$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/f4SFK8FFZW_v65SXA_3WTm6nn7k.roa File: f4SFK8FFZW_v65SXA_3WTm6nn7k.roa (raw, json) Hash identifier: ZMpLBQ4yDLZxdcw3xluOoCk4XTd24B16bKFw58XumJ0= Subject key identifier: 7F:84:85:2B:C1:45:65:6F:EF:EB:94:97:03:FD:D6:4E:6E:A7:9F:B9 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26ED Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/f4SFK8FFZW_v65SXA_3WTm6nn7k.roa Signing time: Fri 22 Aug 2025 08:43:23 +0000 ROA not before: Fri 22 Aug 2025 08:43:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 61.58.96.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9965 (0x26ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7F84852BC145656FEFEB949703FDD64E6EA79FB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9f:8e:ef:ac:bd:10:d7:f0:b1:c8:d8:ef:f6: 5b:f6:f0:c3:14:f4:e6:96:0b:78:9e:4b:13:71:f3: be:55:0b:51:ab:ca:3e:7f:59:42:31:70:ef:e6:87: 38:bc:ac:e5:ec:a2:41:54:c2:83:67:29:94:7a:46: 9b:e2:3d:62:fb:91:63:91:32:ee:b6:ca:18:02:f4: 2b:fc:42:fa:ff:5c:81:7b:70:3d:f3:68:76:41:4e: ff:34:c8:f0:ec:89:3c:54:04:2b:99:18:60:f9:65: 02:28:b6:19:1b:6e:df:60:7d:f1:98:1e:bc:6e:f0: 84:be:e0:c7:e0:b8:60:cc:33:fe:d8:8b:80:8a:d8: 27:bd:09:ff:54:c1:38:c1:bd:52:2f:2b:5f:84:8c: 09:3b:a5:7b:04:ff:51:60:fe:08:4a:c4:ed:da:17: ce:44:c1:e6:77:9a:7b:f7:f5:2d:ae:34:13:9a:7e: 61:45:a2:ac:e9:3e:a6:f6:eb:42:cb:6a:e3:7e:65: ff:91:90:eb:d5:c3:4d:2b:34:5b:05:45:80:e5:1d: f5:88:f9:4e:cb:c5:d6:4d:e6:f5:9e:e9:88:4a:a5: 5e:6c:cf:c2:76:14:e4:18:25:c7:ef:e4:c8:7c:11: f5:ce:ee:10:67:b2:dd:09:1b:3e:80:7d:18:ab:54: 59:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:84:85:2B:C1:45:65:6F:EF:EB:94:97:03:FD:D6:4E:6E:A7:9F:B9 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/f4SFK8FFZW_v65SXA_3WTm6nn7k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.96.0/20 Signature Algorithm: sha256WithRSAEncryption 4b:66:db:a2:d0:cf:c6:11:ad:10:ae:7f:62:16:70:78:dd:bb: 74:47:5c:69:47:17:98:72:18:bc:76:c0:30:a8:39:23:54:d4: a8:aa:60:63:76:f5:02:8d:90:28:98:9d:39:a1:b2:b3:cb:8e: 49:54:d1:52:cc:55:c7:cd:30:b0:ef:f6:52:48:b2:55:83:95: 99:18:43:ac:6c:9f:d9:fa:7d:c3:e9:e7:53:cb:a5:c6:53:b8: 22:80:2f:ef:a1:cc:32:8d:26:38:18:74:9b:ad:1f:89:03:43: b5:bd:77:e9:02:82:ab:57:a9:8e:fc:bd:86:34:a1:d9:7e:a9: 2a:a2:07:fa:2c:af:7c:dc:b4:d2:c7:85:f2:e3:ed:e4:dd:f4: 8c:69:a6:7c:83:7e:bc:44:67:10:71:c0:2a:c9:e5:72:cf:8b: c9:5f:fb:26:ae:c3:e2:6f:84:a2:d9:ea:6e:14:d4:29:a4:b4: 2f:81:8e:05:97:e9:f0:35:93:bb:69:e3:56:e6:f0:b8:f0:ce: 4a:8b:9c:7a:18:af:e0:b5:b9:a1:04:13:ce:75:29:ff:f8:63: 6b:66:d1:7f:6a:a2:f8:6e:6a:5f:65:c6:e7:85:c3:9f:b3:6f: 8a:fe:d7:b0:23:41:f8:ac:85:f8:78:a3:ea:70:f8:2e:ac:4f: 99:66:da:74 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJu0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdGODQ4NTJCQzE0NTY1 NkZFRkVCOTQ5NzAzRkRENjRFNkVBNzlGQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCn47vrL0Q1/CxyNjv9lv28MMU9OaWC3ieSxNx875VC1Gryj5/ WUIxcO/mhzi8rOXsokFUwoNnKZR6RpviPWL7kWORMu62yhgC9Cv8Qvr/XIF7cD3z aHZBTv80yPDsiTxUBCuZGGD5ZQIothkbbt9gffGYHrxu8IS+4MfguGDMM/7Yi4CK 2Ce9Cf9UwTjBvVIvK1+EjAk7pXsE/1Fg/ghKxO3aF85EweZ3mnv39S2uNBOafmFF oqzpPqb260LLauN+Zf+RkOvVw00rNFsFRYDlHfWI+U7LxdZN5vWe6YhKpV5sz8J2 FOQYJcfv5Mh8EfXO7hBnst0JGz6AfRirVFmxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUf4SFK8FFZW/v65SXA/3WTm6nn7kwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2Y0U0ZLOEZGWldfdjY1U1hB XzNXVG02bm43ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OmAwDQYJKoZIhvcNAQELBQADggEBAEtm26LQz8YRrRCuf2IWcHjdu3RHXGlHF5hy GLx2wDCoOSNU1KiqYGN29QKNkCiYnTmhsrPLjklU0VLMVcfNMLDv9lJIslWDlZkY Q6xsn9n6fcPp51PLpcZTuCKAL++hzDKNJjgYdJutH4kDQ7W9d+kCgqtXqY78vYY0 odl+qSqiB/osr3zctNLHhfLj7eTd9IxppnyDfrxEZxBxwCrJ5XLPi8lf+yauw+Jv hKLZ6m4U1CmktC+BjgWX6fA1k7tp41bm8LjwzkqLnHoYr+C1uaEEE851Kf/4Y2tm 0X9qovhual9lxueFw5+zb4r+17AjQfishfh4o+pw+C6sT5lm2nQ= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:31 2025 by rpki-client