$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ogaPI9MPNYdx2PNHF19ttC6rNxU.roa File: ogaPI9MPNYdx2PNHF19ttC6rNxU.roa (raw, json) Hash identifier: 9hmostSrkD8qGF1Owqn0Yzhu6XJN+42e7ttUlhzw+iU= Subject key identifier: A2:06:8F:23:D3:0F:35:87:71:D8:F3:47:17:5F:6D:B4:2E:AB:37:15 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26E5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ogaPI9MPNYdx2PNHF19ttC6rNxU.roa Signing time: Fri 22 Aug 2025 08:43:21 +0000 ROA not before: Fri 22 Aug 2025 08:43:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 180.218.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9957 (0x26e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A2068F23D30F358771D8F347175F6DB42EAB3715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:25:29:70:29:2d:7b:57:9e:39:97:a7:54: 38:0e:eb:69:67:72:7b:f7:09:30:46:38:b9:44:f7: 59:37:c9:4e:c2:9e:cb:06:78:c4:2b:aa:e1:d2:fb: 9a:23:d2:a0:c7:25:d7:7c:a3:20:05:19:16:ae:84: 95:15:df:eb:2a:29:05:92:a8:a0:a0:50:df:b4:d4: 07:54:58:8e:8f:0d:91:33:94:00:05:e8:97:50:28: 0b:7b:3c:f2:2b:a0:fd:4d:f4:cf:32:a3:20:eb:9b: 38:f1:2f:c8:35:e6:0a:19:9d:1a:63:46:c1:09:76: 66:ee:60:47:b3:0d:55:c6:ef:e4:c0:4a:48:78:52: 30:60:7e:30:59:08:32:69:4c:da:d2:1b:50:28:05: b2:79:5e:ad:e4:31:1a:15:a6:a4:eb:ab:6c:f9:82: f8:3f:8f:d8:a8:2a:62:7a:a4:71:42:1f:48:9f:74: d9:59:57:bd:3f:87:02:a0:be:38:88:a8:ab:96:10: c6:96:5b:a2:9e:65:88:7d:ff:0d:ae:cd:4c:d1:fc: 00:1b:5f:35:0d:6a:96:f3:a5:3b:d5:bd:a3:54:95: 79:dc:9e:64:f4:af:cc:cf:97:ea:dd:6f:d4:fe:4b: 6b:51:65:8a:0b:9d:8c:45:a0:7c:3a:2b:8f:e9:f4: 84:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:06:8F:23:D3:0F:35:87:71:D8:F3:47:17:5F:6D:B4:2E:AB:37:15 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ogaPI9MPNYdx2PNHF19ttC6rNxU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.224.0/21 Signature Algorithm: sha256WithRSAEncryption 81:15:6f:e1:a4:a7:03:0b:4a:a5:2b:73:81:a1:26:df:97:0a: 6e:1a:24:a3:4e:c0:6c:67:ec:9c:b2:95:f2:07:52:80:09:fa: af:7e:c8:ad:30:b8:53:15:68:aa:ac:f4:d4:51:52:2b:7a:77: 4c:11:e2:68:1f:c9:89:70:4d:a8:94:77:e8:15:ec:e7:80:45: 4a:33:d6:b1:09:8b:60:1e:97:12:ce:53:87:0f:f0:eb:d1:52: b4:dc:64:ab:75:30:66:1f:79:6e:b4:be:d1:19:51:6e:0f:ad: 5d:31:44:0f:f0:d8:ec:3e:8c:5d:73:e3:17:a0:cb:2c:61:56: 83:fc:68:35:13:22:9a:b9:d9:48:c4:81:57:b2:72:f6:8f:03: 76:b6:a4:da:cf:34:28:48:77:c5:d3:6b:6d:f0:fc:87:86:0b: 6b:25:72:c5:c2:5f:a5:df:76:77:02:c8:0b:81:39:66:05:38: 80:4f:a2:81:2d:5f:1b:21:95:0b:50:88:32:80:13:6f:2c:09: ae:28:02:5e:f0:d0:a5:83:16:92:77:ea:b4:e7:bd:6b:26:24: e9:9f:e3:2f:2a:8d:b8:af:0c:1f:ed:17:2e:eb:05:b3:04:26: b0:db:f9:33:8c:b3:d0:da:85:dc:21:59:59:3e:36:26:b2:ca: 17:c2:3a:88 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEyMDY4RjIzRDMwRjM1 ODc3MUQ4RjM0NzE3NUY2REI0MkVBQjM3MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQBiUpcCkte1eeOZenVDgO62lncnv3CTBGOLlE91k3yU7CnssG eMQrquHS+5oj0qDHJdd8oyAFGRauhJUV3+sqKQWSqKCgUN+01AdUWI6PDZEzlAAF 6JdQKAt7PPIroP1N9M8yoyDrmzjxL8g15goZnRpjRsEJdmbuYEezDVXG7+TASkh4 UjBgfjBZCDJpTNrSG1AoBbJ5Xq3kMRoVpqTrq2z5gvg/j9ioKmJ6pHFCH0ifdNlZ V70/hwKgvjiIqKuWEMaWW6KeZYh9/w2uzUzR/AAbXzUNapbzpTvVvaNUlXncnmT0 r8zPl+rdb9T+S2tRZYoLnYxFoHw6K4/p9ITFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUogaPI9MPNYdx2PNHF19ttC6rNxUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL29nYVBJOU1QTllkeDJQTkhG MTl0dEM2ck54VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2uAwDQYJKoZIhvcNAQELBQADggEBAIEVb+GkpwMLSqUrc4GhJt+XCm4aJKNOwGxn 7JyylfIHUoAJ+q9+yK0wuFMVaKqs9NRRUit6d0wR4mgfyYlwTaiUd+gV7OeARUoz 1rEJi2AelxLOU4cP8OvRUrTcZKt1MGYfeW60vtEZUW4PrV0xRA/w2Ow+jF1z4xeg yyxhVoP8aDUTIpq52UjEgVeycvaPA3a2pNrPNChId8XTa23w/IeGC2slcsXCX6Xf dncCyAuBOWYFOIBPooEtXxshlQtQiDKAE28sCa4oAl7w0KWDFpJ36rTnvWsmJOmf 4y8qjbivDB/tFy7rBbMEJrDb+TOMs9DahdwhWVk+NiayyhfCOog= -----END CERTIFICATE-----Generated at Sun Aug 24 11:40:28 2025 by rpki-client