$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dg1b5swDdTwpoyaiznpjSJGc4DI.roa File: dg1b5swDdTwpoyaiznpjSJGc4DI.roa (raw, json) Hash identifier: 8BuC/N9UjLunwmRqnWZ0HPEBLCNQJ72Uw5Gfvd1GPQ4= Subject key identifier: 76:0D:5B:E6:CC:03:75:3C:29:A3:26:A2:CE:7A:63:48:91:9C:E0:32 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2601 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dg1b5swDdTwpoyaiznpjSJGc4DI.roa Signing time: Fri 22 Aug 2025 08:42:29 +0000 ROA not before: Fri 22 Aug 2025 08:42:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9729 (0x2601) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=760D5BE6CC03753C29A326A2CE7A6348919CE032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:60:33:9f:ee:f5:77:f0:bb:53:5a:eb:94:69: dd:52:90:cd:2f:72:4f:8e:36:80:d4:47:16:52:67: 4f:a7:fd:e9:77:59:c0:70:12:e5:94:4f:dd:b1:9e: 1f:09:bc:60:7d:14:a9:28:72:54:59:8b:96:d6:ae: 0c:82:58:39:97:62:ac:b1:04:34:d8:4b:f6:f2:f4: 7c:5c:a5:af:f7:e5:de:6e:e6:e9:b2:17:53:5d:a6: 1a:31:17:c2:49:f6:f3:00:24:36:42:c3:73:d6:50: 76:91:9f:66:7d:b3:a4:1d:8c:ee:34:b7:10:8c:43: f8:70:d0:63:6d:86:04:39:2e:7a:c3:ba:42:9c:36: ac:ae:21:5a:a9:af:f0:df:35:06:c9:1a:05:7f:d4: df:61:22:45:5c:7d:b1:d1:0a:e1:fd:57:d6:e4:64: 70:8b:fe:13:d9:a4:f7:76:b6:2b:c4:df:a9:6b:65: 32:d6:d1:dd:8b:4e:38:47:bf:64:ed:7f:ba:b7:af: d1:be:dd:8b:0d:f5:a9:86:e3:2e:e9:02:5c:b4:de: e7:f6:c8:92:d4:d8:7f:25:bd:4e:d8:95:9d:4f:a6: cc:8b:9d:1b:e4:14:fa:69:59:f5:64:c1:aa:e4:df: a7:01:1e:cf:8a:00:db:57:ea:ea:a8:29:99:d0:8e: b9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:0D:5B:E6:CC:03:75:3C:29:A3:26:A2:CE:7A:63:48:91:9C:E0:32 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dg1b5swDdTwpoyaiznpjSJGc4DI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.176.0/22 Signature Algorithm: sha256WithRSAEncryption 60:61:d5:de:0d:98:e7:d3:0f:db:d2:93:ff:41:a4:de:60:f9: d0:b5:9e:b5:51:cb:94:7a:5e:85:a9:97:06:62:26:ed:19:ea: 6e:fd:d0:d1:cf:2f:2d:ec:b3:9b:30:79:72:7a:af:04:9d:5d: 43:01:f8:66:10:ac:8b:d5:ea:55:70:b6:88:68:6d:a3:13:ba: d6:91:da:88:01:66:55:9c:83:63:62:6c:ef:57:0d:5a:2f:8d: 73:cb:98:72:d1:c7:a8:a4:dc:a2:c7:e8:9d:6c:85:6f:25:c3: 8e:b0:59:2e:72:85:a0:2c:6c:96:e2:14:58:e7:46:19:0b:c6: 26:c3:e5:5e:39:fe:c1:31:be:44:91:43:26:56:f2:4f:2c:16: da:26:90:ba:5e:ef:0c:8d:55:ad:6c:94:9c:fe:18:ed:99:94: 84:7e:7d:7f:27:c5:0b:c6:90:69:53:12:b0:69:99:d4:b0:89: 2d:30:5d:cd:11:d7:36:2d:4f:7e:8d:8b:e0:69:a4:c1:6f:45: 2d:a2:8d:8e:5b:da:8e:f9:4e:70:7a:18:ab:d3:a4:98:36:8f: 6f:87:a9:30:8f:5f:6a:3f:7e:22:74:af:88:a4:d6:c8:7f:aa: 00:ef:20:7b:2d:8f:5b:99:99:1a:94:6a:2a:4e:73:00:37:4a: 1e:41:f5:23 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJgEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc2MEQ1QkU2Q0MwMzc1 M0MyOUEzMjZBMkNFN0E2MzQ4OTE5Q0UwMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtYDOf7vV38LtTWuuUad1SkM0vck+ONoDURxZSZ0+n/el3WcBw EuWUT92xnh8JvGB9FKkoclRZi5bWrgyCWDmXYqyxBDTYS/by9Hxcpa/35d5u5umy F1NdphoxF8JJ9vMAJDZCw3PWUHaRn2Z9s6QdjO40txCMQ/hw0GNthgQ5LnrDukKc NqyuIVqpr/DfNQbJGgV/1N9hIkVcfbHRCuH9V9bkZHCL/hPZpPd2tivE36lrZTLW 0d2LTjhHv2Ttf7q3r9G+3YsN9amG4y7pAly03uf2yJLU2H8lvU7YlZ1PpsyLnRvk FPppWfVkwark36cBHs+KANtX6uqoKZnQjrnpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdg1b5swDdTwpoyaiznpjSJGc4DIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2RnMWI1c3dEZFR3cG95YWl6 bnBqU0pHYzRESS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2rAwDQYJKoZIhvcNAQELBQADggEBAGBh1d4NmOfTD9vSk/9BpN5g+dC1nrVRy5R6 XoWplwZiJu0Z6m790NHPLy3ss5sweXJ6rwSdXUMB+GYQrIvV6lVwtohobaMTutaR 2ogBZlWcg2NibO9XDVovjXPLmHLRx6ik3KLH6J1shW8lw46wWS5yhaAsbJbiFFjn RhkLxibD5V45/sExvkSRQyZW8k8sFtomkLpe7wyNVa1slJz+GO2ZlIR+fX8nxQvG kGlTErBpmdSwiS0wXc0R1zYtT36Ni+BppMFvRS2ijY5b2o75TnB6GKvTpJg2j2+H qTCPX2o/fiJ0r4ik1sh/qgDvIHstj1uZmRqUaipOcwA3Sh5B9SM= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:33 2025 by rpki-client