$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gmtXOJNOvckEV9BgeSLaOEIvV9c.roa File: gmtXOJNOvckEV9BgeSLaOEIvV9c.roa (raw, json) Hash identifier: cNed5XOtw3OfZmwF+khPmQJgjr+/Wp27ezlClbNy1bM= Subject key identifier: 82:6B:57:38:93:4E:BD:C9:04:57:D0:60:79:22:DA:38:42:2F:57:D7 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 272B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gmtXOJNOvckEV9BgeSLaOEIvV9c.roa Signing time: Fri 22 Aug 2025 08:43:37 +0000 ROA not before: Fri 22 Aug 2025 08:43:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 122.254.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10027 (0x272b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=826B5738934EBDC90457D0607922DA38422F57D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a8:3b:a0:33:7a:d8:74:a5:a9:c0:de:da:6a: 2e:4e:08:39:70:29:c9:e4:dc:fb:1a:7b:c9:36:7b: 15:e0:2c:a7:78:70:ed:fd:e2:07:60:e9:44:1c:af: bc:83:b4:77:3c:2e:59:35:d5:63:b7:2d:cf:31:4a: aa:d7:6f:5a:ac:de:b0:c4:3a:d5:73:9b:ef:cc:35: 9a:f7:4e:a4:39:66:a3:16:a1:72:66:6c:4b:8c:1a: 59:e6:7e:74:74:83:6c:1c:a5:43:e2:76:13:84:8d: 54:ec:6d:65:b4:b4:0b:65:fd:0e:63:26:46:f5:c1: 6e:f7:63:b2:b8:ad:80:6a:74:0e:86:38:3e:ac:45: 20:1d:76:8c:8f:3a:a7:0a:5d:f0:8e:ea:20:f2:2d: 3b:de:09:89:c8:02:a5:82:54:35:0b:1a:87:41:a0: 4c:6c:77:1d:a9:f0:7f:79:c8:ae:da:30:dd:4d:31: 18:35:e2:9c:60:dc:d2:aa:5d:94:eb:77:92:02:0f: 44:5e:fe:f8:08:45:04:87:a0:a2:d9:0b:e0:92:30: 9c:3b:11:bf:04:1a:52:5d:60:00:d3:ff:10:8a:f4: 6e:b4:61:58:8b:59:2b:46:da:31:59:3e:90:8a:61: 23:d7:5b:b2:af:73:ba:4e:8c:60:d5:6c:6f:07:bd: f2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:6B:57:38:93:4E:BD:C9:04:57:D0:60:79:22:DA:38:42:2F:57:D7 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gmtXOJNOvckEV9BgeSLaOEIvV9c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.48.0/21 Signature Algorithm: sha256WithRSAEncryption 59:c8:c9:e8:96:cb:06:69:9f:00:df:0e:22:9c:9a:1e:21:f6: 88:81:6d:88:ef:09:de:c9:fc:00:2c:f7:8d:3e:74:f0:61:3e: 72:dd:e8:74:36:75:5a:c2:1f:25:f9:d0:35:d8:1e:0e:9d:64: 3f:e8:6a:1a:aa:64:cc:5e:78:d4:a3:25:f3:41:db:16:24:7b: aa:3a:ce:8a:0a:92:87:eb:3f:c1:14:0d:fe:ad:49:9a:a6:55: e5:e7:cc:e9:6a:6f:fd:ff:d7:8b:b8:dc:4c:35:9a:2e:04:71: 83:e6:ae:09:4b:5e:71:01:bc:37:3f:39:ca:a3:84:1a:73:ad: fb:36:3b:64:9a:51:fa:87:02:9d:16:72:d9:cb:87:f9:0c:bf: c4:be:14:e6:88:53:a3:c2:ef:de:2a:82:64:e5:fb:3f:a3:12: 05:0e:1d:98:5f:bf:f4:10:3b:aa:e4:ed:04:0c:e8:35:6b:cd: 5c:ba:fd:f9:84:04:d5:31:a5:d2:8e:21:1f:83:93:a2:98:d9: 9d:65:bc:01:5b:3f:15:55:f4:3e:df:01:9e:2f:c0:c1:a5:34: fd:6d:aa:7c:f5:a3:85:5f:f2:c2:e6:eb:3b:7e:72:13:74:24: eb:a3:15:fb:20:77:ff:fd:33:60:0c:c2:14:ea:e1:62:8b:14: 08:bc:fc:c1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJyswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgyNkI1NzM4OTM0RUJE QzkwNDU3RDA2MDc5MjJEQTM4NDIyRjU3RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbqDugM3rYdKWpwN7aai5OCDlwKcnk3Psae8k2exXgLKd4cO39 4gdg6UQcr7yDtHc8Llk11WO3Lc8xSqrXb1qs3rDEOtVzm+/MNZr3TqQ5ZqMWoXJm bEuMGlnmfnR0g2wcpUPidhOEjVTsbWW0tAtl/Q5jJkb1wW73Y7K4rYBqdA6GOD6s RSAddoyPOqcKXfCO6iDyLTveCYnIAqWCVDULGodBoExsdx2p8H95yK7aMN1NMRg1 4pxg3NKqXZTrd5ICD0Re/vgIRQSHoKLZC+CSMJw7Eb8EGlJdYADT/xCK9G60YViL WStG2jFZPpCKYSPXW7Kvc7pOjGDVbG8HvfJdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUgmtXOJNOvckEV9BgeSLaOEIvV9cwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2dtdFhPSk5PdmNrRVY5Qmdl U0xhT0VJdlY5Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 /jAwDQYJKoZIhvcNAQELBQADggEBAFnIyeiWywZpnwDfDiKcmh4h9oiBbYjvCd7J /AAs940+dPBhPnLd6HQ2dVrCHyX50DXYHg6dZD/oahqqZMxeeNSjJfNB2xYke6o6 zooKkofrP8EUDf6tSZqmVeXnzOlqb/3/14u43Ew1mi4EcYPmrglLXnEBvDc/Ocqj hBpzrfs2O2SaUfqHAp0WctnLh/kMv8S+FOaIU6PC794qgmTl+z+jEgUOHZhfv/QQ O6rk7QQM6DVrzVy6/fmEBNUxpdKOIR+Dk6KY2Z1lvAFbPxVV9D7fAZ4vwMGlNP1t qnz1o4Vf8sLm6zt+chN0JOujFfsgd//9M2AMwhTq4WKLFAi8/ME= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:45 2025 by rpki-client