$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iVPfqKhFWig9whHGjGnZWWqErnA.roa File: iVPfqKhFWig9whHGjGnZWWqErnA.roa (raw, json) Hash identifier: NjpAb48RPMW9uOtlO9dgTrbONJIMr4PpI/AY9I3Y1nA= Subject key identifier: 89:53:DF:A8:A8:45:5A:28:3D:C2:11:C6:8C:69:D9:59:6A:84:AE:70 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 273C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iVPfqKhFWig9whHGjGnZWWqErnA.roa Signing time: Fri 22 Aug 2025 08:43:41 +0000 ROA not before: Fri 22 Aug 2025 08:43:41 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 61.60.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10044 (0x273c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:41 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8953DFA8A8455A283DC211C68C69D9596A84AE70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:59:f4:b8:93:39:b5:65:9b:73:98:d5:7f:0c: 43:dc:8a:3f:66:0b:d5:0e:b7:8e:6d:b6:01:f7:b6: c5:06:25:31:7d:d5:27:11:19:fa:dc:c0:40:71:1a: f0:f4:38:82:7e:7a:13:2f:00:38:f6:0a:4d:9b:0b: b9:d2:dd:49:74:55:be:3d:56:80:92:06:0e:d0:bd: bc:2f:7e:8d:b8:4d:80:9a:50:c2:91:e7:58:77:ff: 06:3a:25:48:ed:b2:d8:91:4c:a4:d7:8f:40:09:fe: 9d:ed:e4:75:93:47:48:02:56:ba:9d:73:b6:94:f6: d7:1d:eb:b9:c2:9b:57:55:82:ad:9f:8a:c3:5c:36: 71:b7:b6:72:66:f4:93:27:3f:40:21:79:e0:b0:84: 48:0e:0f:3f:02:88:79:27:2c:1d:96:c9:93:3f:68: b8:5d:52:9b:c3:57:c8:0e:53:19:0b:39:aa:83:f4: 77:27:74:3f:9c:33:6d:39:78:92:6b:35:a1:f4:bf: fd:58:73:86:e1:0a:4a:e8:fe:64:a5:46:94:d5:86: 42:6b:b4:ae:7b:39:b8:03:a7:99:e2:36:f7:f1:c2: 13:2b:0a:59:7b:c1:ea:cf:ad:29:ce:3a:74:f0:ab: 04:4b:b9:c1:c1:ef:c7:b9:09:72:5b:23:9e:ff:41: 6c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:53:DF:A8:A8:45:5A:28:3D:C2:11:C6:8C:69:D9:59:6A:84:AE:70 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iVPfqKhFWig9whHGjGnZWWqErnA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.214.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:ca:d5:f4:01:bd:6f:e6:ac:ee:e3:8c:20:1e:f7:e8:0d:4f: d6:38:4b:d8:e5:f2:51:32:ba:30:d5:8c:fe:78:8e:0b:2e:c9: 2a:6f:15:da:9f:67:35:98:c2:01:82:91:eb:12:cf:be:42:e6: 6c:ea:82:99:5c:cf:3e:a7:fd:f4:ca:4b:73:c2:93:b6:69:d7: 36:48:84:aa:75:60:3f:56:15:40:ec:5f:fe:9d:47:86:57:bb: b6:08:23:dc:56:d6:bb:f4:67:9d:11:73:50:bf:4c:3f:00:20: a9:21:33:3d:84:82:77:85:ce:f3:bf:c5:88:6e:11:19:5f:29: 8e:d3:a3:0b:fa:49:4d:f9:a6:83:d6:ba:4a:8b:d6:5c:1a:d1: 17:a8:c8:3a:68:a3:10:98:74:e1:72:8c:a0:c7:51:eb:f9:00: 19:3f:c6:bd:84:e7:ee:30:f2:59:22:18:79:74:fc:1a:4b:68: 46:36:0b:0b:ac:f8:6d:dc:0c:d5:0c:0e:75:dd:5d:4b:7c:98: f8:78:2e:e8:6e:f0:e4:12:35:86:62:12:33:55:69:8b:4d:9a: 6e:f4:a4:a9:e9:f3:6b:4f:e3:cf:0b:dd:70:76:59:0e:1a:30: 13:23:8f:33:fe:3f:19:bf:3f:61:29:ad:44:c8:0b:5d:00:23: a7:d0:34:b7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJzwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzNDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg5NTNERkE4QTg0NTVB MjgzREMyMTFDNjhDNjlEOTU5NkE4NEFFNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpWfS4kzm1ZZtzmNV/DEPcij9mC9UOt45ttgH3tsUGJTF91ScR GfrcwEBxGvD0OIJ+ehMvADj2Ck2bC7nS3Ul0Vb49VoCSBg7Qvbwvfo24TYCaUMKR 51h3/wY6JUjtstiRTKTXj0AJ/p3t5HWTR0gCVrqdc7aU9tcd67nCm1dVgq2fisNc NnG3tnJm9JMnP0AheeCwhEgODz8CiHknLB2WyZM/aLhdUpvDV8gOUxkLOaqD9Hcn dD+cM205eJJrNaH0v/1Yc4bhCkro/mSlRpTVhkJrtK57ObgDp5niNvfxwhMrCll7 werPrSnOOnTwqwRLucHB78e5CXJbI57/QWzrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUiVPfqKhFWig9whHGjGnZWWqErnAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2lWUGZxS2hGV2lnOXdoSEdq R25aV1dxRXJuQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 PNYwDQYJKoZIhvcNAQELBQADggEBAJzK1fQBvW/mrO7jjCAe9+gNT9Y4S9jl8lEy ujDVjP54jgsuySpvFdqfZzWYwgGCkesSz75C5mzqgplczz6n/fTKS3PCk7Zp1zZI hKp1YD9WFUDsX/6dR4ZXu7YII9xW1rv0Z50Rc1C/TD8AIKkhMz2EgneFzvO/xYhu ERlfKY7Towv6SU35poPWukqL1lwa0ReoyDpooxCYdOFyjKDHUev5ABk/xr2E5+4w 8lkiGHl0/BpLaEY2Cwus+G3cDNUMDnXdXUt8mPh4Luhu8OQSNYZiEjNVaYtNmm70 pKnp82tP488L3XB2WQ4aMBMjjzP+Pxm/P2EprUTIC10AI6fQNLc= -----END CERTIFICATE-----Generated at Sun Aug 24 11:40:32 2025 by rpki-client