$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oT6mWuoEPNl35nCFUVsa9Ylehmw.roa File: oT6mWuoEPNl35nCFUVsa9Ylehmw.roa (raw, json) Hash identifier: ua4O/vEUmDZg9O6BtTMDmyS4Y5G+r0ISs4Y0p+WQzhY= Subject key identifier: A1:3E:A6:5A:EA:04:3C:D9:77:E6:70:85:51:5B:1A:F5:89:5E:86:6C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25C4 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oT6mWuoEPNl35nCFUVsa9Ylehmw.roa Signing time: Fri 22 Aug 2025 08:42:13 +0000 ROA not before: Fri 22 Aug 2025 08:42:13 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 119.77.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9668 (0x25c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A13EA65AEA043CD977E67085515B1AF5895E866C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a3:42:95:30:73:23:ca:8e:db:23:16:f0:57: b2:32:18:f9:48:95:40:07:6c:56:78:41:02:e1:90: 6a:bf:62:ae:ca:4e:b3:0f:e8:27:ea:7b:6c:d8:e4: 49:8b:5d:97:a9:b8:23:dc:5f:b8:dc:02:a0:da:32: 73:b7:aa:e6:74:e9:65:c9:1d:64:61:6e:24:2c:99: 95:a5:51:a5:85:69:31:2b:14:54:2e:07:f3:7a:70: 10:1a:13:70:af:8a:05:c9:f4:e2:90:14:06:bb:02: 3f:50:2d:a7:49:a0:e4:61:c1:3d:0c:fc:98:81:15: 9b:d4:9f:63:ca:09:a0:09:06:97:4c:1b:ec:e1:29: bf:f2:e7:90:b0:04:f4:2b:a0:cc:a6:ba:c5:51:8b: d8:d7:74:a3:3a:c9:50:ba:11:fb:55:44:2f:73:ac: 80:ac:8d:a1:a1:d4:56:dd:4d:8f:ab:19:d4:bb:93: 8d:e1:75:4e:16:09:21:87:a0:d2:5c:9f:3e:cf:1d: 7d:ba:80:aa:b5:bb:f6:99:51:08:c5:d4:1a:37:3c: 92:62:ce:4f:c6:49:dc:02:75:66:f7:43:74:28:83: 04:b1:a3:d0:37:08:a8:82:bf:ff:20:0c:08:0d:ad: 17:01:e5:89:8b:ff:5f:ed:a6:22:dc:b4:f3:54:99: 47:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:3E:A6:5A:EA:04:3C:D9:77:E6:70:85:51:5B:1A:F5:89:5E:86:6C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oT6mWuoEPNl35nCFUVsa9Ylehmw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.224.0/19 Signature Algorithm: sha256WithRSAEncryption 65:b6:01:81:22:54:9f:ef:78:82:85:ce:bb:6b:86:e9:5d:73: e5:74:aa:e4:5f:ab:5d:a5:0c:2d:eb:a1:86:e3:49:f1:e5:61: a9:02:31:3b:48:52:11:f4:74:05:1f:f5:0a:ae:f4:28:60:44: b4:45:36:5a:b2:c0:8e:69:c9:00:70:fd:26:1b:9a:d0:c1:37: 4d:ee:a7:6b:0e:26:56:f9:cc:4c:36:88:4c:d6:5e:0e:98:28: 32:d8:4f:66:5b:b0:b1:80:2e:42:42:fa:d6:69:21:d2:72:2b: f6:1a:6e:03:65:d7:00:87:e8:11:c9:54:a4:07:9d:1a:5a:0b: 0f:a9:72:87:95:a2:fa:66:7e:b1:32:fa:cf:a4:bf:30:2e:ea: 15:7a:77:56:37:68:02:7d:10:8a:55:b7:b2:8a:e4:d4:9e:13: 21:f6:f6:8a:60:65:12:4d:b6:cd:38:61:08:36:53:80:b5:5b: 05:09:6f:82:3d:13:ac:1e:f4:2a:91:2e:dc:5f:eb:91:b2:cf: 75:d0:f5:6e:c0:60:ad:db:fb:9a:de:27:35:89:d3:8d:62:60: dc:92:fb:a5:f2:1d:72:b9:66:bf:9b:c3:11:e0:4c:ae:53:66: e5:21:5b:2d:07:5d:39:94:66:8b:70:d6:72:32:9a:dd:ba:3a: bc:93:a8:cf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJcQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEExM0VBNjVBRUEwNDND RDk3N0U2NzA4NTUxNUIxQUY1ODk1RTg2NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlo0KVMHMjyo7bIxbwV7IyGPlIlUAHbFZ4QQLhkGq/Yq7KTrMP 6Cfqe2zY5EmLXZepuCPcX7jcAqDaMnO3quZ06WXJHWRhbiQsmZWlUaWFaTErFFQu B/N6cBAaE3CvigXJ9OKQFAa7Aj9QLadJoORhwT0M/JiBFZvUn2PKCaAJBpdMG+zh Kb/y55CwBPQroMymusVRi9jXdKM6yVC6EftVRC9zrICsjaGh1FbdTY+rGdS7k43h dU4WCSGHoNJcnz7PHX26gKq1u/aZUQjF1Bo3PJJizk/GSdwCdWb3Q3QogwSxo9A3 CKiCv/8gDAgNrRcB5YmL/1/tpiLctPNUmUfxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUoT6mWuoEPNl35nCFUVsa9YlehmwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL29UNm1XdW9FUE5sMzVuQ0ZV VnNhOVlsZWhtdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV3 TeAwDQYJKoZIhvcNAQELBQADggEBAGW2AYEiVJ/veIKFzrtrhuldc+V0quRfq12l DC3roYbjSfHlYakCMTtIUhH0dAUf9Qqu9ChgRLRFNlqywI5pyQBw/SYbmtDBN03u p2sOJlb5zEw2iEzWXg6YKDLYT2ZbsLGALkJC+tZpIdJyK/YabgNl1wCH6BHJVKQH nRpaCw+pcoeVovpmfrEy+s+kvzAu6hV6d1Y3aAJ9EIpVt7KK5NSeEyH29opgZRJN ts04YQg2U4C1WwUJb4I9E6we9CqRLtxf65Gyz3XQ9W7AYK3b+5reJzWJ041iYNyS +6XyHXK5Zr+bwxHgTK5TZuUhWy0HXTmUZotw1nIymt26OryTqM8= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:33 2025 by rpki-client