$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uHaNFs1qYby8_BUhHQe-8nnkIbE.roa File: uHaNFs1qYby8_BUhHQe-8nnkIbE.roa (raw, json) Hash identifier: vH7MZx9wNmgh7Em5QAhCVg12vRzAB3r0HLhmXz9CAKY= Subject key identifier: B8:76:8D:16:CD:6A:61:BC:BC:FC:15:21:1D:07:BE:F2:79:E4:21:B1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2664 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uHaNFs1qYby8_BUhHQe-8nnkIbE.roa Signing time: Fri 22 Aug 2025 08:42:53 +0000 ROA not before: Fri 22 Aug 2025 08:42:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 211.76.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9828 (0x2664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B8768D16CD6A61BCBCFC15211D07BEF279E421B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0f:0f:4e:c8:73:44:a7:b8:02:b4:af:c4:8f: 7a:0a:8d:7b:67:46:0b:5c:40:43:21:82:9a:20:6f: 13:fa:f0:15:a5:7c:81:c7:9c:52:70:ce:43:a9:00: 6f:19:35:6b:86:26:b4:4d:07:30:70:1c:29:95:ff: 1c:64:86:cf:d6:3c:0c:56:88:4f:72:f7:5b:d8:19: ea:03:f2:23:b4:6e:c9:6a:7a:b6:98:83:dd:e5:46: 77:5a:39:0c:ed:29:60:e4:a1:63:ce:83:46:33:38: 06:c0:bc:4c:9e:61:4d:13:12:02:93:d3:3b:34:8b: f6:92:ff:6a:42:7c:90:9e:ec:6c:d4:49:b7:00:0e: 28:9f:f8:fd:11:85:50:5f:68:3f:a5:9a:e6:dd:8c: 70:77:7f:09:b2:88:d8:a5:30:a3:0b:39:2d:ec:43: d5:d3:ac:a0:07:41:c9:50:56:72:73:4f:6a:26:76: a8:25:86:01:c4:90:c3:f8:09:0f:12:25:92:6a:e1: b1:85:a3:17:a5:ab:3e:71:bd:b9:fe:55:f9:39:c6: 07:06:f7:23:76:6a:2f:e9:47:c4:65:f3:70:44:aa: 37:ea:b9:94:69:02:dc:d9:9d:07:51:3f:52:51:c9: e0:c7:99:bf:b6:86:ad:f1:2c:aa:63:55:0f:cf:ee: cb:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:76:8D:16:CD:6A:61:BC:BC:FC:15:21:1D:07:BE:F2:79:E4:21:B1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uHaNFs1qYby8_BUhHQe-8nnkIbE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.52.0/23 Signature Algorithm: sha256WithRSAEncryption 76:21:53:7a:63:01:7d:5e:d8:0c:4c:ed:88:ee:1f:57:42:3c: 11:44:83:57:8a:e5:ee:29:38:25:aa:dd:ef:d1:47:58:8b:be: 88:91:e3:24:94:05:ba:c0:fe:c6:5d:d0:4b:01:81:45:73:cd: df:e3:03:04:52:73:d8:3e:6d:8b:b4:33:0d:ff:52:f2:16:54: 63:08:db:3d:2b:c1:cc:6c:71:e9:92:b4:48:47:da:e5:02:f2: d6:53:ae:ee:2e:9c:1a:4c:23:3f:5d:d6:50:f3:22:1a:11:3e: ab:ad:5b:04:d1:a4:bc:86:c4:a6:cf:9c:80:54:4b:94:0e:8b: 21:f2:48:08:ae:b7:88:61:e5:ef:72:d3:a9:06:6c:43:8d:f9: 41:03:10:98:6b:d7:b6:06:96:45:f7:d7:42:b8:6f:37:a6:c6: b5:80:26:6e:b7:8c:58:d3:56:74:b0:e1:89:b5:dd:f0:91:2f: 3f:de:d9:0f:5a:58:9f:0c:c6:54:78:47:a0:81:6b:ad:3e:5c: 8e:1c:9c:67:f5:28:1e:13:73:76:36:32:26:f4:9b:f8:30:54: e4:79:bd:47:29:b0:06:04:c0:16:5c:6b:b3:db:90:68:a2:7b: 99:77:16:ea:ba:f6:40:17:99:d9:83:09:d1:a1:f3:27:da:0e: 52:16:39:43 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJmQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI4NzY4RDE2Q0Q2QTYx QkNCQ0ZDMTUyMTFEMDdCRUYyNzlFNDIxQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDODw9OyHNEp7gCtK/Ej3oKjXtnRgtcQEMhgpogbxP68BWlfIHH nFJwzkOpAG8ZNWuGJrRNBzBwHCmV/xxkhs/WPAxWiE9y91vYGeoD8iO0bslqeraY g93lRndaOQztKWDkoWPOg0YzOAbAvEyeYU0TEgKT0zs0i/aS/2pCfJCe7GzUSbcA Diif+P0RhVBfaD+lmubdjHB3fwmyiNilMKMLOS3sQ9XTrKAHQclQVnJzT2omdqgl hgHEkMP4CQ8SJZJq4bGFoxelqz5xvbn+Vfk5xgcG9yN2ai/pR8Rl83BEqjfquZRp AtzZnQdRP1JRyeDHmb+2hq3xLKpjVQ/P7svfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUuHaNFs1qYby8/BUhHQe+8nnkIbEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3VIYU5GczFxWWJ5OF9CVWhI UWUtOG5ua0liRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHT TDQwDQYJKoZIhvcNAQELBQADggEBAHYhU3pjAX1e2AxM7YjuH1dCPBFEg1eK5e4p OCWq3e/RR1iLvoiR4ySUBbrA/sZd0EsBgUVzzd/jAwRSc9g+bYu0Mw3/UvIWVGMI 2z0rwcxscemStEhH2uUC8tZTru4unBpMIz9d1lDzIhoRPqutWwTRpLyGxKbPnIBU S5QOiyHySAiut4hh5e9y06kGbEON+UEDEJhr17YGlkX310K4bzemxrWAJm63jFjT VnSw4Ym13fCRLz/e2Q9aWJ8MxlR4R6CBa60+XI4cnGf1KB4Tc3Y2Mib0m/gwVOR5 vUcpsAYEwBZca7PbkGiie5l3Fuq69kAXmdmDCdGh8yfaDlIWOUM= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:35 2025 by rpki-client