$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jXwDF9kDFbOSE7HMhUa31wmSCfk.roa File: jXwDF9kDFbOSE7HMhUa31wmSCfk.roa (raw, json) Hash identifier: XRh9nReuaScuoBcvvdhP62LzsKiiGPH7q0SeO0ehoew= Subject key identifier: 8D:7C:03:17:D9:03:15:B3:92:13:B1:CC:85:46:B7:D7:09:92:09:F9 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26BF Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jXwDF9kDFbOSE7HMhUa31wmSCfk.roa Signing time: Fri 22 Aug 2025 08:43:12 +0000 ROA not before: Fri 22 Aug 2025 08:43:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 114.198.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9919 (0x26bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8D7C0317D90315B39213B1CC8546B7D7099209F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:59:61:a6:ef:02:92:4d:5b:ea:55:7e:d3: 1d:61:12:fb:db:91:86:47:db:fe:eb:3e:b8:39:5a: d8:a8:49:7e:8a:97:be:32:49:2a:e1:d8:e0:b3:13: b0:56:f0:29:c5:27:27:d5:77:86:42:c8:dc:69:ef: 22:c1:7d:45:ad:3f:85:db:88:35:c6:08:a2:e7:30: 05:ed:27:d1:5d:6b:36:ab:31:b4:b4:b1:97:79:dd: 9f:e5:66:f8:3c:05:58:c5:86:bb:08:ab:56:65:f6: 12:72:74:6e:89:39:0d:97:a6:5a:77:72:d9:ef:db: cb:7f:6a:e0:5d:b5:58:dc:b0:b4:08:57:47:ca:bb: f4:7b:92:ff:25:cf:ef:64:cc:05:7f:a2:bc:a3:4d: 54:09:13:2c:4f:b1:d7:e3:f1:01:e8:85:83:66:0e: 92:45:69:8b:7c:4d:3a:bb:c4:94:05:36:7d:6d:5d: 2f:25:02:ef:c5:d8:31:91:69:f9:f8:27:de:92:57: 73:6b:75:94:20:2f:e5:46:db:6c:13:d7:1a:aa:1e: 98:15:f8:4e:66:29:7b:b8:aa:2a:38:8b:66:66:7b: ec:41:af:10:c7:54:74:f0:6a:fd:5c:fc:db:48:13: cc:d1:e0:05:ee:09:c0:ab:20:da:cc:0b:2a:8e:2c: c9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7C:03:17:D9:03:15:B3:92:13:B1:CC:85:46:B7:D7:09:92:09:F9 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jXwDF9kDFbOSE7HMhUa31wmSCfk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.160.0/22 Signature Algorithm: sha256WithRSAEncryption a0:06:01:4e:3b:f5:85:00:e0:f4:21:d4:3f:14:77:d1:58:59: d9:89:1e:e2:f9:d2:e5:71:09:76:33:db:c2:4a:73:9a:05:58: 7e:33:0c:ad:73:aa:58:cc:34:9d:97:09:4a:91:0c:a8:8a:27: d0:59:ed:66:ec:79:8f:45:ef:a4:47:b7:ce:e1:1c:9b:82:1e: 6e:94:6c:8e:30:81:76:20:7b:61:6a:ff:18:46:65:95:41:2f: 34:56:c7:d3:e8:4a:27:00:2d:25:bf:b9:6f:01:af:64:f9:eb: ec:51:fe:2e:58:d8:fb:07:73:2a:c9:31:7c:91:de:f4:57:5a: 14:55:f4:01:f6:c8:80:44:8b:7c:92:0a:fa:d2:e3:8c:41:62: d7:e2:0e:af:c1:68:e8:ee:10:97:49:10:5d:5d:04:93:42:03: 99:9d:69:ab:0e:25:46:69:5b:b0:8f:5e:0e:99:55:37:3f:ae: 9b:bc:7d:f4:0e:4a:bf:4d:d0:5b:01:2d:36:2c:80:1e:49:dd: 8d:91:7b:4b:81:c3:9f:ef:a0:6c:f3:e8:5b:51:d0:ed:f1:7a: 58:cf:75:fa:2a:98:1a:49:3e:9a:e5:64:b8:5b:f7:08:33:f8: 4a:d9:ce:51:e0:a0:c1:60:18:e0:37:04:69:b7:c0:2c:c9:8f: 44:6d:3e:80 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJr8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhEN0MwMzE3RDkwMzE1 QjM5MjEzQjFDQzg1NDZCN0Q3MDk5MjA5RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRFllhpu8Ckk1b6lV+0x1hEvvbkYZH2/7rPrg5WtioSX6Kl74y SSrh2OCzE7BW8CnFJyfVd4ZCyNxp7yLBfUWtP4XbiDXGCKLnMAXtJ9FdazarMbS0 sZd53Z/lZvg8BVjFhrsIq1Zl9hJydG6JOQ2Xplp3ctnv28t/auBdtVjcsLQIV0fK u/R7kv8lz+9kzAV/oryjTVQJEyxPsdfj8QHohYNmDpJFaYt8TTq7xJQFNn1tXS8l Au/F2DGRafn4J96SV3NrdZQgL+VG22wT1xqqHpgV+E5mKXu4qio4i2Zme+xBrxDH VHTwav1c/NtIE8zR4AXuCcCrINrMCyqOLMn5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjXwDF9kDFbOSE7HMhUa31wmSCfkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2pYd0RGOWtERmJPU0U3SE1o VWEzMXdtU0Nmay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJy xqAwDQYJKoZIhvcNAQELBQADggEBAKAGAU479YUA4PQh1D8Ud9FYWdmJHuL50uVx CXYz28JKc5oFWH4zDK1zqljMNJ2XCUqRDKiKJ9BZ7WbseY9F76RHt87hHJuCHm6U bI4wgXYge2Fq/xhGZZVBLzRWx9PoSicALSW/uW8Br2T56+xR/i5Y2PsHcyrJMXyR 3vRXWhRV9AH2yIBEi3ySCvrS44xBYtfiDq/BaOjuEJdJEF1dBJNCA5mdaasOJUZp W7CPXg6ZVTc/rpu8ffQOSr9N0FsBLTYsgB5J3Y2Re0uBw5/voGzz6FtR0O3xeljP dfoqmBpJPprlZLhb9wgz+ErZzlHgoMFgGOA3BGm3wCzJj0RtPoA= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:51 2025 by rpki-client