$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/js6BJvjsnOwC_x5s2myZ-OXoNuQ.roa File: js6BJvjsnOwC_x5s2myZ-OXoNuQ.roa (raw, json) Hash identifier: PIxWH4NyTMrliJv7Q06jhQP8C/LBHfnjA63GaJTj4D0= Subject key identifier: 8E:CE:81:26:F8:EC:9C:EC:02:FF:1E:6C:DA:6C:99:F8:E5:E8:36:E4 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2656 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/js6BJvjsnOwC_x5s2myZ-OXoNuQ.roa Signing time: Fri 22 Aug 2025 08:42:50 +0000 ROA not before: Fri 22 Aug 2025 08:42:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9814 (0x2656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8ECE8126F8EC9CEC02FF1E6CDA6C99F8E5E836E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ab:c3:1a:16:d3:04:5a:4d:d1:2d:59:2c:32: 70:f1:aa:13:9f:df:4b:c5:e0:ce:b4:7e:77:b2:37: 5d:cd:6a:01:98:45:85:ad:25:0b:99:67:ae:d1:22: 0a:d8:70:ea:97:66:2b:ac:2e:dc:88:7b:25:37:f7: b8:00:f9:13:8b:67:c0:17:4e:3b:af:ea:a4:31:c2: 2a:00:9b:60:73:55:50:66:9e:dc:c7:26:57:73:a4: 12:00:97:73:c7:f2:23:54:63:0a:71:bc:eb:85:53: 12:bb:85:68:db:90:3c:ec:c8:c3:4e:a2:12:42:ce: 4c:56:d8:b4:c5:32:69:3e:cc:9a:1c:29:82:2e:61: 1d:f9:74:50:eb:52:a8:eb:5e:c3:7b:72:1d:43:81: 54:d7:7f:9a:9f:ac:c5:4a:88:4a:9b:64:61:7d:ea: 20:6d:07:54:e8:cc:22:97:09:cb:72:26:69:da:8d: eb:51:03:90:d9:4f:c2:23:c0:fc:95:3f:a3:b1:b9: ac:3e:8a:02:43:76:d9:92:58:c7:49:17:e3:40:3b: 29:6d:45:da:32:73:32:d6:69:6d:c0:44:b6:03:a5: 54:09:4c:b8:25:96:76:7a:e7:62:0d:e9:d1:f9:8e: 7e:c7:3b:99:be:67:b0:04:d1:ab:4b:23:a8:26:7b: 1c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:CE:81:26:F8:EC:9C:EC:02:FF:1E:6C:DA:6C:99:F8:E5:E8:36:E4 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/js6BJvjsnOwC_x5s2myZ-OXoNuQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.32.0/21 Signature Algorithm: sha256WithRSAEncryption 54:9a:6e:63:89:21:ad:25:43:2e:c4:5d:1a:f2:0e:bd:d0:ad: 32:50:1e:bd:c6:db:d7:d7:70:d0:21:fa:0b:9a:99:57:23:a6: 15:62:e7:7a:ae:2d:cf:ec:66:89:ba:ef:4c:2a:75:47:ce:e5: d8:81:6a:e3:e5:89:13:db:75:74:1c:af:33:3f:fb:01:84:41: 1e:14:7e:3c:fd:5a:35:55:af:67:ff:f4:88:8f:c0:c7:4f:a8: ae:0c:45:31:2c:fe:71:90:e4:ef:83:10:8f:36:74:d4:58:76: e5:4e:d5:c9:85:d5:96:04:96:f4:b7:20:cc:24:99:5a:40:b1: fd:23:5d:48:8b:5e:d7:d5:e2:50:f3:8d:56:18:66:86:7b:d3: 5a:b7:a4:f0:77:c8:52:9b:29:08:48:6b:bf:a5:98:c0:db:08: 5f:bb:e5:0a:b4:71:a2:54:66:da:30:43:30:be:65:bc:ac:51: 7b:76:8e:bf:e3:6c:2e:d0:93:c7:be:4d:9a:45:0d:19:d4:d9: 6b:0c:76:7d:e7:e2:5d:d0:0b:fd:c4:f5:97:9e:a6:2f:90:cd: 05:8c:8e:93:10:29:6a:e4:89:78:9f:24:f7:69:d3:99:e0:f3: 6e:39:16:2d:fe:2a:1c:b9:95:67:0c:41:25:a7:6c:dc:4b:b1: a6:70:77:9b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJlYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhFQ0U4MTI2RjhFQzlD RUMwMkZGMUU2Q0RBNkM5OUY4RTVFODM2RTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaq8MaFtMEWk3RLVksMnDxqhOf30vF4M60fneyN13NagGYRYWt JQuZZ67RIgrYcOqXZiusLtyIeyU397gA+ROLZ8AXTjuv6qQxwioAm2BzVVBmntzH JldzpBIAl3PH8iNUYwpxvOuFUxK7hWjbkDzsyMNOohJCzkxW2LTFMmk+zJocKYIu YR35dFDrUqjrXsN7ch1DgVTXf5qfrMVKiEqbZGF96iBtB1TozCKXCctyJmnajetR A5DZT8IjwPyVP6Oxuaw+igJDdtmSWMdJF+NAOyltRdoyczLWaW3ARLYDpVQJTLgl lnZ652IN6dH5jn7HO5m+Z7AE0atLI6gmexzzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjs6BJvjsnOwC/x5s2myZ+OXoNuQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2pzNkJKdmpzbk93Q194NXMy bXlaLU9Yb051US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2iAwDQYJKoZIhvcNAQELBQADggEBAFSabmOJIa0lQy7EXRryDr3QrTJQHr3G29fX cNAh+guamVcjphVi53quLc/sZom670wqdUfO5diBauPliRPbdXQcrzM/+wGEQR4U fjz9WjVVr2f/9IiPwMdPqK4MRTEs/nGQ5O+DEI82dNRYduVO1cmF1ZYElvS3IMwk mVpAsf0jXUiLXtfV4lDzjVYYZoZ701q3pPB3yFKbKQhIa7+lmMDbCF+75Qq0caJU ZtowQzC+ZbysUXt2jr/jbC7Qk8e+TZpFDRnU2WsMdn3n4l3QC/3E9Zeepi+QzQWM jpMQKWrkiXifJPdp05ng8245Fi3+Khy5lWcMQSWnbNxLsaZwd5s= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:36 2025 by rpki-client