$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sFRdHqpjukLVgdxwK6TiwGr3Vek.roa File: sFRdHqpjukLVgdxwK6TiwGr3Vek.roa (raw, json) Hash identifier: VXA02kX8hk9xZvfL+4aWyMtIYt9ivz9dLVydlJfwVf8= Subject key identifier: B0:54:5D:1E:AA:63:BA:42:D5:81:DC:70:2B:A4:E2:C0:6A:F7:55:E9 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26B7 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sFRdHqpjukLVgdxwK6TiwGr3Vek.roa Signing time: Fri 22 Aug 2025 08:43:11 +0000 ROA not before: Fri 22 Aug 2025 08:43:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 123.0.40.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9911 (0x26b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B0545D1EAA63BA42D581DC702BA4E2C06AF755E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cd:17:a7:dd:f9:93:6d:1d:f5:ff:df:b7:1f: aa:38:53:a2:33:38:ae:00:ee:fa:fc:76:03:e9:38: ad:b1:2f:f2:a6:c2:de:b5:f8:ac:8d:d5:99:e3:1e: c6:bf:e8:02:77:bb:2d:62:bd:63:bc:c3:47:b1:af: b2:2a:0c:20:a1:ef:ac:4a:a3:83:b6:8d:33:de:ba: 7e:fe:1f:38:c1:46:a2:46:d7:28:d7:49:41:36:16: c4:89:8b:87:8e:30:b7:aa:a2:72:9c:67:58:60:4f: 25:12:9a:ff:5c:96:07:72:54:0f:d6:cc:9b:3c:47: b0:d2:59:22:ec:63:a3:71:3f:71:d7:75:52:7d:3f: ae:85:30:3f:c7:90:1d:0a:d6:9d:e3:07:99:82:a5: ca:82:c4:b2:4f:5b:d9:4a:d1:5a:cb:fd:79:b0:00: 3b:0f:68:1d:37:2c:66:6c:f2:d5:1a:51:54:87:d6: f1:48:a7:ff:ee:60:e5:d9:e7:0d:49:f1:b5:11:34: 83:11:53:c1:a1:2b:d7:66:aa:24:1f:a1:f8:81:e3: 9a:3a:f0:d9:18:bf:7a:8c:f7:11:63:f9:00:6c:19: ad:e9:1b:8f:71:a8:40:a9:40:8e:16:fa:3a:63:32: 52:89:a1:ac:10:64:c4:84:e3:dc:2c:b0:e5:c5:85: 4f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:54:5D:1E:AA:63:BA:42:D5:81:DC:70:2B:A4:E2:C0:6A:F7:55:E9 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sFRdHqpjukLVgdxwK6TiwGr3Vek.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.40.0/23 Signature Algorithm: sha256WithRSAEncryption 43:88:31:b4:13:cf:e8:6f:d2:85:7f:1d:c8:45:82:f1:b8:26: aa:68:48:a9:a2:69:d3:32:4e:51:48:40:28:8e:9c:80:e4:bc: 17:77:2d:e2:15:c6:c6:79:f2:5f:a2:99:30:c6:0f:d3:05:b3: 51:55:39:42:19:a1:f5:60:17:f5:91:27:b2:ab:ff:84:08:5d: 45:70:77:35:d3:9b:82:8f:ee:15:48:4a:ba:22:67:2d:d5:4b: 00:8b:0d:d1:cb:97:58:ff:1a:bf:8d:57:b1:b4:64:9d:01:e5: 36:8e:8d:f5:ec:9d:7e:ae:ed:3f:b0:ed:3b:ab:68:1d:c2:19: cf:da:ab:ed:53:d9:ea:7b:b1:e4:99:8c:9b:5b:5a:71:33:dc: b0:fd:2f:61:9e:85:a9:e8:61:43:1e:83:7b:c1:75:b4:81:6e: f9:82:56:72:38:81:85:4b:32:28:3d:00:3d:b1:bd:4c:ac:ab: 69:c5:34:52:4a:d2:60:09:88:e7:be:f8:11:88:7b:46:07:d8: ec:03:50:ba:6a:b3:7a:47:24:29:d7:78:56:d2:3a:d7:b3:2e: e9:e1:b8:47:53:02:2b:96:97:db:1b:72:64:9b:18:f0:2b:99: b4:a9:08:ac:2e:41:14:42:1a:b2:66:85:68:ec:d8:78:ea:20: 68:93:88:3b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJrcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIwNTQ1RDFFQUE2M0JB NDJENTgxREM3MDJCQTRFMkMwNkFGNzU1RTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUzRen3fmTbR31/9+3H6o4U6IzOK4A7vr8dgPpOK2xL/Kmwt61 +KyN1ZnjHsa/6AJ3uy1ivWO8w0exr7IqDCCh76xKo4O2jTPeun7+HzjBRqJG1yjX SUE2FsSJi4eOMLeqonKcZ1hgTyUSmv9clgdyVA/WzJs8R7DSWSLsY6NxP3HXdVJ9 P66FMD/HkB0K1p3jB5mCpcqCxLJPW9lK0VrL/XmwADsPaB03LGZs8tUaUVSH1vFI p//uYOXZ5w1J8bURNIMRU8GhK9dmqiQfofiB45o68NkYv3qM9xFj+QBsGa3pG49x qECpQI4W+jpjMlKJoawQZMSE49wssOXFhU8jAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUsFRdHqpjukLVgdxwK6TiwGr3VekwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3NGUmRIcXBqdWtMVmdkeHdL NlRpd0dyM1Zlay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7 ACgwDQYJKoZIhvcNAQELBQADggEBAEOIMbQTz+hv0oV/HchFgvG4JqpoSKmiadMy TlFIQCiOnIDkvBd3LeIVxsZ58l+imTDGD9MFs1FVOUIZofVgF/WRJ7Kr/4QIXUVw dzXTm4KP7hVISroiZy3VSwCLDdHLl1j/Gr+NV7G0ZJ0B5TaOjfXsnX6u7T+w7Tur aB3CGc/aq+1T2ep7seSZjJtbWnEz3LD9L2GehanoYUMeg3vBdbSBbvmCVnI4gYVL Mig9AD2xvUysq2nFNFJK0mAJiOe++BGIe0YH2OwDULpqs3pHJCnXeFbSOtezLunh uEdTAiuWl9sbcmSbGPArmbSpCKwuQRRCGrJmhWjs2HjqIGiTiDs= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:36 2025 by rpki-client