$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dHVs6-1H71dprTWFYudkqp15uX8.roa File: dHVs6-1H71dprTWFYudkqp15uX8.roa (raw, json) Hash identifier: KsL7Y7886EJ/GiVhge4+jkRqXp/iVoU+F1vW/zu9ApQ= Subject key identifier: 74:75:6C:EB:ED:47:EF:57:69:AD:35:85:62:E7:64:AA:9D:79:B9:7F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 273F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dHVs6-1H71dprTWFYudkqp15uX8.roa Signing time: Fri 22 Aug 2025 08:43:42 +0000 ROA not before: Fri 22 Aug 2025 08:43:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 114.198.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10047 (0x273f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=74756CEBED47EF5769AD358562E764AA9D79B97F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:82:e0:d8:28:63:99:ba:d0:4c:a1:0f:69:d3: 16:10:35:1e:74:58:2f:b6:80:01:d8:43:71:93:03: 6a:62:53:85:14:57:0d:60:ab:0c:25:59:f1:5f:0b: 89:08:d2:df:12:1c:fe:80:71:cf:1a:58:77:32:91: e0:36:e2:10:ea:38:29:2f:22:f1:98:8b:f5:bd:c5: 66:07:d6:b8:bc:40:72:26:d0:29:29:1e:32:59:88: ff:19:3e:17:40:a2:d5:24:a2:a6:b1:f7:ab:01:cf: 41:be:98:52:a6:34:d5:9f:c0:c6:df:17:b3:6d:cd: 18:81:f8:28:89:c3:bf:6e:0b:ac:91:a9:11:c9:eb: e6:5f:e7:15:33:50:b0:2d:e2:1e:6d:46:b1:be:23: cb:9a:5c:ef:e6:8e:88:35:f6:0b:d6:2f:fd:82:6b: c0:03:5f:e8:cd:c3:b5:fd:67:f9:6c:a0:00:d2:11: 2a:27:c4:5b:f0:6a:f0:b5:21:41:59:29:1b:bf:b9: 87:a6:7f:fa:bc:aa:53:e8:a9:5c:bc:e7:e8:24:63: e8:4c:15:0e:c6:8b:22:c4:86:78:cc:c4:a5:8e:71: 85:df:77:68:61:aa:29:12:13:b6:8e:c5:d4:e0:26: 4d:2c:fd:96:c4:13:af:50:6e:09:0a:cb:e4:21:2b: 44:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:75:6C:EB:ED:47:EF:57:69:AD:35:85:62:E7:64:AA:9D:79:B9:7F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dHVs6-1H71dprTWFYudkqp15uX8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.160.0/20 Signature Algorithm: sha256WithRSAEncryption a0:62:38:68:5e:d2:4c:a9:f8:f3:de:b5:84:b5:c8:0b:76:66: 0f:67:b9:56:11:43:06:b6:d5:6a:f9:28:5a:3e:d4:ea:f2:76: d5:05:12:67:5d:dc:80:a2:82:77:48:5f:a9:f5:69:28:86:41: c0:d0:75:5a:51:0f:ba:cc:be:94:7b:04:35:21:43:c3:d9:52: a0:f1:94:37:e6:7c:6b:67:91:37:8e:d6:b5:d0:94:9f:76:83: c8:f2:3a:be:2c:9a:f5:7d:67:38:24:ed:04:f1:ad:1a:10:fb: 4a:59:c6:45:5f:b4:0e:d2:82:62:35:26:92:49:31:42:c1:c9: 4a:6c:60:48:b3:19:8f:4d:7a:c4:38:db:4c:34:e1:3c:13:c1: 74:08:39:59:c8:e2:42:4f:cd:9b:cd:70:a6:aa:e2:b4:ac:11: 0e:5e:cc:36:33:b9:55:00:dd:58:de:4f:6d:88:6f:58:1f:5d: a7:a0:7c:f0:cd:b8:9c:f0:9f:59:7f:7f:e6:c5:3c:34:04:13: dc:ff:c6:b9:10:87:23:67:5e:23:24:6e:44:00:fc:d6:28:cb: ac:dc:52:b4:d1:66:27:a2:19:62:3d:45:01:32:ce:63:56:e6: 98:ac:e0:b8:18:0f:89:12:bf:2a:4b:00:52:d0:98:40:06:ba: 28:a3:64:38 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJz8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzNDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc0NzU2Q0VCRUQ0N0VG NTc2OUFEMzU4NTYyRTc2NEFBOUQ3OUI5N0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsguDYKGOZutBMoQ9p0xYQNR50WC+2gAHYQ3GTA2piU4UUVw1g qwwlWfFfC4kI0t8SHP6Acc8aWHcykeA24hDqOCkvIvGYi/W9xWYH1ri8QHIm0Ckp HjJZiP8ZPhdAotUkoqax96sBz0G+mFKmNNWfwMbfF7NtzRiB+CiJw79uC6yRqRHJ 6+Zf5xUzULAt4h5tRrG+I8uaXO/mjog19gvWL/2Ca8ADX+jNw7X9Z/lsoADSESon xFvwavC1IUFZKRu/uYemf/q8qlPoqVy85+gkY+hMFQ7GiyLEhnjMxKWOcYXfd2hh qikSE7aOxdTgJk0s/ZbEE69QbgkKy+QhK0TpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdHVs6+1H71dprTWFYudkqp15uX8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2RIVnM2LTFINzFkcHJUV0ZZ dWRrcXAxNXVYOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy xqAwDQYJKoZIhvcNAQELBQADggEBAKBiOGhe0kyp+PPetYS1yAt2Zg9nuVYRQwa2 1Wr5KFo+1OrydtUFEmdd3ICigndIX6n1aSiGQcDQdVpRD7rMvpR7BDUhQ8PZUqDx lDfmfGtnkTeO1rXQlJ92g8jyOr4smvV9Zzgk7QTxrRoQ+0pZxkVftA7SgmI1JpJJ MULByUpsYEizGY9NesQ420w04TwTwXQIOVnI4kJPzZvNcKaq4rSsEQ5ezDYzuVUA 3VjeT22Ib1gfXaegfPDNuJzwn1l/f+bFPDQEE9z/xrkQhyNnXiMkbkQA/NYoy6zc UrTRZieiGWI9RQEyzmNW5pis4LgYD4kSvypLAFLQmEAGuiijZDg= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:34 2025 by rpki-client