$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yDfCjEPjqslz524qgiDNlp3xBPo.roa File: yDfCjEPjqslz524qgiDNlp3xBPo.roa (raw, json) Hash identifier: kx1fx5WQqHD0rKHrWluU1kkvBc0w0k+QiDfjeGA9MIw= Subject key identifier: C8:37:C2:8C:43:E3:AA:C9:73:E7:6E:2A:82:20:CD:96:9D:F1:04:FA Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25CC Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yDfCjEPjqslz524qgiDNlp3xBPo.roa Signing time: Fri 22 Aug 2025 08:42:15 +0000 ROA not before: Fri 22 Aug 2025 08:42:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24613 IP address blocks: 122.100.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9676 (0x25cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C837C28C43E3AAC973E76E2A8220CD969DF104FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ae:1c:c4:2f:eb:27:8b:66:0d:26:2f:18:fa: e8:a8:a7:ed:5b:25:f6:98:97:94:d2:8f:11:02:96: 2a:4a:82:4a:11:c3:e9:2d:75:0d:3c:e6:9d:cf:10: af:ce:23:8f:7f:0d:87:e0:0a:83:5b:1a:e9:f7:85: 5e:8b:ee:f1:17:97:a3:b7:65:dd:03:b0:29:d7:99: e9:91:b2:22:48:40:b0:a9:16:58:38:d1:95:89:06: 34:2c:07:41:c8:75:2e:52:3c:6e:65:df:d1:c6:a9: 95:af:0e:65:74:05:a8:b7:c7:68:bf:a5:a7:90:b1: b2:ab:69:d1:f1:2f:54:40:25:54:2c:66:29:59:b9: 74:7d:db:ae:92:64:b4:11:4a:e8:5a:f6:5b:0a:b1: 9f:bb:2a:71:07:a6:85:28:9f:da:10:47:9b:35:f9: ae:76:bf:c9:a0:82:06:6c:8a:67:74:ce:21:34:cd: e0:08:05:46:e4:45:82:43:d1:7b:69:8d:c8:21:53: 42:86:36:73:40:48:6e:d0:85:26:dc:12:6a:31:11: bb:87:af:32:54:72:02:84:b8:8d:0c:bf:0e:e5:96: c5:0b:df:48:eb:66:55:b3:b5:47:48:e6:8c:ba:26: 28:8e:d4:14:65:db:cf:ca:97:1a:33:39:ae:7e:fe: 2d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:37:C2:8C:43:E3:AA:C9:73:E7:6E:2A:82:20:CD:96:9D:F1:04:FA X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yDfCjEPjqslz524qgiDNlp3xBPo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.64.0/18 Signature Algorithm: sha256WithRSAEncryption 3a:f7:7b:27:f9:b2:91:83:df:29:93:5b:be:4c:8d:b3:9b:16: 63:57:26:23:27:94:4e:1b:8d:84:63:60:15:a2:50:88:59:4d: e0:35:cf:f5:49:44:5a:a8:dd:9a:15:19:23:73:3c:be:a4:8f: b5:04:96:d2:c8:71:27:6e:49:41:e6:d0:cd:a3:0a:44:62:79: 42:ad:a6:84:f4:bd:52:51:c2:a9:fa:64:7d:ca:60:3b:f6:c9: 8d:c3:7b:41:b2:97:11:3d:77:7c:95:34:76:59:7a:93:3e:ef: f1:f3:3d:01:99:2f:10:7f:91:35:53:fe:5e:0a:c1:5d:28:99: 3e:be:c9:71:c3:ed:2c:30:ca:78:71:ea:7e:cb:68:9f:ca:73: 2e:dc:a0:b5:47:df:9f:24:0b:fd:c1:68:60:69:bd:02:c5:c7: 28:49:e2:75:e8:0b:71:92:bc:0b:b9:5d:d2:24:ef:e8:a2:18: da:17:18:6c:cd:29:a0:ec:b1:1a:54:8a:94:64:b4:86:d4:b1: d5:c8:af:4c:3e:1c:64:00:59:cf:7c:a7:e7:3e:b5:b0:20:d1: 42:f3:e1:43:cc:29:b1:80:81:67:ad:bf:cf:a4:dc:b2:b5:f6: 50:54:d7:97:c6:6b:cb:ed:d6:c4:de:16:f0:06:35:6f:3e:83: 52:9e:21:90 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJcwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM4MzdDMjhDNDNFM0FB Qzk3M0U3NkUyQTgyMjBDRDk2OURGMTA0RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5rhzEL+sni2YNJi8Y+uiop+1bJfaYl5TSjxEClipKgkoRw+kt dQ085p3PEK/OI49/DYfgCoNbGun3hV6L7vEXl6O3Zd0DsCnXmemRsiJIQLCpFlg4 0ZWJBjQsB0HIdS5SPG5l39HGqZWvDmV0Bai3x2i/paeQsbKradHxL1RAJVQsZilZ uXR9266SZLQRSuha9lsKsZ+7KnEHpoUon9oQR5s1+a52v8mgggZsimd0ziE0zeAI BUbkRYJD0XtpjcghU0KGNnNASG7QhSbcEmoxEbuHrzJUcgKEuI0Mvw7llsUL30jr ZlWztUdI5oy6JiiO1BRl28/KlxozOa5+/i3RAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyDfCjEPjqslz524qgiDNlp3xBPowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3lEZkNqRVBqcXNsejUyNHFn aURObHAzeEJQby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6 ZEAwDQYJKoZIhvcNAQELBQADggEBADr3eyf5spGD3ymTW75MjbObFmNXJiMnlE4b jYRjYBWiUIhZTeA1z/VJRFqo3ZoVGSNzPL6kj7UEltLIcSduSUHm0M2jCkRieUKt poT0vVJRwqn6ZH3KYDv2yY3De0GylxE9d3yVNHZZepM+7/HzPQGZLxB/kTVT/l4K wV0omT6+yXHD7Swwynhx6n7LaJ/Kcy7coLVH358kC/3BaGBpvQLFxyhJ4nXoC3GS vAu5XdIk7+iiGNoXGGzNKaDssRpUipRktIbUsdXIr0w+HGQAWc98p+c+tbAg0ULz 4UPMKbGAgWetv8+k3LK19lBU15fGa8vt1sTeFvAGNW8+g1KeIZA= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:31 2025 by rpki-client