$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vLvNGcfUXYxgYGMhYLVSsG7HfyI.roa File: vLvNGcfUXYxgYGMhYLVSsG7HfyI.roa (raw, json) Hash identifier: T9ENIneXt9+KUJtxAfVgO7rhclMczVMhEgaP6uaES6U= Subject key identifier: BC:BB:CD:19:C7:D4:5D:8C:60:60:63:21:60:B5:52:B0:6E:C7:7F:22 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2644 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vLvNGcfUXYxgYGMhYLVSsG7HfyI.roa Signing time: Fri 22 Aug 2025 08:42:46 +0000 ROA not before: Fri 22 Aug 2025 08:42:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 180.218.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9796 (0x2644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BCBBCD19C7D45D8C6060632160B552B06EC77F22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bd:ac:7a:21:ae:70:86:b3:11:a5:67:dd:37: 23:3f:1c:ef:d7:57:65:2d:d2:9c:91:28:fe:db:a0: 30:2b:60:d9:a3:f8:62:8e:87:6f:02:29:66:bc:c8: b7:7f:ca:15:80:ea:b7:75:a3:eb:4f:27:82:c1:9b: cf:b7:3b:df:5d:73:26:ac:a3:8f:2d:ba:d1:76:d5: 53:90:3a:a3:50:09:af:62:66:b3:fd:96:25:97:22: 8e:45:33:a0:d9:39:9e:30:b2:ff:a8:b7:7b:2c:c3: e9:0a:bc:2a:c4:a7:4e:19:05:66:70:13:7e:b4:47: 75:ac:d7:74:10:f8:6e:f4:39:61:ee:d1:fc:cb:78: 8f:c1:f9:e5:7e:99:50:bb:33:f7:2b:39:54:21:ee: 49:23:6d:42:ff:1c:6a:00:fa:21:f8:a6:56:d2:29: 14:96:71:56:22:e3:1f:0e:95:fa:92:82:92:92:b6: a8:f6:27:7e:47:be:4c:7f:98:ad:46:2f:6b:36:f8: 17:9a:d4:0d:70:ef:68:df:f4:1a:27:e8:78:6c:07: f1:a6:17:05:00:55:d1:70:d6:89:5d:3b:23:8d:82: 7c:73:cc:22:4e:01:d9:5b:b7:5e:04:d4:38:6d:52: b8:0b:18:d5:c1:80:47:4b:e0:c3:96:92:86:e7:a6: 98:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:BB:CD:19:C7:D4:5D:8C:60:60:63:21:60:B5:52:B0:6E:C7:7F:22 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vLvNGcfUXYxgYGMhYLVSsG7HfyI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.120.0/22 Signature Algorithm: sha256WithRSAEncryption 84:02:89:07:68:73:15:b5:d7:cc:5d:3c:a3:91:1e:c8:05:91: b9:34:af:5d:b3:56:a1:8c:37:b5:9f:88:7c:a9:4e:28:4d:04: f1:ba:f3:fd:5b:39:ae:67:94:50:d7:bd:44:f0:f1:fd:4f:e1: 05:77:5d:6c:ac:b0:e2:78:6b:cf:2d:7f:4a:3a:22:2f:a8:09: b0:c3:28:b7:79:36:46:ad:8e:60:72:b3:64:8d:ef:fd:ad:81: 8d:0d:57:87:86:2d:71:59:ff:bb:e8:2b:e4:17:39:c1:4b:99: df:98:68:35:65:91:8a:4e:b6:ce:b8:42:ee:20:4e:28:90:32: 1f:55:52:e9:ef:09:f5:68:d3:e9:77:f2:78:9b:f7:fd:58:01: af:8f:d0:29:1f:14:73:e5:32:79:1c:37:f1:73:e8:cb:20:61: a3:dc:e2:89:47:bc:f0:28:a3:cf:ff:c5:e4:d4:76:12:4c:25: 7c:30:8b:87:f3:09:77:04:45:58:b5:20:ca:f6:32:c9:31:a0: 3c:92:c8:17:24:98:0a:d9:85:61:3e:e1:d2:69:07:e9:5b:38: 00:82:54:16:03:ff:e9:19:b2:74:c1:6b:41:73:fd:92:d2:6b: f9:a6:d3:70:51:ab:2a:7c:38:79:86:18:d5:a7:c2:f5:b8:23: ba:c3:a3:99 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJDQkJDRDE5QzdENDVE OEM2MDYwNjMyMTYwQjU1MkIwNkVDNzdGMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8vax6Ia5whrMRpWfdNyM/HO/XV2Ut0pyRKP7boDArYNmj+GKO h28CKWa8yLd/yhWA6rd1o+tPJ4LBm8+3O99dcyaso48tutF21VOQOqNQCa9iZrP9 liWXIo5FM6DZOZ4wsv+ot3ssw+kKvCrEp04ZBWZwE360R3Ws13QQ+G70OWHu0fzL eI/B+eV+mVC7M/crOVQh7kkjbUL/HGoA+iH4plbSKRSWcVYi4x8OlfqSgpKStqj2 J35Hvkx/mK1GL2s2+Bea1A1w72jf9Bon6HhsB/GmFwUAVdFw1oldOyONgnxzzCJO Adlbt14E1DhtUrgLGNXBgEdL4MOWkobnppiRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUvLvNGcfUXYxgYGMhYLVSsG7HfyIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3ZMdk5HY2ZVWFl4Z1lHTWhZ TFZTc0c3SGZ5SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2ngwDQYJKoZIhvcNAQELBQADggEBAIQCiQdocxW118xdPKORHsgFkbk0r12zVqGM N7WfiHypTihNBPG68/1bOa5nlFDXvUTw8f1P4QV3XWyssOJ4a88tf0o6Ii+oCbDD KLd5NkatjmBys2SN7/2tgY0NV4eGLXFZ/7voK+QXOcFLmd+YaDVlkYpOts64Qu4g TiiQMh9VUunvCfVo0+l38nib9/1YAa+P0CkfFHPlMnkcN/Fz6MsgYaPc4olHvPAo o8//xeTUdhJMJXwwi4fzCXcERVi1IMr2MskxoDySyBckmArZhWE+4dJpB+lbOACC VBYD/+kZsnTBa0Fz/ZLSa/mm03BRqyp8OHmGGNWnwvW4I7rDo5k= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:35 2025 by rpki-client