$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aOo4fiPf2rmRBLDr99XZriPQ2UI.roa File: aOo4fiPf2rmRBLDr99XZriPQ2UI.roa (raw, json) Hash identifier: 1lZ1spjyxtSa4+Zpvg1YaEYKgt//YC+xX6DLgOsjE3Q= Subject key identifier: 68:EA:38:7E:23:DF:DA:B9:91:04:B0:EB:F7:D5:D9:AE:23:D0:D9:42 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 265B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aOo4fiPf2rmRBLDr99XZriPQ2UI.roa Signing time: Fri 22 Aug 2025 08:42:51 +0000 ROA not before: Fri 22 Aug 2025 08:42:51 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9819 (0x265b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=68EA387E23DFDAB99104B0EBF7D5D9AE23D0D942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:aa:36:72:d7:9d:8a:5a:b4:9f:18:10:a7: f5:5d:b7:86:2c:60:27:83:3d:0d:39:3c:86:e8:6e: 31:25:42:0d:2f:b7:10:cf:e7:c7:03:70:8c:3d:41: 37:4c:a2:c8:2d:ac:0a:cd:90:42:66:c4:03:85:25: 59:f5:e2:1c:ed:76:d1:8d:8e:c2:c4:ff:55:ae:ee: 71:f2:f6:23:4d:ee:f8:0b:9a:0b:27:04:85:31:f8: 44:40:4e:d9:a2:51:b9:3c:bd:fc:4f:56:83:9c:db: b4:aa:59:e7:e8:2a:bf:ee:da:33:58:e6:01:e1:62: 8d:c1:c3:45:f5:dd:21:39:cb:6c:40:9b:95:c6:ea: 2f:d9:1e:eb:e5:a6:07:b6:d6:e9:33:64:b8:36:fa: 2b:3c:cc:e6:4d:4f:62:4c:20:8d:72:3e:4c:6b:61: 5b:3b:ea:a3:a9:71:32:c0:ac:3f:05:5d:d2:e2:e5: 9f:ca:ca:f6:43:be:14:af:fb:a1:1e:93:69:54:be: 55:b7:71:c5:c3:1f:71:09:c0:13:9a:f9:01:3f:ba: 0a:82:cb:bc:c3:f1:d4:a7:80:cd:fd:d4:f2:a7:7b: 3f:4e:e1:7b:5d:07:7e:85:81:26:d4:47:3a:d2:ca: 5f:38:23:7e:74:eb:34:77:ab:91:c9:ae:3c:0b:9a: 20:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:EA:38:7E:23:DF:DA:B9:91:04:B0:EB:F7:D5:D9:AE:23:D0:D9:42 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aOo4fiPf2rmRBLDr99XZriPQ2UI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.56.0/21 Signature Algorithm: sha256WithRSAEncryption 5a:50:e6:e5:6d:7e:b4:83:c5:2d:96:b2:86:cf:a7:d8:ab:0e: 3c:1b:21:cb:61:49:6c:ab:3c:40:92:34:2c:d5:5b:01:e8:97: 5a:7b:1f:eb:81:8b:be:b3:a0:95:9a:f1:79:12:cb:3e:36:cc: 47:89:c4:2a:94:b2:94:7b:6b:4f:cd:6b:41:6b:cb:af:e8:4f: 98:39:f0:a3:d1:c7:da:70:86:d0:f7:61:85:16:89:76:d3:1e: f8:12:a1:ad:f2:a5:c5:b1:6a:e1:ba:92:da:ab:8a:6a:7e:85: 70:f2:ee:5b:6d:29:aa:06:2c:d2:28:bb:5a:5d:6f:e3:ae:74: 7f:e5:e3:24:61:91:39:a4:2e:02:21:6b:bf:9c:a9:c4:62:b3: 1a:b4:7d:ff:76:7e:6a:09:1b:0f:b7:8e:4a:e1:62:b0:26:e8: 94:70:b6:d3:fd:54:02:ba:fe:59:ec:53:7f:3a:99:37:43:9f: c5:3a:0c:74:84:97:9c:3e:56:ed:9e:b9:04:48:7b:b3:b3:eb: af:1b:4d:bf:1c:4d:cf:f5:ae:23:3f:79:bb:9d:e1:eb:9a:7b: 66:d9:2c:a2:49:a1:69:3a:36:fb:7c:56:15:ea:27:93:eb:5b: a5:22:c8:58:6b:fe:43:19:7b:a4:d5:29:cd:15:06:54:59:6f: 31:d2:82:0e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJlswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY4RUEzODdFMjNERkRB Qjk5MTA0QjBFQkY3RDVEOUFFMjNEMEQ5NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9/ao2ctedilq0nxgQp/Vdt4YsYCeDPQ05PIbobjElQg0vtxDP 58cDcIw9QTdMosgtrArNkEJmxAOFJVn14hztdtGNjsLE/1Wu7nHy9iNN7vgLmgsn BIUx+ERATtmiUbk8vfxPVoOc27SqWefoKr/u2jNY5gHhYo3Bw0X13SE5y2xAm5XG 6i/ZHuvlpge21ukzZLg2+is8zOZNT2JMII1yPkxrYVs76qOpcTLArD8FXdLi5Z/K yvZDvhSv+6Eek2lUvlW3ccXDH3EJwBOa+QE/ugqCy7zD8dSngM391PKnez9O4Xtd B36FgSbURzrSyl84I3506zR3q5HJrjwLmiDfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUaOo4fiPf2rmRBLDr99XZriPQ2UIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2FPbzRmaVBmMnJtUkJMRHI5 OVhacmlQUTJVSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2jgwDQYJKoZIhvcNAQELBQADggEBAFpQ5uVtfrSDxS2WsobPp9irDjwbIcthSWyr PECSNCzVWwHol1p7H+uBi76zoJWa8XkSyz42zEeJxCqUspR7a0/Na0Fry6/oT5g5 8KPRx9pwhtD3YYUWiXbTHvgSoa3ypcWxauG6ktqrimp+hXDy7lttKaoGLNIou1pd b+OudH/l4yRhkTmkLgIha7+cqcRisxq0ff92fmoJGw+3jkrhYrAm6JRwttP9VAK6 /lnsU386mTdDn8U6DHSEl5w+Vu2euQRIe7Oz668bTb8cTc/1riM/ebud4euae2bZ LKJJoWk6Nvt8VhXqJ5PrW6UiyFhr/kMZe6TVKc0VBlRZbzHSgg4= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:45 2025 by rpki-client