$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qJX4szO-zckD4X8FGen6HKcHgAA.roa File: qJX4szO-zckD4X8FGen6HKcHgAA.roa (raw, json) Hash identifier: 27awRsFNqPUz2qdrIj3FuoODLqKYmCmFwcVVxJUriUk= Subject key identifier: A8:95:F8:B3:33:BE:CD:C9:03:E1:7F:05:19:E9:FA:1C:A7:07:80:00 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25E3 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qJX4szO-zckD4X8FGen6HKcHgAA.roa Signing time: Fri 22 Aug 2025 08:42:21 +0000 ROA not before: Fri 22 Aug 2025 08:42:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 211.76.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9699 (0x25e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A895F8B333BECDC903E17F0519E9FA1CA7078000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:07:89:00:ba:40:d8:b4:6a:ea:c6:75:20:1e: 0a:50:ac:d5:02:36:f7:57:ee:80:86:e0:d1:be:0e: 2d:d0:86:fc:8f:c2:1e:17:ad:eb:e8:02:fc:cd:bf: 3f:58:08:87:a6:18:8e:2a:a5:fc:21:02:25:5c:e5: eb:ed:35:6f:96:c5:e8:e2:44:b2:fc:b4:fd:c4:5f: 7b:ad:81:61:e8:8c:21:b2:70:dc:17:49:83:21:2b: 46:1b:94:86:43:3e:5a:d4:4c:70:f7:30:e0:dc:79: 90:9d:81:b2:1d:83:36:48:70:b6:9f:c5:70:29:e5: c3:36:b5:a4:97:65:cc:3c:24:28:e4:ea:6f:08:93: 3f:02:10:44:65:cd:1c:2c:57:c0:f1:cc:48:7b:b1: 13:af:2f:3e:13:c4:d8:38:f1:be:46:ec:8f:a8:86: e3:69:4f:5c:d6:67:b3:65:43:a3:c7:f6:00:81:34: a6:34:46:20:0d:6e:7a:55:af:16:85:24:6e:9a:16: 48:18:f9:83:7a:b4:ec:20:5e:98:b4:80:71:cf:20: 2f:ab:f6:a7:0f:3a:43:fb:c6:86:c3:10:45:47:86: 5c:44:aa:10:64:28:18:bb:bc:14:ed:46:2e:60:1a: 95:25:b0:ad:98:b9:6e:71:6f:87:ed:5b:1f:b6:1e: 21:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:95:F8:B3:33:BE:CD:C9:03:E1:7F:05:19:E9:FA:1C:A7:07:80:00 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qJX4szO-zckD4X8FGen6HKcHgAA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.62.0/24 Signature Algorithm: sha256WithRSAEncryption 53:ef:47:27:38:87:e8:45:ce:2f:5b:55:2e:13:0f:e7:97:fc: 44:9c:a0:60:d6:36:f0:47:2a:c1:a1:d3:18:1f:66:22:32:d7: 8a:1c:7d:02:c8:bc:10:0f:63:50:d6:a8:7a:0d:77:3f:ee:f4: ef:42:3a:f7:62:96:1d:a4:b6:4e:a2:4e:79:41:e3:2b:9e:66: fa:ab:d2:e4:7c:c0:7d:15:ad:3f:6c:a6:d6:ba:cc:ee:5a:27: 7c:b1:96:8c:3a:2a:e3:5b:f9:41:f8:01:4e:87:81:24:7d:e4: 81:15:85:76:07:d4:10:86:b1:c5:22:fd:c8:11:af:89:f6:26: ab:35:3f:87:8e:86:08:11:b8:46:e7:68:1f:0f:22:aa:46:22: 14:f9:ac:a8:4a:2e:07:63:f4:f9:38:e3:e4:a0:a3:23:b9:65: 12:bd:1d:8d:71:c7:77:1b:59:d1:20:96:9e:be:5c:0d:08:dc: 78:9f:f0:6c:ca:69:4a:0e:d7:06:e4:29:95:54:63:57:4f:6d: ab:fe:9d:e8:f4:97:e3:d2:85:57:af:62:00:88:ff:16:80:bc: d7:74:0b:89:44:89:50:a5:14:a9:10:57:ae:7e:a3:e6:56:98: 83:b9:db:25:ff:3d:68:67:18:71:e5:8b:1f:9e:41:09:0c:15: 5c:f6:54:08 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJeMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE4OTVGOEIzMzNCRUNE QzkwM0UxN0YwNTE5RTlGQTFDQTcwNzgwMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJB4kAukDYtGrqxnUgHgpQrNUCNvdX7oCG4NG+Di3QhvyPwh4X revoAvzNvz9YCIemGI4qpfwhAiVc5evtNW+WxejiRLL8tP3EX3utgWHojCGycNwX SYMhK0YblIZDPlrUTHD3MODceZCdgbIdgzZIcLafxXAp5cM2taSXZcw8JCjk6m8I kz8CEERlzRwsV8DxzEh7sROvLz4TxNg48b5G7I+ohuNpT1zWZ7NlQ6PH9gCBNKY0 RiANbnpVrxaFJG6aFkgY+YN6tOwgXpi0gHHPIC+r9qcPOkP7xobDEEVHhlxEqhBk KBi7vBTtRi5gGpUlsK2YuW5xb4ftWx+2HiHjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUqJX4szO+zckD4X8FGen6HKcHgAAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3FKWDRzek8temNrRDRYOEZH ZW42SEtjSGdBQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT TD4wDQYJKoZIhvcNAQELBQADggEBAFPvRyc4h+hFzi9bVS4TD+eX/EScoGDWNvBH KsGh0xgfZiIy14ocfQLIvBAPY1DWqHoNdz/u9O9COvdilh2ktk6iTnlB4yueZvqr 0uR8wH0VrT9spta6zO5aJ3yxlow6KuNb+UH4AU6HgSR95IEVhXYH1BCGscUi/cgR r4n2Jqs1P4eOhggRuEbnaB8PIqpGIhT5rKhKLgdj9Pk44+SgoyO5ZRK9HY1xx3cb WdEglp6+XA0I3Hif8GzKaUoO1wbkKZVUY1dPbav+nej0l+PShVevYgCI/xaAvNd0 C4lEiVClFKkQV65+o+ZWmIO52yX/PWhnGHHlix+eQQkMFVz2VAg= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:45 2025 by rpki-client