$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YC17XN-NmbSt2zpkHwW5swMMfLs.roa File: YC17XN-NmbSt2zpkHwW5swMMfLs.roa (raw, json) Hash identifier: vgYSUr1+6j+2u8dESOTE4Fb3d0nUiXLDnqq1W23rnQE= Subject key identifier: 60:2D:7B:5C:DF:8D:99:B4:AD:DB:3A:64:1F:05:B9:B3:03:0C:7C:BB Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2715 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YC17XN-NmbSt2zpkHwW5swMMfLs.roa Signing time: Fri 22 Aug 2025 08:43:33 +0000 ROA not before: Fri 22 Aug 2025 08:43:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 122.100.72.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10005 (0x2715) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=602D7B5CDF8D99B4ADDB3A641F05B9B3030C7CBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f5:10:0e:a7:b0:54:eb:15:16:82:fc:b3:65: 44:44:2c:e6:cb:6f:48:cc:8e:ae:de:01:47:73:1b: 1f:b7:dd:84:eb:2e:dd:00:dc:52:97:35:0c:29:f2: d5:ac:75:aa:68:62:c3:c8:59:c1:6f:e6:9b:1f:93: 2b:62:b4:63:d6:ac:2e:89:06:90:c0:6f:21:f6:ba: fc:b2:1b:f3:f3:ce:41:9f:e1:0e:53:14:5a:ff:67: 21:7c:55:c1:88:46:42:43:94:97:8e:ba:ad:8c:c2: 3a:0f:53:51:bd:65:73:6f:33:2d:11:62:f1:74:8d: f9:05:1f:55:15:5b:1d:df:0a:33:fa:24:c6:76:2b: 57:66:e2:a0:af:5b:cc:7f:4a:3d:a9:0d:d3:c4:e9: 44:67:77:c2:a0:3f:fe:f2:bc:ea:68:9a:1b:f8:11: a5:d3:13:4b:c2:91:cc:9a:39:73:cb:f0:d7:f9:0b: e9:48:f1:03:3a:3b:cf:2e:96:4c:65:e5:2d:ee:2e: 8d:ac:55:93:4e:8d:bf:b2:ed:74:d3:7d:a2:27:c7: d3:1c:ea:23:5e:b5:a1:8c:08:02:23:7e:7c:c4:e9: ec:7b:3f:55:47:5a:c2:b1:c1:4f:f2:d0:2f:d2:4e: 88:2d:c0:26:88:22:2e:38:d2:d1:f3:4d:3f:b9:c5: 7a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:2D:7B:5C:DF:8D:99:B4:AD:DB:3A:64:1F:05:B9:B3:03:0C:7C:BB X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YC17XN-NmbSt2zpkHwW5swMMfLs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.72.0/21 Signature Algorithm: sha256WithRSAEncryption 3d:f3:a1:7d:fb:58:84:35:65:0b:c1:f2:c2:37:66:41:5c:15: a7:07:20:31:c5:6c:ba:00:2e:fd:98:d3:cd:52:1f:d4:8a:9a: ba:d6:19:64:43:61:84:f5:4c:78:2a:56:13:62:8e:be:cb:04: 90:45:55:8c:29:7e:18:cb:4d:4f:b3:6b:3d:a4:fd:d3:68:d9: 72:fe:5a:b5:b7:33:34:7f:fc:c8:07:2f:c3:ec:65:6c:88:fa: 71:f9:76:84:18:de:34:7a:24:0c:ba:29:f5:b7:5d:42:3a:90: 21:66:a3:84:75:1e:1a:81:00:7a:e9:ee:d4:de:51:c4:52:6e: b1:f5:9c:de:4f:21:24:fa:d1:fe:e8:fd:50:c9:6f:1e:8c:4f: 3e:59:2e:0a:84:93:73:ef:d4:8d:e9:7d:f2:fe:25:b5:3d:70: b5:95:60:dd:7c:c4:4c:40:9a:b3:ca:23:dd:86:02:f0:39:9c: e9:e3:b2:62:fb:66:de:65:e8:9e:94:a8:32:5a:dc:47:d2:98: 9b:2a:9b:cf:a3:be:c2:06:1b:13:55:12:b5:05:f7:1a:40:8c: 11:1a:1f:75:79:02:9f:a0:bc:fb:b8:d0:33:96:b9:ed:f3:9f: 29:60:85:a3:53:30:3f:b0:be:eb:8e:3b:84:19:bb:7b:e6:7b: 8a:7e:82:62 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJxUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYwMkQ3QjVDREY4RDk5 QjRBRERCM0E2NDFGMDVCOUIzMDMwQzdDQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDt9RAOp7BU6xUWgvyzZURELObLb0jMjq7eAUdzGx+33YTrLt0A 3FKXNQwp8tWsdapoYsPIWcFv5psfkytitGPWrC6JBpDAbyH2uvyyG/PzzkGf4Q5T FFr/ZyF8VcGIRkJDlJeOuq2MwjoPU1G9ZXNvMy0RYvF0jfkFH1UVWx3fCjP6JMZ2 K1dm4qCvW8x/Sj2pDdPE6URnd8KgP/7yvOpomhv4EaXTE0vCkcyaOXPL8Nf5C+lI 8QM6O88ulkxl5S3uLo2sVZNOjb+y7XTTfaInx9Mc6iNetaGMCAIjfnzE6ex7P1VH WsKxwU/y0C/STogtwCaIIi440tHzTT+5xXrXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYC17XN+NmbSt2zpkHwW5swMMfLswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1lDMTdYTi1ObWJTdDJ6cGtI d1c1c3dNTWZMcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 ZEgwDQYJKoZIhvcNAQELBQADggEBAD3zoX37WIQ1ZQvB8sI3ZkFcFacHIDHFbLoA Lv2Y081SH9SKmrrWGWRDYYT1THgqVhNijr7LBJBFVYwpfhjLTU+zaz2k/dNo2XL+ WrW3MzR//MgHL8PsZWyI+nH5doQY3jR6JAy6KfW3XUI6kCFmo4R1HhqBAHrp7tTe UcRSbrH1nN5PIST60f7o/VDJbx6MTz5ZLgqEk3Pv1I3pffL+JbU9cLWVYN18xExA mrPKI92GAvA5nOnjsmL7Zt5l6J6UqDJa3EfSmJsqm8+jvsIGGxNVErUF9xpAjBEa H3V5Ap+gvPu40DOWue3znylghaNTMD+wvuuOO4QZu3vme4p+gmI= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:36 2025 by rpki-client