$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/y_PjqjU1a5e7C8pbcGE8g11feQw.roa File: y_PjqjU1a5e7C8pbcGE8g11feQw.roa (raw, json) Hash identifier: b0W3MAix2DAJN1dTDm47+WKEKrnFhJUpfZ2EPMstUHY= Subject key identifier: CB:F3:E3:AA:35:35:6B:97:BB:0B:CA:5B:70:61:3C:83:5D:5F:79:0C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26C5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/y_PjqjU1a5e7C8pbcGE8g11feQw.roa Signing time: Fri 22 Aug 2025 08:43:14 +0000 ROA not before: Fri 22 Aug 2025 08:43:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 211.76.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9925 (0x26c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CBF3E3AA35356B97BB0BCA5B70613C835D5F790C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:af:01:e4:f3:95:84:d2:d6:65:af:fd:f6:2d: 79:02:8e:14:49:c5:32:ad:a7:21:86:ec:81:68:1a: 67:1d:63:41:e1:71:7f:40:3d:55:30:dc:1f:d6:40: 94:55:5b:f5:08:78:51:1d:2a:86:ae:8f:da:84:b4: 6d:52:3a:9b:67:5e:60:6a:42:69:6d:5c:90:62:51: 30:19:f4:4f:47:2f:82:e7:59:3c:f9:ab:a1:a9:16: cf:8a:02:63:f5:c7:50:41:88:0f:fd:65:26:31:47: b9:c4:09:48:f2:62:d0:1b:4e:3e:3f:90:3a:d4:3f: e6:ee:ef:f5:ab:91:53:cf:8b:d4:b3:93:53:f7:39: 6c:e6:8a:8d:b2:9e:6d:70:66:12:31:5b:ef:5a:13: c9:0e:e9:c8:05:fc:4b:1a:5a:a2:30:be:f9:62:fc: 2e:bb:04:7d:3f:6c:bb:88:47:8c:d0:0a:69:3e:14: 00:13:9e:16:2c:1a:e1:a9:47:24:da:b0:f4:71:b1: b8:66:ed:e1:1f:a4:13:f9:04:d3:13:e1:26:b0:fa: 17:53:24:36:0a:d7:c2:d1:18:2e:0a:13:62:6b:b4: 66:45:84:19:38:79:fd:95:0c:f6:72:b0:92:b1:c8: 73:49:86:ee:ab:e4:04:73:41:bb:20:c0:de:25:57: dd:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F3:E3:AA:35:35:6B:97:BB:0B:CA:5B:70:61:3C:83:5D:5F:79:0C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/y_PjqjU1a5e7C8pbcGE8g11feQw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.32.0/19 Signature Algorithm: sha256WithRSAEncryption 9b:72:d8:c9:b9:a0:01:bc:ff:00:bc:1f:e3:01:3f:72:c4:9b: cf:bd:0e:69:35:f9:62:46:9a:5a:b8:25:cc:97:55:36:ca:76: 48:17:05:83:b0:2e:76:9b:da:46:86:10:af:ac:48:17:66:2c: e2:9f:65:e1:80:84:ab:19:70:7c:9a:55:13:95:c3:8d:dc:25: a0:fa:0b:63:94:a3:87:e0:ef:63:ec:85:80:75:67:68:dd:ec: fc:e9:a7:1a:e5:c4:4d:29:52:74:88:61:28:5b:7b:25:9b:aa: c6:66:93:37:05:7e:6e:fe:ae:57:7c:22:92:be:76:ab:35:38: a7:45:b0:c0:5d:20:8c:9a:b9:a0:b9:50:88:28:54:36:f1:7c: 77:c2:f6:94:01:11:ae:a8:87:2f:94:41:13:dc:41:84:8f:fe: 53:6a:83:6b:b1:41:b5:e7:38:9a:1e:a6:b9:22:20:7d:c7:29: 49:c0:ea:13:61:06:b7:54:d8:f4:5f:9a:a1:c3:3d:7f:df:bc: 40:c3:a0:37:08:3e:de:c8:2e:25:1c:22:0f:45:83:f0:b1:3b: ad:80:67:ee:2a:c6:a6:8b:44:65:07:1e:8e:57:a9:7c:28:a2: a8:66:e7:70:01:ca:89:4c:d4:5a:8d:69:ce:a0:2f:76:e7:5d: 8f:1c:a0:9c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJsUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENCRjNFM0FBMzUzNTZC OTdCQjBCQ0E1QjcwNjEzQzgzNUQ1Rjc5MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDerwHk85WE0tZlr/32LXkCjhRJxTKtpyGG7IFoGmcdY0HhcX9A PVUw3B/WQJRVW/UIeFEdKoauj9qEtG1SOptnXmBqQmltXJBiUTAZ9E9HL4LnWTz5 q6GpFs+KAmP1x1BBiA/9ZSYxR7nECUjyYtAbTj4/kDrUP+bu7/WrkVPPi9Szk1P3 OWzmio2ynm1wZhIxW+9aE8kO6cgF/EsaWqIwvvli/C67BH0/bLuIR4zQCmk+FAAT nhYsGuGpRyTasPRxsbhm7eEfpBP5BNMT4Saw+hdTJDYK18LRGC4KE2JrtGZFhBk4 ef2VDPZysJKxyHNJhu6r5ARzQbsgwN4lV92bAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUy/PjqjU1a5e7C8pbcGE8g11feQwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3lfUGpxalUxYTVlN0M4cGJj R0U4ZzExZmVRdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXT TCAwDQYJKoZIhvcNAQELBQADggEBAJty2Mm5oAG8/wC8H+MBP3LEm8+9Dmk1+WJG mlq4JcyXVTbKdkgXBYOwLnab2kaGEK+sSBdmLOKfZeGAhKsZcHyaVROVw43cJaD6 C2OUo4fg72PshYB1Z2jd7PzppxrlxE0pUnSIYShbeyWbqsZmkzcFfm7+rld8IpK+ dqs1OKdFsMBdIIyauaC5UIgoVDbxfHfC9pQBEa6ohy+UQRPcQYSP/lNqg2uxQbXn OJoeprkiIH3HKUnA6hNhBrdU2PRfmqHDPX/fvEDDoDcIPt7ILiUcIg9Fg/CxO62A Z+4qxqaLRGUHHo5XqXwooqhm53AByolM1FqNac6gL3bnXY8coJw= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:38 2025 by rpki-client