$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aXwDbXBrIHcBeTwfvq_oyuA5V4s.roa File: aXwDbXBrIHcBeTwfvq_oyuA5V4s.roa (raw, json) Hash identifier: bjdMlW6WzfRgPGlp3bm7pTR8ElQZaP7jmS3XSsaDLa4= Subject key identifier: 69:7C:03:6D:70:6B:20:77:01:79:3C:1F:BE:AF:E8:CA:E0:39:57:8B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 267B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aXwDbXBrIHcBeTwfvq_oyuA5V4s.roa Signing time: Fri 22 Aug 2025 08:42:58 +0000 ROA not before: Fri 22 Aug 2025 08:42:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 119.77.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9851 (0x267b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=697C036D706B207701793C1FBEAFE8CAE039578B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e4:06:2e:44:90:4e:82:4a:42:a3:91:06:dd: 51:20:fe:e3:80:57:e3:23:14:58:50:2c:cf:3c:3e: 03:c3:a6:49:f7:36:00:88:70:f8:25:5d:43:cf:a0: c0:e0:25:65:00:c3:eb:0f:b3:bb:1e:72:72:24:c3: 69:1a:f7:fa:c7:8b:c6:d6:d7:b5:f2:ff:61:a7:9e: 8d:26:11:24:a0:c4:2f:23:68:5a:0a:4c:98:5f:d2: 51:8d:36:90:1f:75:29:00:af:90:73:9c:7d:cb:06: 7e:bc:e4:0a:91:d0:5a:f5:b5:10:f8:6e:d5:d4:85: c7:3a:fc:f7:d1:93:1b:9f:db:2e:fe:37:96:1d:9a: 99:48:37:7f:56:57:85:7e:50:cd:be:07:9b:eb:b6: 71:2d:fe:2a:a0:ba:61:43:b0:14:e7:a3:9a:f9:c2: d0:95:72:40:17:8b:ca:26:03:14:33:13:a7:a4:d7: 13:4d:09:82:cb:9f:0e:ec:e9:b9:9d:89:cf:6c:a5: 59:bb:7c:a3:64:7f:6b:9c:c3:61:8c:86:05:9f:b0: 1d:af:18:22:92:18:bc:e9:0e:a7:9c:f6:92:51:bd: f8:a1:26:f0:9e:af:f7:88:b9:56:59:35:09:1b:e6: 0c:33:0c:5e:cc:5c:39:c1:ae:53:37:31:2c:1f:a1: 70:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:7C:03:6D:70:6B:20:77:01:79:3C:1F:BE:AF:E8:CA:E0:39:57:8B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aXwDbXBrIHcBeTwfvq_oyuA5V4s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.132.0/22 Signature Algorithm: sha256WithRSAEncryption 49:eb:89:50:64:2b:72:b9:fd:a1:8e:2b:7f:54:5f:74:ea:ec: 28:25:ec:10:2c:6f:c5:b9:ab:5a:b5:1f:e9:74:c4:05:2a:33: 49:0c:94:30:a4:f7:a1:b2:17:d6:a5:16:bd:a9:b1:8c:16:0a: d1:97:67:be:9a:8f:18:6c:80:9b:39:57:36:d4:00:59:4e:35: bd:9a:8a:27:17:9d:7e:01:1c:ad:17:f1:ff:d1:58:9d:b7:10: b8:cc:39:d8:6c:49:43:a1:ce:05:34:62:7c:84:11:2b:ed:9c: e8:08:81:7c:1d:ba:6b:47:ca:57:35:c5:30:5d:b1:ca:8f:2e: dc:19:06:9c:e5:19:40:e7:a7:c6:64:1c:ba:e2:85:be:86:d3: f0:01:59:a5:fd:ae:f8:b2:2e:56:14:ed:02:5a:e3:d1:06:dd: 6d:1f:06:8e:2c:4f:2b:6d:0d:40:de:02:ae:e6:47:e8:4c:1c: f8:f6:40:71:e7:8f:ef:04:73:77:da:ec:db:08:a9:70:db:9e: fb:c1:3d:36:39:2e:46:81:31:72:48:85:d6:a7:47:e7:c4:c2: 2b:2c:fa:c6:1a:bc:f9:11:b2:98:e6:4b:60:dd:4c:cb:ec:f0: f1:5d:34:76:2e:b0:b8:fb:15:90:67:28:8a:57:dd:1a:47:41: f8:c6:82:5a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJnswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY5N0MwMzZENzA2QjIw NzcwMTc5M0MxRkJFQUZFOENBRTAzOTU3OEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR5AYuRJBOgkpCo5EG3VEg/uOAV+MjFFhQLM88PgPDpkn3NgCI cPglXUPPoMDgJWUAw+sPs7secnIkw2ka9/rHi8bW17Xy/2Gnno0mESSgxC8jaFoK TJhf0lGNNpAfdSkAr5BznH3LBn685AqR0Fr1tRD4btXUhcc6/PfRkxuf2y7+N5Yd mplIN39WV4V+UM2+B5vrtnEt/iqgumFDsBTno5r5wtCVckAXi8omAxQzE6ek1xNN CYLLnw7s6bmdic9spVm7fKNkf2ucw2GMhgWfsB2vGCKSGLzpDqec9pJRvfihJvCe r/eIuVZZNQkb5gwzDF7MXDnBrlM3MSwfoXAzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUaXwDbXBrIHcBeTwfvq/oyuA5V4swHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2FYd0RiWEJySUhjQmVUd2Z2 cV9veXVBNVY0cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ3 TYQwDQYJKoZIhvcNAQELBQADggEBAEnriVBkK3K5/aGOK39UX3Tq7Cgl7BAsb8W5 q1q1H+l0xAUqM0kMlDCk96GyF9alFr2psYwWCtGXZ76ajxhsgJs5VzbUAFlONb2a iicXnX4BHK0X8f/RWJ23ELjMOdhsSUOhzgU0YnyEESvtnOgIgXwdumtHylc1xTBd scqPLtwZBpzlGUDnp8ZkHLrihb6G0/ABWaX9rviyLlYU7QJa49EG3W0fBo4sTytt DUDeAq7mR+hMHPj2QHHnj+8Ec3fa7NsIqXDbnvvBPTY5LkaBMXJIhdanR+fEwiss +sYavPkRspjmS2DdTMvs8PFdNHYusLj7FZBnKIpX3RpHQfjGglo= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:37 2025 by rpki-client