$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xXY3K45ggrms-6s_FE0FYwDJh_A.roa File: xXY3K45ggrms-6s_FE0FYwDJh_A.roa (raw, json) Hash identifier: kZEdbLyi2XAGfOg0gyfVeo+c8asQ1Kd6aMghV6KS2yU= Subject key identifier: C5:76:37:2B:8E:60:82:B9:AC:FB:AB:3F:14:4D:05:63:00:C9:87:F0 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25E7 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xXY3K45ggrms-6s_FE0FYwDJh_A.roa Signing time: Fri 22 Aug 2025 08:42:22 +0000 ROA not before: Fri 22 Aug 2025 08:42:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 61.64.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9703 (0x25e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C576372B8E6082B9ACFBAB3F144D056300C987F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f1:cf:e6:db:96:f7:32:5f:78:11:21:10:d8: d3:79:97:2e:af:bc:ac:33:a2:b0:96:0a:ff:c2:88: ea:4e:34:cf:c0:cd:76:fd:07:15:2c:a9:ca:6b:00: d6:bc:64:dd:a1:e0:0c:57:ee:07:c6:15:84:22:50: d5:4d:1d:68:32:92:c7:e2:5a:c6:73:e6:10:e5:7b: ab:8b:e9:2b:c9:40:d6:d5:08:58:b5:92:00:6e:38: cb:bc:dc:8e:97:8a:d8:16:ae:31:03:03:0b:de:5d: 11:55:eb:d7:ee:91:e6:35:80:18:18:36:42:02:b4: f2:cc:92:eb:ba:12:f1:30:87:57:24:3e:86:2a:61: 1d:5f:b1:2c:8a:ca:a9:48:32:0a:ca:bd:7b:75:32: 47:56:7d:c7:e4:77:2b:f5:75:aa:82:25:55:67:ff: b7:9c:dc:1c:d3:73:27:26:1b:1a:21:3c:b8:9d:b5: 7a:97:44:9d:91:ff:41:c2:36:23:a5:90:26:e7:52: 2b:4d:35:03:f1:b9:37:2d:e8:c8:af:9d:98:30:d5: cd:1e:52:5d:e2:81:42:2b:24:4c:aa:ab:f2:a3:e1: f5:f0:40:58:39:84:5a:f4:45:2f:a1:1e:93:8c:12: 72:cc:a1:eb:28:93:3c:40:f9:67:9f:87:da:df:00: 6b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:76:37:2B:8E:60:82:B9:AC:FB:AB:3F:14:4D:05:63:00:C9:87:F0 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xXY3K45ggrms-6s_FE0FYwDJh_A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.24.0/21 Signature Algorithm: sha256WithRSAEncryption 60:6c:be:e1:8b:16:0c:4a:2c:87:03:7c:1b:67:1e:39:80:55: f3:f3:03:40:52:b2:57:0c:45:e0:0f:62:89:7c:9b:38:06:aa: d0:3f:7e:0b:d3:59:a8:00:8a:c9:f2:d0:2e:80:1d:59:2b:b7: 80:a3:cc:bf:8e:b9:08:42:ca:26:fe:31:cd:1e:95:14:08:85: 1d:eb:9f:36:56:85:ce:94:58:c8:bb:b6:d4:97:f1:63:f0:07: 23:e5:34:81:82:c6:79:19:ec:74:b7:a1:12:c0:ae:66:4a:ea: e7:ef:8a:52:53:49:58:86:56:71:7a:3d:71:d3:18:44:39:84: 0b:89:a8:b5:72:0f:cc:7c:e7:99:eb:fc:63:ed:4b:15:0e:99: b5:55:93:3a:51:35:b4:68:67:15:c0:bd:11:d7:db:01:8d:63: fa:e5:4f:7b:0c:63:be:c8:ed:4b:94:75:91:49:16:b8:cd:72: 53:a9:7d:c2:7c:45:ba:a0:3e:19:4f:63:34:54:cd:5c:a5:bb: a4:95:00:2e:a6:7c:dd:22:34:e9:d7:4a:ce:dd:f4:a0:64:10: 57:54:7a:e6:60:56:41:4f:42:9b:3b:40:c2:f3:f9:34:45:dd: 7c:c4:cd:f4:c1:84:80:c0:87:0a:73:c7:39:3e:dc:be:1f:49: 15:aa:8f:ec -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM1NzYzNzJCOEU2MDgy QjlBQ0ZCQUIzRjE0NEQwNTYzMDBDOTg3RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC68c/m25b3Ml94ESEQ2NN5ly6vvKwzorCWCv/CiOpONM/AzXb9 BxUsqcprANa8ZN2h4AxX7gfGFYQiUNVNHWgyksfiWsZz5hDle6uL6SvJQNbVCFi1 kgBuOMu83I6XitgWrjEDAwveXRFV69fukeY1gBgYNkICtPLMkuu6EvEwh1ckPoYq YR1fsSyKyqlIMgrKvXt1MkdWfcfkdyv1daqCJVVn/7ec3BzTcycmGxohPLidtXqX RJ2R/0HCNiOlkCbnUitNNQPxuTct6MivnZgw1c0eUl3igUIrJEyqq/Kj4fXwQFg5 hFr0RS+hHpOMEnLMoesokzxA+Wefh9rfAGsnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxXY3K45ggrms+6s/FE0FYwDJh/AwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3hYWTNLNDVnZ3Jtcy02c19G RTBGWXdESmhfQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 QBgwDQYJKoZIhvcNAQELBQADggEBAGBsvuGLFgxKLIcDfBtnHjmAVfPzA0BSslcM ReAPYol8mzgGqtA/fgvTWagAisny0C6AHVkrt4CjzL+OuQhCyib+Mc0elRQIhR3r nzZWhc6UWMi7ttSX8WPwByPlNIGCxnkZ7HS3oRLArmZK6ufvilJTSViGVnF6PXHT GEQ5hAuJqLVyD8x855nr/GPtSxUOmbVVkzpRNbRoZxXAvRHX2wGNY/rlT3sMY77I 7UuUdZFJFrjNclOpfcJ8RbqgPhlPYzRUzVylu6SVAC6mfN0iNOnXSs7d9KBkEFdU euZgVkFPQps7QMLz+TRF3XzEzfTBhIDAhwpzxzk+3L4fSRWqj+w= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:01 2025 by rpki-client