$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/j95y-84N5dKD0mHhmDY-RSdO4yA.roa File: j95y-84N5dKD0mHhmDY-RSdO4yA.roa (raw, json) Hash identifier: mkWJRZAQstf9Ui+E4VZl+4OjjRb39SlfOMGArb0WL5I= Subject key identifier: 8F:DE:72:FB:CE:0D:E5:D2:83:D2:61:E1:98:36:3E:45:27:4E:E3:20 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2608 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/j95y-84N5dKD0mHhmDY-RSdO4yA.roa Signing time: Fri 22 Aug 2025 08:42:30 +0000 ROA not before: Fri 22 Aug 2025 08:42:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 61.58.96.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9736 (0x2608) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8FDE72FBCE0DE5D283D261E198363E45274EE320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b7:65:7c:59:34:b8:ff:88:44:45:91:40:fc: ed:3a:5b:42:67:0a:da:95:e1:b4:7b:1b:62:6f:f1: 8b:89:8c:cd:53:d8:42:fb:2a:c9:05:a3:d7:f5:b4: 90:ec:be:fa:90:4d:a9:5a:79:80:57:2f:f4:ac:69: 60:c1:88:db:18:b5:f3:cd:30:cc:c3:c7:5e:0a:55: d2:03:cd:df:27:58:80:70:0b:7e:ac:0f:49:70:79: f5:d8:8a:93:00:e3:9f:f7:e2:44:66:f8:52:a3:56: 2d:7e:bf:00:db:16:e5:3f:33:52:95:f4:16:98:74: ab:ba:bb:69:01:a1:97:50:8b:43:e9:60:46:4d:a7: 5f:ad:f1:0f:be:c3:51:be:84:37:e6:5a:eb:b5:2d: e3:5e:b4:27:f2:64:a6:04:00:5c:6b:ca:e4:a5:f1: 46:8b:d4:ef:4e:91:e0:20:a3:a2:0f:f3:5a:0b:c3: 55:5a:4a:13:4d:7d:a6:1f:22:f2:ed:9c:b4:11:e6: 94:55:7d:33:87:7c:5b:96:57:44:31:f6:a1:f4:e9: 31:ae:6f:05:02:c0:77:76:00:03:04:89:27:15:e4: 07:9e:4f:d1:4f:ba:68:43:d7:70:59:e0:a5:8c:4c: 8f:0b:ae:1e:59:81:48:67:9b:40:f4:f6:1d:61:2e: a3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:DE:72:FB:CE:0D:E5:D2:83:D2:61:E1:98:36:3E:45:27:4E:E3:20 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/j95y-84N5dKD0mHhmDY-RSdO4yA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.96.0/20 Signature Algorithm: sha256WithRSAEncryption 59:9e:f9:6a:8b:78:5c:8f:38:84:2b:96:0b:77:9a:d5:ce:0a: 5e:e4:51:ad:5d:b5:ae:54:49:53:7f:41:bd:e1:dc:4d:37:55: 31:1e:2d:58:ee:0c:cc:43:65:f6:98:4f:9e:a7:87:eb:c9:33: c9:9f:7a:98:55:0a:98:52:22:30:c8:4b:a9:2b:54:2f:1c:40: 65:f3:ff:f6:16:10:98:31:d9:a7:40:8b:98:dd:d5:87:4a:a6: bd:50:4a:08:00:2e:98:c0:0c:4a:32:e4:b2:96:f4:d6:62:5f: 26:3b:b9:4f:41:70:cb:b2:cb:40:38:bf:b5:af:f2:31:a0:89: 1c:5c:ec:fa:af:ca:7f:f1:74:dc:24:68:89:d6:fb:e6:d5:f2: 0e:74:9c:f1:a7:55:ec:e5:c2:11:47:ea:06:c9:5b:27:e5:87: 52:73:d1:1f:c1:0a:23:dd:c3:88:68:23:92:41:f9:04:ed:92: 26:e3:0b:0f:c4:8c:9e:a2:8f:b8:24:28:0b:2f:69:b3:f7:c2: b5:a1:04:b6:4a:24:06:9c:1b:de:6e:fc:14:2c:30:b2:51:07: 05:b0:b3:5a:99:bd:8c:d5:89:2c:54:0f:f9:ab:d0:70:dc:aa: e3:5a:33:6a:e2:57:00:d9:b5:a1:16:7e:af:b4:10:d2:ca:33: 4c:ce:c4:e4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJggwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhGREU3MkZCQ0UwREU1 RDI4M0QyNjFFMTk4MzYzRTQ1Mjc0RUUzMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzt2V8WTS4/4hERZFA/O06W0JnCtqV4bR7G2Jv8YuJjM1T2EL7 KskFo9f1tJDsvvqQTalaeYBXL/SsaWDBiNsYtfPNMMzDx14KVdIDzd8nWIBwC36s D0lwefXYipMA45/34kRm+FKjVi1+vwDbFuU/M1KV9BaYdKu6u2kBoZdQi0PpYEZN p1+t8Q++w1G+hDfmWuu1LeNetCfyZKYEAFxryuSl8UaL1O9OkeAgo6IP81oLw1Va ShNNfaYfIvLtnLQR5pRVfTOHfFuWV0Qx9qH06TGubwUCwHd2AAMEiScV5AeeT9FP umhD13BZ4KWMTI8Lrh5ZgUhnm0D09h1hLqO1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUj95y+84N5dKD0mHhmDY+RSdO4yAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2o5NXktODRONWRLRDBtSGht RFktUlNkTzR5QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OmAwDQYJKoZIhvcNAQELBQADggEBAFme+WqLeFyPOIQrlgt3mtXOCl7kUa1dta5U SVN/Qb3h3E03VTEeLVjuDMxDZfaYT56nh+vJM8mfephVCphSIjDIS6krVC8cQGXz //YWEJgx2adAi5jd1YdKpr1QSggALpjADEoy5LKW9NZiXyY7uU9BcMuyy0A4v7Wv 8jGgiRxc7Pqvyn/xdNwkaInW++bV8g50nPGnVezlwhFH6gbJWyflh1Jz0R/BCiPd w4hoI5JB+QTtkibjCw/EjJ6ij7gkKAsvabP3wrWhBLZKJAacG95u/BQsMLJRBwWw s1qZvYzViSxUD/mr0HDcquNaM2riVwDZtaEWfq+0ENLKM0zOxOQ= -----END CERTIFICATE-----Generated at Sun Aug 24 11:40:38 2025 by rpki-client