$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zIwkPKyG24B7QyRd6Hv3mBUEd38.roa File: zIwkPKyG24B7QyRd6Hv3mBUEd38.roa (raw, json) Hash identifier: y5hB7aruG2gkaKV91O0ZTAsFQDawN01RGIT5I8hW6OQ= Subject key identifier: CC:8C:24:3C:AC:86:DB:80:7B:43:24:5D:E8:7B:F7:98:15:04:77:7F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 269E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zIwkPKyG24B7QyRd6Hv3mBUEd38.roa Signing time: Fri 22 Aug 2025 08:43:06 +0000 ROA not before: Fri 22 Aug 2025 08:43:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 2407:4b00:ff01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9886 (0x269e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CC8C243CAC86DB807B43245DE87BF7981504777F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d3:5a:40:46:3b:7c:cb:0a:1a:43:be:96:ad: 64:f8:3a:73:d2:09:6e:1d:9f:57:a0:b2:d5:54:ea: c7:7f:8e:fc:94:3c:71:e8:27:b6:ee:18:c1:bf:55: 09:a3:72:e5:ba:34:a0:96:55:e7:2b:dc:19:b3:94: 52:b5:35:55:94:a5:eb:f8:31:60:ab:ca:db:cf:8b: 54:2f:c6:89:c4:4e:18:a9:4d:8b:b0:9d:d1:0c:97: 4f:ea:f9:bf:35:ee:13:45:4c:c3:1f:77:a3:b3:97: 4b:55:13:bd:b9:f4:c6:8a:ec:38:ab:e4:82:ae:34: 91:8e:76:62:e2:bd:c0:54:0a:fe:43:c5:9d:5d:71: 66:72:77:52:75:87:0e:8d:7f:6f:f1:be:00:d2:99: 7a:33:dc:81:5e:54:08:7c:3b:7c:50:8f:41:48:f8: de:d5:bc:a2:2d:d4:9a:e5:90:2d:68:aa:6d:e2:11: e4:af:3d:05:13:63:c8:e8:31:eb:f9:01:07:7b:42: 60:b3:44:1b:6f:b0:b8:53:54:c7:e4:c9:2e:9c:79: cf:3d:b0:ff:73:44:bf:b9:00:fd:b5:ce:17:41:5a: cb:54:66:66:fa:9d:d3:84:67:d4:77:71:5e:e5:d5: 7a:5d:56:bb:5b:cd:96:63:cb:ce:f4:f7:17:59:52: b7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:8C:24:3C:AC:86:DB:80:7B:43:24:5D:E8:7B:F7:98:15:04:77:7F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zIwkPKyG24B7QyRd6Hv3mBUEd38.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4b00:ff01::/48 Signature Algorithm: sha256WithRSAEncryption 40:78:07:4d:0c:f2:71:cd:91:1e:45:04:cd:da:2a:67:cb:71: 29:f5:07:5e:c9:98:4b:91:0e:16:55:06:44:ea:72:1b:05:05: 88:01:68:71:af:fa:7e:3a:02:77:c7:ef:77:ab:36:2d:07:cc: eb:3a:71:a7:30:a5:2f:70:af:2f:ed:17:ce:cc:6f:58:08:d4: f0:47:4d:7f:b9:2f:a6:16:41:80:6e:db:bf:23:28:36:8a:2f: 84:3f:2a:80:2a:d5:8d:8e:6c:61:a0:0c:69:d5:71:f9:83:ec: 3b:14:32:78:35:27:a9:9d:f0:42:96:84:df:98:70:7f:de:ba: 40:07:a6:c6:25:e4:5b:31:62:63:80:6e:71:5c:ef:55:de:c2: 19:d9:14:04:d2:0e:b2:ed:20:87:a7:c9:d3:6a:ff:72:aa:68: c5:00:fa:b9:08:a0:f4:83:03:24:db:6f:81:a7:31:d5:14:90: 64:dc:fd:43:fa:07:dc:3d:81:9e:c1:94:5c:db:76:86:78:29: 94:4e:59:1f:6b:a5:fc:f6:4f:12:96:db:05:a4:1f:d6:db:4c: 17:e0:78:8f:77:44:6a:74:ad:e9:bd:45:c5:6d:54:28:8f:77: 6d:12:a0:5a:4e:4e:a4:0a:f5:2f:71:be:01:fd:c2:b5:49:e6: 9c:4b:c8:44 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICJp4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENDOEMyNDNDQUM4NkRC ODA3QjQzMjQ1REU4N0JGNzk4MTUwNDc3N0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDm01pARjt8ywoaQ76WrWT4OnPSCW4dn1egstVU6sd/jvyUPHHo J7buGMG/VQmjcuW6NKCWVecr3BmzlFK1NVWUpev4MWCrytvPi1QvxonEThipTYuw ndEMl0/q+b817hNFTMMfd6Ozl0tVE7259MaK7Dir5IKuNJGOdmLivcBUCv5DxZ1d cWZyd1J1hw6Nf2/xvgDSmXoz3IFeVAh8O3xQj0FI+N7VvKIt1JrlkC1oqm3iEeSv PQUTY8joMev5AQd7QmCzRBtvsLhTVMfkyS6cec89sP9zRL+5AP21zhdBWstUZmb6 ndOEZ9R3cV7l1XpdVrtbzZZjy8709xdZUrerAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUzIwkPKyG24B7QyRd6Hv3mBUEd38wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3pJd2tQS3lHMjRCN1F5UmQ2 SHYzbUJVRWQzOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B0sA/wEwDQYJKoZIhvcNAQELBQADggEBAEB4B00M8nHNkR5FBM3aKmfLcSn1B17J mEuRDhZVBkTqchsFBYgBaHGv+n46AnfH73erNi0HzOs6cacwpS9wry/tF87Mb1gI 1PBHTX+5L6YWQYBu278jKDaKL4Q/KoAq1Y2ObGGgDGnVcfmD7DsUMng1J6md8EKW hN+YcH/eukAHpsYl5FsxYmOAbnFc71XewhnZFATSDrLtIIenydNq/3KqaMUA+rkI oPSDAyTbb4GnMdUUkGTc/UP6B9w9gZ7BlFzbdoZ4KZROWR9rpfz2TxKW2wWkH9bb TBfgeI93RGp0rem9RcVtVCiPd20SoFpOTqQK9S9xvgH9wrVJ5pxLyEQ= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:42 2025 by rpki-client