$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vHIhvvdoRCCnQ5nwc8uzG7TnRMw.roa File: vHIhvvdoRCCnQ5nwc8uzG7TnRMw.roa (raw, json) Hash identifier: y1U+AppljZI2KmuNgHzJOd7yGrO8KR54W02HJ2HyGF8= Subject key identifier: BC:72:21:BE:F7:68:44:20:A7:43:99:F0:73:CB:B3:1B:B4:E7:44:CC Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 272D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vHIhvvdoRCCnQ5nwc8uzG7TnRMw.roa Signing time: Fri 22 Aug 2025 08:43:37 +0000 ROA not before: Fri 22 Aug 2025 08:43:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4662 IP address blocks: 124.6.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10029 (0x272d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BC7221BEF7684420A74399F073CBB31BB4E744CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:be:51:1e:74:02:65:d2:89:26:93:64:bf:0f: 3c:15:ea:cc:39:15:63:d7:0b:da:af:f6:e9:93:08: f4:74:4e:db:fa:60:4d:d1:3d:cd:ef:1b:d8:1d:0f: 73:6b:a1:e2:b0:f7:c0:84:9e:59:6a:3a:26:d5:4e: f7:83:08:7d:b1:6a:30:52:ea:38:96:f3:a0:c1:ab: b6:f5:cb:de:7c:aa:69:2d:73:91:ab:1d:7e:f0:13: 56:5d:44:6c:30:2c:6e:de:d1:75:ef:8f:2f:65:55: 50:d9:83:ee:7c:78:c7:ca:07:7a:76:97:5b:8d:63: df:03:93:f7:09:c7:e9:57:91:2f:97:b7:ff:7b:07: c7:c1:36:f8:61:3f:0c:fe:05:2b:6a:fa:77:ce:99: 8c:5d:90:fa:6d:f6:50:93:78:fb:03:26:e2:08:37: 05:39:5b:93:7c:b0:cb:00:83:da:e5:f0:e9:f9:ef: 18:ce:6f:dc:81:0c:65:f9:46:a0:0c:85:81:3b:a5: 70:47:93:77:a8:4b:50:21:08:96:31:16:ac:e9:79: ff:5f:31:a8:d6:26:4d:ab:a9:ca:9e:90:45:63:03: 0d:80:66:ca:9b:c5:05:f1:62:a7:14:78:26:e2:78: a8:c8:39:d8:1a:22:cd:1b:e5:31:40:e5:2f:17:18: 2c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:72:21:BE:F7:68:44:20:A7:43:99:F0:73:CB:B3:1B:B4:E7:44:CC X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vHIhvvdoRCCnQ5nwc8uzG7TnRMw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.6.0.0/19 Signature Algorithm: sha256WithRSAEncryption 82:d7:b5:14:23:fe:2c:32:49:d6:bc:f3:c1:07:64:9b:11:97: b1:df:c4:e7:ff:5f:15:2f:d7:dd:a7:f3:ac:7d:be:ef:68:11: 7c:d3:a6:6f:97:60:04:8b:4b:05:b0:75:20:14:f4:4a:f2:3a: 7c:1e:1c:37:5f:18:b7:95:e9:86:7c:77:a4:67:6c:52:62:86: 44:e2:04:24:ed:69:bc:9b:ec:87:be:6e:f8:78:72:84:d4:d9: e1:ce:1e:5d:b1:1c:0a:fd:c3:81:e7:aa:8f:18:b9:e5:bd:c4: 0e:17:4a:4e:c1:bc:0a:dc:fc:1a:f8:30:c1:74:de:cc:53:4b: d8:41:1e:3b:b8:05:1a:f6:f4:e6:d5:d7:75:c8:ba:ff:00:d4: 25:3a:03:4b:af:b9:e4:d1:9f:fc:df:38:18:77:3f:5a:9b:6b: e4:d1:62:1c:20:ba:b4:54:b8:5a:eb:7e:ee:f2:53:1d:f4:41: c1:bf:e8:f5:a4:db:2a:ef:70:82:78:dc:0d:97:d4:f0:00:69: 7d:91:9f:ac:c0:7d:39:10:a9:06:b5:f9:ca:eb:ef:d5:6d:06: fa:d6:e0:62:37:e1:43:9b:4f:14:e4:7b:eb:96:2f:a1:e3:09: 3e:18:9a:dc:89:7b:13:6c:27:b3:41:f8:01:7b:77:ae:72:81: 5c:73:70:cb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJy0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJDNzIyMUJFRjc2ODQ0 MjBBNzQzOTlGMDczQ0JCMzFCQjRFNzQ0Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7vlEedAJl0okmk2S/DzwV6sw5FWPXC9qv9umTCPR0Ttv6YE3R Pc3vG9gdD3NroeKw98CEnllqOibVTveDCH2xajBS6jiW86DBq7b1y958qmktc5Gr HX7wE1ZdRGwwLG7e0XXvjy9lVVDZg+58eMfKB3p2l1uNY98Dk/cJx+lXkS+Xt/97 B8fBNvhhPwz+BStq+nfOmYxdkPpt9lCTePsDJuIINwU5W5N8sMsAg9rl8On57xjO b9yBDGX5RqAMhYE7pXBHk3eoS1AhCJYxFqzpef9fMajWJk2rqcqekEVjAw2AZsqb xQXxYqcUeCbieKjIOdgaIs0b5TFA5S8XGCz1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUvHIhvvdoRCCnQ5nwc8uzG7TnRMwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3ZISWh2dmRvUkNDblE1bndj OHV6RzdUblJNdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8 BgAwDQYJKoZIhvcNAQELBQADggEBAILXtRQj/iwySda888EHZJsRl7HfxOf/XxUv 192n86x9vu9oEXzTpm+XYASLSwWwdSAU9EryOnweHDdfGLeV6YZ8d6RnbFJihkTi BCTtabyb7Ie+bvh4coTU2eHOHl2xHAr9w4Hnqo8YueW9xA4XSk7BvArc/Br4MMF0 3sxTS9hBHju4BRr29ObV13XIuv8A1CU6A0uvueTRn/zfOBh3P1qba+TRYhwgurRU uFrrfu7yUx30QcG/6PWk2yrvcIJ43A2X1PAAaX2Rn6zAfTkQqQa1+crr79VtBvrW 4GI34UObTxTke+uWL6HjCT4YmtyJexNsJ7NB+AF7d65ygVxzcMs= -----END CERTIFICATE-----Generated at Sun Aug 24 11:40:29 2025 by rpki-client