$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FJh4wL9oEp3nmMZK82HkAOU9_hk.roa File: FJh4wL9oEp3nmMZK82HkAOU9_hk.roa (raw, json) Hash identifier: hmqfEBgc2LksK5KUMwopYjdvip6a/ZnutoFdtPiTQ3I= Subject key identifier: 14:98:78:C0:BF:68:12:9D:E7:98:C6:4A:F3:61:E4:00:E5:3D:FE:19 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25A5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FJh4wL9oEp3nmMZK82HkAOU9_hk.roa Signing time: Mon 21 Jul 2025 07:10:58 +0000 ROA not before: Mon 21 Jul 2025 07:10:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 61.61.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 23:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9637 (0x25a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Jul 21 07:10:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=149878C0BF68129DE798C64AF361E400E53DFE19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6d:8b:96:db:a0:77:73:57:84:b2:15:0a:90: 4c:37:36:3e:17:cc:1b:d3:17:06:c0:2a:3c:7c:81: 35:09:fe:66:46:d1:23:ae:0b:81:15:58:38:b1:f2: 8a:ac:32:99:74:4d:1a:ff:03:eb:7e:87:22:c5:32: 2a:7a:7f:39:98:e9:3a:03:94:fb:6e:bf:23:f3:95: 96:88:26:3a:c8:02:3e:7e:91:e9:f8:d0:80:14:a7: a8:29:80:00:7e:e4:04:46:5d:0b:ef:f1:41:fd:02: 51:19:ab:1f:18:e4:e0:8c:51:43:63:62:97:8e:4c: 29:03:a6:ae:15:c3:95:cf:99:7e:28:a3:dc:25:81: 97:d1:58:78:d1:ab:29:4f:9a:5f:d3:29:be:d8:46: e4:d0:3d:b7:11:79:d5:04:d8:4e:65:07:05:55:e3: b0:74:c0:a5:c2:c6:10:0b:d0:ea:e4:4f:72:c1:8e: 3c:46:ee:54:18:b2:bb:33:c1:3b:1e:99:4f:dc:11: 28:12:95:ca:14:d6:2b:d1:af:25:80:be:3d:14:d5: 3f:c5:fd:1f:7e:bc:54:70:39:81:d6:31:dd:f3:44: 8c:dc:ad:00:4c:97:b8:65:63:15:fa:38:e7:50:85: 73:86:eb:d6:3a:27:58:f2:c8:b8:2f:cf:ed:93:7a: 84:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:98:78:C0:BF:68:12:9D:E7:98:C6:4A:F3:61:E4:00:E5:3D:FE:19 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FJh4wL9oEp3nmMZK82HkAOU9_hk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.213.0/24 Signature Algorithm: sha256WithRSAEncryption 96:9c:16:57:2f:2a:50:c9:d9:02:56:ed:f5:05:68:c0:3a:68: c6:ef:ef:d5:ce:02:db:a3:05:ea:d9:db:86:61:ef:ac:98:e8: 69:ad:9e:5e:98:d5:44:1f:5e:dc:11:7a:10:ef:d8:a7:9b:91: ff:15:23:d1:0c:7a:fb:67:92:98:fb:ee:89:73:8e:7e:af:07: 23:f8:8d:cd:70:27:26:03:8e:65:7e:86:3e:28:07:fb:8f:b3: f1:b7:74:ea:43:a6:9e:04:1b:a3:35:9f:57:7f:ba:1a:b4:71: c0:86:3a:22:1c:b6:84:98:b5:ed:31:5c:11:2e:27:1d:75:cb: 7d:43:1c:78:bb:4d:e8:1b:0b:af:02:d0:c8:73:69:b7:f8:53: b4:ca:7a:e0:c5:5d:1d:6c:b2:e2:6a:e3:43:f4:2b:e5:7e:f8: fe:a7:0d:30:f4:7c:80:ff:25:6c:13:5c:30:1d:1b:56:73:24: 3d:54:34:26:9b:96:63:31:42:a9:fc:e5:c5:84:5d:3d:e1:7a: 97:91:61:bc:4c:37:1d:09:78:37:4c:64:d1:2e:d5:e5:99:9e: 41:d1:80:b9:b8:74:18:7c:5d:20:3a:f5:62:d4:86:1d:44:76: 1b:5a:bb:38:f0:dc:33:fa:2f:95:6a:b2:0f:0f:49:83:3d:5c: 6f:b1:92:8c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJaUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA3MjEw NzEwNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0OTg3OEMwQkY2ODEy OURFNzk4QzY0QUYzNjFFNDAwRTUzREZFMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvbYuW26B3c1eEshUKkEw3Nj4XzBvTFwbAKjx8gTUJ/mZG0SOu C4EVWDix8oqsMpl0TRr/A+t+hyLFMip6fzmY6ToDlPtuvyPzlZaIJjrIAj5+ken4 0IAUp6gpgAB+5ARGXQvv8UH9AlEZqx8Y5OCMUUNjYpeOTCkDpq4Vw5XPmX4oo9wl gZfRWHjRqylPml/TKb7YRuTQPbcRedUE2E5lBwVV47B0wKXCxhAL0OrkT3LBjjxG 7lQYsrszwTsemU/cESgSlcoU1ivRryWAvj0U1T/F/R9+vFRwOYHWMd3zRIzcrQBM l7hlYxX6OOdQhXOG69Y6J1jyyLgvz+2TeoQlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFJh4wL9oEp3nmMZK82HkAOU9/hkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZKaDR3TDlvRXAzbm1NWks4 MkhrQU9VOV9oay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 PdUwDQYJKoZIhvcNAQELBQADggEBAJacFlcvKlDJ2QJW7fUFaMA6aMbv79XOAtuj BerZ24Zh76yY6Gmtnl6Y1UQfXtwRehDv2Kebkf8VI9EMevtnkpj77olzjn6vByP4 jc1wJyYDjmV+hj4oB/uPs/G3dOpDpp4EG6M1n1d/uhq0ccCGOiIctoSYte0xXBEu Jx11y31DHHi7TegbC68C0Mhzabf4U7TKeuDFXR1ssuJq40P0K+V++P6nDTD0fID/ JWwTXDAdG1ZzJD1UNCablmMxQqn85cWEXT3hepeRYbxMNx0JeDdMZNEu1eWZnkHR gLm4dBh8XSA69WLUhh1Edhtauzjw3DP6L5Vqsg8PSYM9XG+xkow= -----END CERTIFICATE-----Generated at Tue Jul 22 20:26:09 2025 by rpki-client