$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xw3Rgyu5iDoI3267mdM49M2tZrM.roa File: xw3Rgyu5iDoI3267mdM49M2tZrM.roa (raw, json) Hash identifier: Qlvii19udt9ENu0J6YqsOFueKSG0GlOQlIXJdifGBqQ= Subject key identifier: C7:0D:D1:83:2B:B9:88:3A:08:DF:6E:BB:99:D3:38:F4:CD:AD:66:B3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 270D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xw3Rgyu5iDoI3267mdM49M2tZrM.roa Signing time: Fri 22 Aug 2025 08:43:31 +0000 ROA not before: Fri 22 Aug 2025 08:43:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 123.0.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9997 (0x270d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C70DD1832BB9883A08DF6EBB99D338F4CDAD66B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:79:6d:b6:f8:c7:b7:9b:22:44:62:42:d9:77: 73:10:cc:da:79:49:20:29:b4:04:df:c4:ec:9d:e2: 09:a5:70:e1:e0:00:03:81:5e:48:0c:d4:32:33:7b: 48:ad:41:81:0b:80:ce:72:85:a9:6d:d1:58:0e:39: e4:a1:ed:7e:45:e8:19:a9:35:54:88:d2:62:a0:e9: f2:61:dc:2f:ae:4e:d1:7a:dd:de:10:a4:ea:20:89: 8b:47:f8:78:b8:ed:b0:a7:36:3f:ee:06:50:ef:14: da:b4:5c:11:b3:51:f2:5c:f3:06:5c:db:cf:21:4f: 76:ba:d0:53:2b:00:6f:54:2c:ee:e5:cf:f2:81:57: 66:f9:0b:2e:a4:45:0f:72:bc:6a:74:30:ba:bb:de: c7:3c:b1:94:91:c3:77:9a:f1:ac:2d:4e:85:60:e4: f7:fb:38:da:c0:46:a1:f6:ff:4c:59:d1:41:05:48: cf:19:ba:9f:c1:0a:a6:0b:de:d1:e4:94:68:1b:a1: aa:a5:e0:78:e5:45:36:f5:15:08:05:61:a8:da:ae: bd:aa:7a:d3:71:8a:31:d7:99:ae:3c:7f:2e:29:11: 6b:98:a4:a3:06:00:64:82:4b:71:6d:21:c4:05:97: 7d:c9:7f:57:dc:a5:42:c5:c0:07:b6:a3:1b:f8:44: 70:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0D:D1:83:2B:B9:88:3A:08:DF:6E:BB:99:D3:38:F4:CD:AD:66:B3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xw3Rgyu5iDoI3267mdM49M2tZrM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.42.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:47:65:d8:0e:d1:8b:1b:8a:b8:d7:89:ff:b6:4c:55:9c:6c: 92:b9:10:d5:c9:14:69:be:99:bd:2b:4c:1f:79:47:5a:21:25: 04:ec:d2:9e:06:8a:2e:1c:b0:16:27:a7:fe:5b:33:98:28:a5: bc:e5:82:37:86:cd:02:68:58:04:b0:42:c8:40:f6:67:c0:d1: 9f:29:43:f3:10:5d:da:fc:6d:f6:b2:6c:0e:7c:77:84:af:83: 77:bb:6c:50:9f:45:1d:b5:b1:dd:2c:d9:c6:7b:97:52:c4:0f: 79:35:cf:5a:e3:35:1a:84:ea:68:23:1d:ee:a3:45:11:31:8d: 80:71:90:f9:63:23:26:27:76:0e:83:11:0a:d1:f9:24:dc:0e: b5:c9:fe:48:a0:65:aa:5f:2c:cc:c3:ba:31:4c:14:b8:46:89: b2:fa:9a:65:2d:54:d2:02:32:22:46:01:5f:d6:b2:50:3f:7c: 87:54:84:b7:f4:d8:04:97:1a:49:b4:f4:4f:bc:50:a1:95:d9: 78:74:b5:8a:1d:93:99:62:2d:2c:7e:2f:7f:8f:94:6c:df:00: 82:b5:46:12:b5:df:e4:66:cf:83:7e:89:fd:c3:cc:9c:10:d3: 5e:9d:7d:34:06:ad:13:a1:05:d3:b1:fb:d9:07:e0:4a:70:0f: 61:9d:1c:74 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJw0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM3MEREMTgzMkJCOTg4 M0EwOERGNkVCQjk5RDMzOEY0Q0RBRDY2QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEeW22+Me3myJEYkLZd3MQzNp5SSAptATfxOyd4gmlcOHgAAOB XkgM1DIze0itQYELgM5yhalt0VgOOeSh7X5F6BmpNVSI0mKg6fJh3C+uTtF63d4Q pOogiYtH+Hi47bCnNj/uBlDvFNq0XBGzUfJc8wZc288hT3a60FMrAG9ULO7lz/KB V2b5Cy6kRQ9yvGp0MLq73sc8sZSRw3ea8awtToVg5Pf7ONrARqH2/0xZ0UEFSM8Z up/BCqYL3tHklGgboaql4HjlRTb1FQgFYajarr2qetNxijHXma48fy4pEWuYpKMG AGSCS3FtIcQFl33Jf1fcpULFwAe2oxv4RHBVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxw3Rgyu5iDoI3267mdM49M2tZrMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3h3M1JneXU1aURvSTMyNjdt ZE00OU0ydFpyTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 ACowDQYJKoZIhvcNAQELBQADggEBAHtHZdgO0YsbirjXif+2TFWcbJK5ENXJFGm+ mb0rTB95R1ohJQTs0p4Gii4csBYnp/5bM5gopbzlgjeGzQJoWASwQshA9mfA0Z8p Q/MQXdr8bfaybA58d4Svg3e7bFCfRR21sd0s2cZ7l1LED3k1z1rjNRqE6mgjHe6j RRExjYBxkPljIyYndg6DEQrR+STcDrXJ/kigZapfLMzDujFMFLhGibL6mmUtVNIC MiJGAV/WslA/fIdUhLf02ASXGkm09E+8UKGV2Xh0tYodk5liLSx+L3+PlGzfAIK1 RhK13+Rmz4N+if3DzJwQ016dfTQGrROhBdOx+9kH4EpwD2GdHHQ= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:42 2025 by rpki-client