$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vcqpv295Ha2s8s6dp9zZdHLPaeQ.roa File: vcqpv295Ha2s8s6dp9zZdHLPaeQ.roa (raw, json) Hash identifier: AcPOccsJUxSLI2vjYM7yBQn6XtTyJBXNDyPsse+2Nus= Subject key identifier: BD:CA:A9:BF:6F:79:1D:AD:AC:F2:CE:9D:A7:DC:D9:74:72:CF:69:E4 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 271B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vcqpv295Ha2s8s6dp9zZdHLPaeQ.roa Signing time: Fri 22 Aug 2025 08:43:34 +0000 ROA not before: Fri 22 Aug 2025 08:43:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 180.218.152.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10011 (0x271b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BDCAA9BF6F791DADACF2CE9DA7DCD97472CF69E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f0:62:50:7d:6c:51:42:29:de:fd:7e:a4:3e: 30:2c:8b:16:e3:3e:c3:41:9f:4b:25:2c:66:f8:6d: 18:48:b8:5f:7c:a8:83:b2:4e:b2:a4:d9:6f:93:18: 37:c5:12:a3:61:a5:2b:1d:f5:67:b4:8f:14:7f:83: a0:94:b8:6c:b1:ad:db:24:a1:95:7f:d8:d3:87:ba: f3:53:ce:87:a3:ed:d4:6c:9e:92:cc:44:82:59:39: 37:b2:84:bf:11:6b:9e:60:18:84:60:70:de:61:68: ed:8e:0a:88:42:82:f6:7b:52:15:8d:4a:5c:8e:4b: 6c:bf:0e:8f:2d:07:c2:d0:21:97:4b:d0:ad:dc:ea: b7:f6:2c:2a:92:40:ab:03:ba:24:4e:cc:15:8a:e9: b1:32:d0:ca:54:f1:7a:b4:05:c7:f7:6c:b8:98:49: e3:ef:1a:4e:19:76:90:e4:71:b8:65:4c:75:8a:a9: 8d:9b:e1:c2:2a:84:1d:b6:b7:84:a3:e8:ff:0e:32: 0b:3a:b5:4c:e6:9b:05:c2:af:5f:ed:a7:c3:6b:7b: 4c:9e:a3:80:90:89:ed:e7:f3:1d:2e:2f:35:f0:94: 45:c1:d7:8e:05:f2:39:2d:74:61:bc:3e:ec:b1:31: 58:a0:12:87:75:53:68:ae:c2:60:02:0c:80:cd:fe: da:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CA:A9:BF:6F:79:1D:AD:AC:F2:CE:9D:A7:DC:D9:74:72:CF:69:E4 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vcqpv295Ha2s8s6dp9zZdHLPaeQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.152.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:60:83:7a:5c:a5:41:58:b8:2c:02:81:b4:70:11:a6:04:4b: a7:36:9c:c3:c9:35:a0:68:94:d1:8c:98:a5:9f:4f:c4:ba:47: 2c:0a:98:50:ea:e7:ae:f0:32:6d:23:30:e0:e4:a4:d8:7d:8a: 5d:2a:ac:26:2b:f8:b7:32:d6:f3:94:29:a3:ab:be:ee:05:4a: 90:cb:82:cb:14:ca:d5:d3:e5:94:88:41:4a:af:32:af:59:75: 8a:c1:dc:1c:1f:d7:e4:37:a1:7f:bb:b6:bf:ab:d3:6a:3d:a5: ad:46:98:ee:19:ee:7c:bf:e6:68:03:51:3f:43:1a:4f:fa:e5: 67:11:07:bd:dd:0d:50:bd:fd:f9:e9:6e:f2:ed:e7:ad:fb:f7: 57:cd:60:23:bd:32:c2:8b:08:42:c3:85:a0:a4:62:36:7b:fb: 9e:fb:05:03:d6:85:02:c7:15:7e:50:c8:eb:53:79:43:15:7a: 01:61:f1:80:e3:f3:13:7a:92:2c:0f:91:72:1f:ab:e8:dd:3b: 79:87:84:9f:c3:2b:5e:47:74:da:a5:68:09:30:86:42:97:63: 7a:23:23:65:c1:de:d2:33:29:36:0c:fc:90:61:39:35:f4:a5: 24:5b:8f:0d:5b:2a:4e:e1:9f:07:4d:ea:fd:4e:2e:09:1b:41: ce:30:fc:c0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJxswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJEQ0FBOUJGNkY3OTFE QURBQ0YyQ0U5REE3RENEOTc0NzJDRjY5RTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC58GJQfWxRQine/X6kPjAsixbjPsNBn0slLGb4bRhIuF98qIOy TrKk2W+TGDfFEqNhpSsd9We0jxR/g6CUuGyxrdskoZV/2NOHuvNTzoej7dRsnpLM RIJZOTeyhL8Ra55gGIRgcN5haO2OCohCgvZ7UhWNSlyOS2y/Do8tB8LQIZdL0K3c 6rf2LCqSQKsDuiROzBWK6bEy0MpU8Xq0Bcf3bLiYSePvGk4ZdpDkcbhlTHWKqY2b 4cIqhB22t4Sj6P8OMgs6tUzmmwXCr1/tp8Nre0yeo4CQie3n8x0uLzXwlEXB144F 8jktdGG8PuyxMVigEod1U2iuwmACDIDN/toXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUvcqpv295Ha2s8s6dp9zZdHLPaeQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3ZjcXB2Mjk1SGEyczhzNmRw OXpaZEhMUGFlUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2pgwDQYJKoZIhvcNAQELBQADggEBAE5gg3pcpUFYuCwCgbRwEaYES6c2nMPJNaBo lNGMmKWfT8S6RywKmFDq567wMm0jMODkpNh9il0qrCYr+Lcy1vOUKaOrvu4FSpDL gssUytXT5ZSIQUqvMq9ZdYrB3Bwf1+Q3oX+7tr+r02o9pa1GmO4Z7ny/5mgDUT9D Gk/65WcRB73dDVC9/fnpbvLt563791fNYCO9MsKLCELDhaCkYjZ7+577BQPWhQLH FX5QyOtTeUMVegFh8YDj8xN6kiwPkXIfq+jdO3mHhJ/DK15HdNqlaAkwhkKXY3oj I2XB3tIzKTYM/JBhOTX0pSRbjw1bKk7hnwdN6v1OLgkbQc4w/MA= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:12 2025 by rpki-client