$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ktKGGGID6N34LytfV3ZiCVZrmGs.roa File: ktKGGGID6N34LytfV3ZiCVZrmGs.roa (raw, json) Hash identifier: mcu3yMY6/PAwJ6sBeps1km8k0s3FJihSXvdLDUWaC70= Subject key identifier: 92:D2:86:18:62:03:E8:DD:F8:2F:2B:5F:57:76:62:09:56:6B:98:6B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2611 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ktKGGGID6N34LytfV3ZiCVZrmGs.roa Signing time: Fri 22 Aug 2025 08:42:33 +0000 ROA not before: Fri 22 Aug 2025 08:42:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 45.64.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9745 (0x2611) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=92D286186203E8DDF82F2B5F57766209566B986B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:46:92:01:ad:d5:3f:df:a6:df:ea:12:bf:b9: 1f:79:dd:27:95:65:7f:85:c8:71:61:d7:6f:c1:c0: 42:22:7b:df:de:e5:31:4e:67:31:60:2d:5e:2e:c0: b2:8e:a6:13:0b:54:60:fc:c9:15:03:23:92:0f:88: 06:de:43:76:af:76:6a:f8:e0:a3:21:56:b6:37:07: 5c:29:58:01:59:d1:b6:3f:a6:a0:43:83:82:d1:fe: 0a:2e:6e:eb:3a:00:a9:3e:9c:2e:07:ac:59:21:7d: 3f:55:dc:01:f9:1c:10:0f:b3:e8:7d:12:e9:77:37: 42:9a:65:62:03:2e:f2:48:1b:80:ef:92:6e:d1:95: fe:8a:6c:0d:e5:7b:72:ac:8a:60:30:73:e4:09:cd: 49:8b:b0:c4:39:ae:8c:5d:c9:a8:ff:89:c4:c8:57: 65:b5:0a:3e:8d:62:5d:4a:d4:c4:c5:38:d3:17:6a: 59:fd:28:df:9d:43:21:4b:42:24:cf:11:48:5c:c2: 05:a1:32:39:9a:da:06:db:5e:a6:4c:40:b5:ab:fd: 3a:00:62:6d:21:a6:3e:dd:ce:ec:a6:e0:ae:68:2a: c2:ac:df:a2:c7:86:c9:92:fe:cd:10:dd:21:bf:72: e2:35:0d:a3:2e:96:f7:fe:7b:76:fb:51:b2:a3:76: 92:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D2:86:18:62:03:E8:DD:F8:2F:2B:5F:57:76:62:09:56:6B:98:6B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ktKGGGID6N34LytfV3ZiCVZrmGs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.35.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:b0:8a:24:75:88:a1:cf:af:e9:11:df:50:70:d9:58:9c:cf: c8:b2:8c:5d:2b:fb:97:50:e6:20:e0:b3:a6:e6:db:2e:55:f9: 13:d8:df:46:16:c3:e1:22:3d:6d:5e:8c:dc:38:9c:1d:cf:98: f5:63:af:7d:86:3f:e8:2d:1d:6d:46:2e:0b:d2:2c:c0:ab:cb: 31:74:32:c9:f5:99:86:b6:dc:2d:a8:6c:74:cb:d5:e1:7f:18: 9d:16:da:31:59:1c:79:19:24:ff:d2:4a:f6:21:fc:b5:5c:44: 3c:14:c3:c0:23:10:81:bd:54:35:05:46:49:79:4a:99:ac:3c: 11:a6:00:50:4b:a7:25:1b:af:f2:49:19:c1:d7:f8:b3:73:ab: b9:b6:19:cf:fe:e0:7d:71:80:39:5e:60:70:ab:d4:97:16:88: 03:b6:22:a3:ae:70:87:f5:fc:27:db:18:ad:bd:d2:66:04:92: 21:52:a0:32:31:61:99:9a:33:18:c9:55:12:ed:db:78:01:35: e2:75:74:f8:5b:af:10:c0:f4:0b:2a:0d:32:c6:f4:18:89:06: bc:f8:88:50:0b:2c:2c:24:08:f7:35:ce:b6:20:d5:39:4b:cd: cc:a2:a0:ae:13:dd:76:e4:3c:f2:cb:61:61:a7:62:79:4a:09: 96:5d:34:de -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJhEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkyRDI4NjE4NjIwM0U4 RERGODJGMkI1RjU3NzY2MjA5NTY2Qjk4NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIRpIBrdU/36bf6hK/uR953SeVZX+FyHFh12/BwEIie9/e5TFO ZzFgLV4uwLKOphMLVGD8yRUDI5IPiAbeQ3avdmr44KMhVrY3B1wpWAFZ0bY/pqBD g4LR/goubus6AKk+nC4HrFkhfT9V3AH5HBAPs+h9Eul3N0KaZWIDLvJIG4Dvkm7R lf6KbA3le3KsimAwc+QJzUmLsMQ5roxdyaj/icTIV2W1Cj6NYl1K1MTFONMXaln9 KN+dQyFLQiTPEUhcwgWhMjma2gbbXqZMQLWr/ToAYm0hpj7dzuym4K5oKsKs36LH hsmS/s0Q3SG/cuI1DaMulvf+e3b7UbKjdpJDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUktKGGGID6N34LytfV3ZiCVZrmGswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2t0S0dHR0lENk4zNEx5dGZW M1ppQ1Zacm1Hcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt QCMwDQYJKoZIhvcNAQELBQADggEBAI6wiiR1iKHPr+kR31Bw2Vicz8iyjF0r+5dQ 5iDgs6bm2y5V+RPY30YWw+EiPW1ejNw4nB3PmPVjr32GP+gtHW1GLgvSLMCryzF0 Msn1mYa23C2obHTL1eF/GJ0W2jFZHHkZJP/SSvYh/LVcRDwUw8AjEIG9VDUFRkl5 SpmsPBGmAFBLpyUbr/JJGcHX+LNzq7m2Gc/+4H1xgDleYHCr1JcWiAO2IqOucIf1 /CfbGK290mYEkiFSoDIxYZmaMxjJVRLt23gBNeJ1dPhbrxDA9AsqDTLG9BiJBrz4 iFALLCwkCPc1zrYg1TlLzcyioK4T3XbkPPLLYWGnYnlKCZZdNN4= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:34 2025 by rpki-client