$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bi3KP1X0XwgOkXEzH-mFWVjgMxY.roa File: bi3KP1X0XwgOkXEzH-mFWVjgMxY.roa (raw, json) Hash identifier: YuYnsYZPNrxvr/bCMAnc1sWvFUwDpapmbikzWi72nho= Subject key identifier: 6E:2D:CA:3F:55:F4:5F:08:0E:91:71:33:1F:E9:85:59:58:E0:33:16 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26B5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bi3KP1X0XwgOkXEzH-mFWVjgMxY.roa Signing time: Fri 22 Aug 2025 08:43:10 +0000 ROA not before: Fri 22 Aug 2025 08:43:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 61.61.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9909 (0x26b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6E2DCA3F55F45F080E9171331FE9855958E03316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:29:3c:94:2a:94:e6:54:d1:f5:3c:2d:5c:38: 4b:bc:e3:9c:a7:c4:36:53:16:ab:a3:8a:be:df:81: 3f:43:19:39:48:6d:ea:18:7a:67:ae:bd:01:b4:a7: 89:e0:99:21:ac:a0:68:b4:45:d4:2c:ea:c3:3a:46: 6b:fe:f0:5c:cb:74:61:d6:31:89:47:fa:e7:80:77: 3f:3d:95:bc:d8:4e:94:67:da:7a:92:84:b0:3e:c8: 5c:5a:b7:b7:a8:10:86:f4:c9:06:0e:c3:7b:37:b8: 9f:d8:2e:38:1c:d4:82:8c:43:86:16:68:93:e3:1e: 18:e8:a9:d0:54:e9:12:90:c5:d1:43:c5:f5:37:01: 46:90:09:ee:20:df:15:4e:a9:33:f2:be:f5:1f:65: 9c:8d:12:ca:50:ca:e6:15:a2:2f:a0:c8:61:ae:d8: b9:97:99:e7:19:43:26:10:46:2c:cd:01:15:1f:ea: ec:c3:71:b8:53:63:fb:30:a2:52:60:09:89:f0:7e: c8:72:60:45:3f:e8:6d:91:6a:75:cc:97:26:ae:6e: 70:87:e2:4c:1b:01:a1:4b:b4:a9:c0:d3:02:d5:8d: 78:37:19:c1:28:b3:34:b1:fc:f0:ce:15:c0:7c:ff: 08:65:d9:72:47:60:ff:c8:9e:c0:14:bf:ef:09:5d: e9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:2D:CA:3F:55:F4:5F:08:0E:91:71:33:1F:E9:85:59:58:E0:33:16 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bi3KP1X0XwgOkXEzH-mFWVjgMxY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.208.0/20 Signature Algorithm: sha256WithRSAEncryption 9e:ec:12:d9:5f:52:2e:a7:0c:ab:0a:05:53:89:50:a2:93:6a: 48:a2:e9:e8:eb:7e:86:b1:e8:54:33:17:0d:5e:ea:e8:34:81: 93:0a:21:0c:b7:b6:97:0a:82:db:1c:9f:93:37:4b:df:4c:f3: 68:74:4a:ac:42:dd:9d:32:39:20:70:81:b4:dc:df:29:f7:37: 4c:7d:b4:29:fe:f3:00:06:83:4a:4c:db:f3:38:07:07:7c:00: 90:61:0e:a9:f3:28:4f:c0:e3:c0:4b:59:41:01:1d:55:6b:31: ca:ff:2a:6b:73:80:81:31:2a:29:9d:e3:15:9b:cc:a2:8b:6a: 10:3f:42:a2:49:bc:ab:84:43:cf:03:a3:bf:7b:ff:c2:6c:3c: 06:b0:d8:11:3a:e8:08:48:ca:f8:3c:23:92:f4:c0:68:e2:c0: a9:23:e7:c9:09:9d:f6:34:bc:96:de:ea:f1:0a:2a:23:e1:cd: af:81:1e:4c:36:f0:12:32:54:c9:91:55:8c:e8:87:4f:70:55: dc:ac:fe:7f:52:d5:e8:29:6a:71:7e:b7:9b:f7:e3:3b:52:d4: f9:ec:27:8d:81:b8:ee:30:a6:92:42:ae:7d:d6:c0:09:8f:68: ed:83:9b:88:78:6d:a9:1f:df:bb:58:78:28:11:16:cb:b0:1c: 37:fc:53:2b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJrUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZFMkRDQTNGNTVGNDVG MDgwRTkxNzEzMzFGRTk4NTU5NThFMDMzMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnKTyUKpTmVNH1PC1cOEu845ynxDZTFqujir7fgT9DGTlIbeoY emeuvQG0p4ngmSGsoGi0RdQs6sM6Rmv+8FzLdGHWMYlH+ueAdz89lbzYTpRn2nqS hLA+yFxat7eoEIb0yQYOw3s3uJ/YLjgc1IKMQ4YWaJPjHhjoqdBU6RKQxdFDxfU3 AUaQCe4g3xVOqTPyvvUfZZyNEspQyuYVoi+gyGGu2LmXmecZQyYQRizNARUf6uzD cbhTY/swolJgCYnwfshyYEU/6G2RanXMlyaubnCH4kwbAaFLtKnA0wLVjXg3GcEo szSx/PDOFcB8/whl2XJHYP/InsAUv+8JXenLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbi3KP1X0XwgOkXEzH+mFWVjgMxYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2JpM0tQMVgwWHdnT2tYRXpI LW1GV1ZqZ014WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 PdAwDQYJKoZIhvcNAQELBQADggEBAJ7sEtlfUi6nDKsKBVOJUKKTakii6ejrfoax 6FQzFw1e6ug0gZMKIQy3tpcKgtscn5M3S99M82h0SqxC3Z0yOSBwgbTc3yn3N0x9 tCn+8wAGg0pM2/M4Bwd8AJBhDqnzKE/A48BLWUEBHVVrMcr/KmtzgIExKimd4xWb zKKLahA/QqJJvKuEQ88Do797/8JsPAaw2BE66AhIyvg8I5L0wGjiwKkj58kJnfY0 vJbe6vEKKiPhza+BHkw28BIyVMmRVYzoh09wVdys/n9S1egpanF+t5v34ztS1Pns J42BuO4wppJCrn3WwAmPaO2Dm4h4bakf37tYeCgRFsuwHDf8Uys= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:15 2025 by rpki-client