8C:68:8A:58 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Xi-vGA7-UDgz2qQLp3h2dYxoilg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.120.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:08:9a:11:af:8b:cf:7f:cd:e5:a0:90:b9:27:4c:31:9c:25: bf:8f:f6:d0:a8:65:e6:5f:f4:6e:38:a5:c6:32:81:a2:9d:ce: 93:05:b7:10:09:f0:df:59:4b:9f:23:43:2b:1b:1b:62:ab:2c: b1:b3:1c:31:3c:0c:a8:4a:3a:3e:f0:df:ac:31:11:1c:03:c5: b8:2a:52:e6:19:a2:dc:27:7c:fe:16:97:91:ab:03:1c:cf:54: 24:69:da:4c:5c:3c:50:6b:47:24:7a:c2:5d:cd:68:25:bd:9b: 0f:b9:11:b5:d5:17:1e:aa:18:d4:b2:e7:49:92:13:6c:71:10: 5a:ba:72:00:58:33:5e:1e:a7:a7:15:c6:20:f8:97:28:7b:a2: 6c:2b:8a:57:b8:76:d9:84:98:55:15:3a:6f:c8:ff:51:36:5c: cc:3c:ab:b9:9f:57:25:be:54:fb:fd:35:b5:aa:e7:e7:ff:5a: 29:40:f9:ee:19:3a:23:3c:f8:16:70:71:30:c8:41:ed:0d:9a: 85:11:64:c1:d3:c8:b0:ea:a7:03:bf:24:00:68:8e:a0:20:a3: 9b:93:69:2a:ab:f8:fb:f2:db:ac:6f:cd:36:fa:ae:56:f2:41: 53:0b:5a:a1:de:b2:f8:55:ca:c6:31:df:78:69:7a:05:9b:4c: 91:da:83:ed -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJjAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVFMkZBRjE4MEVGRTUw MzgzM0RBQTQwQkE3Nzg3Njc1OEM2ODhBNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBz71cRsTbga9OleBD92p3HpFYvKnJQUK5o8aVFY5Nt37+rWRv rasCGcuBmFhgY6PqqcRYILQ2MVHEqoH8oJXPgGHiBFqgj/Wx8E3YQfwa6sxWH2Cj dM+hevOmQv/izK1dt7aRcVFur1sorDQsIpJRrbw1iDwvzA5dqtESFWCLnD5UePrT /8ThFyIURVxAxOkUnH6iETbmASqj26BzFK21lBti6lkTOGQwroY31gZCf7G9rk1l Q2MGWAhUAbGGzdkBuf85hone0iSgwGdmxE6RBKpzhKhDfQnn1zJnuk7k0w6B3MTk 9kJr+k+2SBFvsLc/aWVOIwSZYxpd0qDCCgEJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXi+vGA7+UDgz2qQLp3h2dYxoilgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1hpLXZHQTctVURnejJxUUxw M2gyZFl4b2lsZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE9 OngwDQYJKoZIhvcNAQELBQADggEBAH8ImhGvi89/zeWgkLknTDGcJb+P9tCoZeZf 9G44pcYygaKdzpMFtxAJ8N9ZS58jQysbG2KrLLGzHDE8DKhKOj7w36wxERwDxbgq UuYZotwnfP4Wl5GrAxzPVCRp2kxcPFBrRyR6wl3NaCW9mw+5EbXVFx6qGNSy50mS E2xxEFq6cgBYM14ep6cVxiD4lyh7omwrile4dtmEmFUVOm/I/1E2XMw8q7mfVyW+ VPv9NbWq5+f/WilA+e4ZOiM8+BZwcTDIQe0NmoURZMHTyLDqpwO/JABojqAgo5uT aSqr+Pvy26xvzTb6rlbyQVMLWqHesvhVysYx33hpegWbTJHag+0= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:43 2025 by rpki-client