$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dLSbsWQQjvvKDjSJ-FeocBBK9-I.roa File: dLSbsWQQjvvKDjSJ-FeocBBK9-I.roa (raw, json) Hash identifier: yAi5TYZqTGZXihpz2eZ/eS/a39ZTMGkCK4ntVj9i+oU= Subject key identifier: 74:B4:9B:B1:64:10:8E:FB:CA:0E:34:89:F8:57:A8:70:10:4A:F7:E2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2625 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dLSbsWQQjvvKDjSJ-FeocBBK9-I.roa Signing time: Fri 22 Aug 2025 08:42:38 +0000 ROA not before: Fri 22 Aug 2025 08:42:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 61.61.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9765 (0x2625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=74B49BB164108EFBCA0E3489F857A870104AF7E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fd:22:ca:71:8d:7a:63:bf:ae:fe:38:73:d8: 69:5a:f9:d0:9d:06:8c:4b:7a:34:6d:ac:22:11:ba: 19:78:50:ff:01:de:ae:05:73:6f:7e:3e:91:2f:ec: e6:91:7d:0a:6b:5f:6c:c9:65:a1:bc:78:e9:9a:b1: 04:df:51:c6:88:92:e2:f0:23:39:7a:53:a3:55:5c: 06:ce:75:af:65:05:f4:5b:b4:4e:d2:2f:da:f9:98: 21:69:1c:df:20:78:6c:28:85:99:f2:3a:3b:85:ad: bf:40:99:9e:37:65:32:b7:34:c9:c9:66:f1:b8:b8: e5:ea:9a:bd:be:e6:ce:4b:b3:c5:bf:0a:19:ae:f3: d7:eb:22:88:5a:a2:0f:16:d7:98:35:82:67:39:39: dd:3c:e3:71:2a:ba:d7:64:94:40:ea:e3:4f:e6:dd: bc:35:97:38:6c:a6:f4:1d:58:66:8c:c4:d4:a2:a9: e4:15:79:28:1c:c8:cc:24:c7:13:68:3e:97:9a:98: 47:88:68:2b:1d:28:de:2e:6e:33:57:3e:19:a6:0f: 1c:48:14:51:3d:04:c8:bb:67:08:40:2d:bf:ac:a8: c8:7c:6e:2a:de:9e:d5:9d:6a:85:53:fe:fd:7e:69: a7:8d:86:fc:55:49:b7:cf:0e:08:d4:b4:87:07:d2: 0e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B4:9B:B1:64:10:8E:FB:CA:0E:34:89:F8:57:A8:70:10:4A:F7:E2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dLSbsWQQjvvKDjSJ-FeocBBK9-I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.208.0/21 Signature Algorithm: sha256WithRSAEncryption 4c:bf:d8:07:bf:3e:2f:c5:c7:e9:a5:0a:6e:ce:aa:9e:ca:c0: 1b:92:6c:97:c4:95:d9:e4:6a:e0:32:2e:5e:73:49:5d:c6:a6: a2:d1:42:71:d7:b4:a9:22:03:95:d5:66:a8:e5:64:94:3b:a7: 38:36:97:fe:c9:d8:bc:7b:d7:06:83:fd:ed:2c:04:b3:a4:b0: 92:60:09:0c:3b:c8:3b:de:9b:89:19:59:20:71:61:60:3a:e6: d3:29:17:b2:60:a2:64:19:36:68:5e:28:b2:b5:a4:08:74:a1: c6:15:c3:e7:f0:41:ff:cc:53:ab:39:8c:5a:a2:76:87:34:a5: e5:95:b4:8e:98:5f:17:e1:bc:1f:01:b4:ad:31:6d:a9:83:b1: 08:dc:ba:c7:9f:bd:c1:a0:85:76:b3:49:c8:24:6c:c4:ad:29: a2:a6:6c:81:3e:2d:b9:17:80:d4:32:f8:36:45:e5:46:45:df: 21:6a:4d:de:0b:93:99:19:3a:c9:39:f2:84:58:ff:c8:40:f4: 8b:ac:46:d5:30:68:5f:fb:4b:7f:08:91:43:3f:bb:bc:9f:01: 8c:c3:a1:45:b2:11:57:b1:b3:bc:dc:fb:da:3c:97:e2:d3:cb: 4b:e7:e0:df:66:ee:8d:0a:21:f1:57:e9:dd:e3:64:a1:cb:61: 9a:e2:50:f5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc0QjQ5QkIxNjQxMDhF RkJDQTBFMzQ4OUY4NTdBODcwMTA0QUY3RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCd/SLKcY16Y7+u/jhz2Gla+dCdBoxLejRtrCIRuhl4UP8B3q4F c29+PpEv7OaRfQprX2zJZaG8eOmasQTfUcaIkuLwIzl6U6NVXAbOda9lBfRbtE7S L9r5mCFpHN8geGwohZnyOjuFrb9AmZ43ZTK3NMnJZvG4uOXqmr2+5s5Ls8W/Chmu 89frIohaog8W15g1gmc5Od0843EqutdklEDq40/m3bw1lzhspvQdWGaMxNSiqeQV eSgcyMwkxxNoPpeamEeIaCsdKN4ubjNXPhmmDxxIFFE9BMi7ZwhALb+sqMh8bire ntWdaoVT/v1+aaeNhvxVSbfPDgjUtIcH0g71AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdLSbsWQQjvvKDjSJ+FeocBBK9+IwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2RMU2JzV1FRanZ2S0RqU0ot RmVvY0JCSzktSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 PdAwDQYJKoZIhvcNAQELBQADggEBAEy/2Ae/Pi/Fx+mlCm7Oqp7KwBuSbJfEldnk auAyLl5zSV3GpqLRQnHXtKkiA5XVZqjlZJQ7pzg2l/7J2Lx71waD/e0sBLOksJJg CQw7yDvem4kZWSBxYWA65tMpF7JgomQZNmheKLK1pAh0ocYVw+fwQf/MU6s5jFqi doc0peWVtI6YXxfhvB8BtK0xbamDsQjcusefvcGghXazScgkbMStKaKmbIE+LbkX gNQy+DZF5UZF3yFqTd4Lk5kZOsk58oRY/8hA9IusRtUwaF/7S38IkUM/u7yfAYzD oUWyEVexs7zc+9o8l+LTy0vn4N9m7o0KIfFX6d3jZKHLYZriUPU= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:07 2025 by rpki-client