$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_lS22igCeWCDhM_jCaxKUm4xWFc.roa File: _lS22igCeWCDhM_jCaxKUm4xWFc.roa (raw, json) Hash identifier: S3AWVlIbhSEHt3BvJRWbJW1SCPIh5NefitLp6Pao80I= Subject key identifier: FE:54:B6:DA:28:02:79:60:83:84:CF:E3:09:AC:4A:52:6E:31:58:57 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26DB Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_lS22igCeWCDhM_jCaxKUm4xWFc.roa Signing time: Fri 22 Aug 2025 08:43:20 +0000 ROA not before: Fri 22 Aug 2025 08:43:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 122.100.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9947 (0x26db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FE54B6DA280279608384CFE309AC4A526E315857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:27:f8:73:16:07:84:de:1d:06:65:5b:c7:cf: a5:ac:da:ad:01:bf:e6:57:43:fa:8c:d5:66:8c:49: d8:cc:a5:66:6c:79:f5:56:bf:cc:b5:a0:e1:90:75: a0:d7:7c:45:a6:2b:12:ac:2b:49:06:4a:a5:41:4f: 8a:7d:64:cd:61:7a:46:aa:43:fd:cf:37:9e:ab:a3: 25:5f:19:b0:e1:f5:ad:8c:39:a2:10:e5:b7:39:64: 92:f9:fa:ef:0d:fe:f7:de:46:4d:72:bc:67:e9:75: e3:ba:0b:e6:07:66:41:36:df:44:3f:9d:2e:1b:9d: 78:ff:ac:eb:33:f4:17:57:7b:f5:6e:17:39:12:2a: 09:26:08:97:a5:55:56:65:c6:8f:06:66:cd:08:27: 06:7c:de:b2:14:b8:74:cb:6f:ef:11:36:e8:c2:d2: 10:35:df:d6:3b:68:b8:6b:a6:0f:f3:18:51:c4:6f: 6c:67:6c:4d:76:a1:b2:31:a0:8c:72:1e:3a:2d:34: 7f:a2:ba:46:c9:d1:64:48:91:d8:dd:1f:d5:e7:b9: 9b:08:f8:e4:39:bc:91:58:a8:2b:58:f5:cd:81:f8: 33:b3:22:c1:1d:f1:10:e1:5e:13:02:b2:e5:81:69: 8b:21:ba:4e:b3:30:47:bf:5a:00:a0:e2:d2:3d:65: 13:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:54:B6:DA:28:02:79:60:83:84:CF:E3:09:AC:4A:52:6E:31:58:57 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_lS22igCeWCDhM_jCaxKUm4xWFc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.64.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:af:fd:1c:6b:da:f3:55:e3:08:77:92:cb:eb:a2:52:e3:6a: bd:67:e0:0f:a3:97:98:86:3d:6b:83:d4:b8:f6:b5:2f:23:e1: 04:89:4c:7e:ae:8d:3a:6f:fd:1d:b5:8c:97:34:b7:0a:4b:f2: 3a:56:ac:89:12:35:ca:f1:41:62:bd:04:14:0c:fa:9a:ab:8d: 78:d2:62:80:d6:b9:a9:ab:7a:41:77:44:4c:c9:23:53:25:52: 83:76:73:ee:16:b1:cd:86:82:54:25:0a:77:e4:4c:b3:a7:ae: 99:2d:ff:b8:56:1c:c1:80:3c:07:82:4c:51:5c:e2:9f:21:92: df:4c:ce:cd:27:9a:a2:ac:fc:38:14:4b:a1:51:73:a7:e9:e1: 32:cb:5d:0d:a3:49:a7:46:00:0f:c4:15:8f:aa:27:46:20:ac: 88:90:06:80:9d:c7:51:37:54:2d:48:e4:7d:b2:02:87:c5:fd: c7:fe:2b:e9:a2:91:57:67:be:f9:b7:57:ae:41:93:b5:bd:f4: 22:8b:4f:73:e1:3d:b8:25:6e:dd:71:46:e9:ba:6c:77:c4:98: 9a:13:bb:dd:7f:ca:56:02:27:24:91:bc:8f:20:e5:67:65:ab: 50:f6:15:80:06:b3:3f:2d:3c:a5:b5:64:5c:d3:c1:f3:80:53: 91:ab:d0:a0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJtswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZFNTRCNkRBMjgwMjc5 NjA4Mzg0Q0ZFMzA5QUM0QTUyNkUzMTU4NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8J/hzFgeE3h0GZVvHz6Ws2q0Bv+ZXQ/qM1WaMSdjMpWZsefVW v8y1oOGQdaDXfEWmKxKsK0kGSqVBT4p9ZM1hekaqQ/3PN56royVfGbDh9a2MOaIQ 5bc5ZJL5+u8N/vfeRk1yvGfpdeO6C+YHZkE230Q/nS4bnXj/rOsz9BdXe/VuFzkS KgkmCJelVVZlxo8GZs0IJwZ83rIUuHTLb+8RNujC0hA139Y7aLhrpg/zGFHEb2xn bE12obIxoIxyHjotNH+iukbJ0WRIkdjdH9XnuZsI+OQ5vJFYqCtY9c2B+DOzIsEd 8RDhXhMCsuWBaYshuk6zMEe/WgCg4tI9ZROjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/lS22igCeWCDhM/jCaxKUm4xWFcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL19sUzIyaWdDZVdDRGhNX2pD YXhLVW00eFdGYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ6 ZEAwDQYJKoZIhvcNAQELBQADggEBAJ6v/Rxr2vNV4wh3ksvrolLjar1n4A+jl5iG PWuD1Lj2tS8j4QSJTH6ujTpv/R21jJc0twpL8jpWrIkSNcrxQWK9BBQM+pqrjXjS YoDWuamrekF3REzJI1MlUoN2c+4Wsc2GglQlCnfkTLOnrpkt/7hWHMGAPAeCTFFc 4p8hkt9Mzs0nmqKs/DgUS6FRc6fp4TLLXQ2jSadGAA/EFY+qJ0YgrIiQBoCdx1E3 VC1I5H2yAofF/cf+K+mikVdnvvm3V65Bk7W99CKLT3PhPbglbt1xRum6bHfEmJoT u91/ylYCJySRvI8g5Wdlq1D2FYAGsz8tPKW1ZFzTwfOAU5Gr0KA= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:05 2025 by rpki-client