$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/00SQquxLIbB4ffqZb4bwcaBw4c4.roa File: 00SQquxLIbB4ffqZb4bwcaBw4c4.roa (raw, json) Hash identifier: T7oCOC/Hzs+cSzoiIhmlJ5XuXjkqYbnBM6CsoCue2Iw= Subject key identifier: D3:44:90:AA:EC:4B:21:B0:78:7D:FA:99:6F:86:F0:71:A0:70:E1:CE Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2600 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/00SQquxLIbB4ffqZb4bwcaBw4c4.roa Signing time: Fri 22 Aug 2025 08:42:28 +0000 ROA not before: Fri 22 Aug 2025 08:42:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 49.158.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9728 (0x2600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D34490AAEC4B21B0787DFA996F86F071A070E1CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b3:09:2b:3a:12:5a:14:1f:aa:82:c5:80:54: 81:ef:16:f7:b2:d6:e1:25:59:a1:93:57:82:d2:8e: 3c:9c:c0:59:97:29:31:fc:ca:45:18:f3:2c:e6:b1: cd:35:e6:8d:22:4d:79:4a:9c:71:4c:30:1f:db:a5: ee:9e:3c:0d:6e:6d:1c:dd:68:d0:48:1f:c6:13:45: 73:c2:d1:08:54:7c:58:0f:85:ed:09:a9:1d:a0:76: 35:9d:8d:f6:29:97:8a:90:4e:fc:d8:2b:6d:88:15: a7:f4:5b:84:9b:19:70:2d:ad:ed:44:f3:40:c8:87: 72:62:27:e6:85:41:1d:75:92:41:d5:00:ff:ed:79: 81:07:4c:91:a2:45:9e:04:20:52:62:d1:60:85:1a: 05:97:ef:4c:d3:5e:4c:f1:00:57:5b:c9:9c:98:62: 3c:6f:75:62:f8:63:c5:3f:de:40:1a:00:fb:2a:e0: 4a:95:7f:58:62:00:4c:d2:34:2d:08:e5:c4:ab:e1: 01:a3:92:34:e6:42:5a:23:94:69:c9:15:45:70:b6: b1:8f:e6:68:75:e0:89:6f:c6:98:14:f4:03:7b:4c: 4b:5c:f4:6d:a6:75:1a:3f:2c:ba:a8:df:99:e9:00: 2e:53:c0:52:b3:11:19:2f:9e:40:f6:cf:a6:0e:18: dc:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:44:90:AA:EC:4B:21:B0:78:7D:FA:99:6F:86:F0:71:A0:70:E1:CE X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/00SQquxLIbB4ffqZb4bwcaBw4c4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.232.0/23 Signature Algorithm: sha256WithRSAEncryption 12:19:3c:be:09:64:8a:4e:e7:7a:d2:80:c7:ed:e1:cf:be:20: 4f:e2:fa:9c:ce:2a:da:75:a9:08:c2:b2:a8:89:00:50:63:0b: 7b:2d:7c:88:2a:40:86:df:5e:dd:2b:24:80:03:84:ab:e3:93: e6:e1:16:d7:77:65:f7:e1:c8:9b:76:b0:16:19:d5:38:4f:60: 51:f0:78:f4:58:9d:81:1c:cc:16:53:ef:2d:0c:7c:96:8d:3f: 0a:b8:1e:17:aa:68:a5:f3:00:0f:80:63:7e:bd:25:07:9e:b8: 6c:98:00:87:0e:1b:68:ac:21:b8:5f:55:53:90:22:71:bf:6e: cc:1e:7b:fd:86:5d:7d:a5:2f:c6:21:35:a9:d1:86:3a:ca:9b: 3f:c5:1d:2f:72:b9:67:5c:1b:51:ff:34:3f:2a:5b:1e:4e:3d: f2:31:51:ee:b4:87:f6:e4:3b:4c:89:22:4a:75:2d:05:12:09: 21:0a:0c:63:52:92:b6:a4:ae:4c:19:6c:f2:58:24:4f:67:10: 6a:fc:13:8d:a3:b8:50:d4:9c:c9:71:e3:f9:83:26:bf:00:41: b4:ff:6e:05:79:93:b3:e6:91:7e:f4:c5:69:81:85:30:8c:2d: 43:df:bc:08:ad:37:ee:45:d8:12:c4:a5:7b:a9:d0:6b:d4:5c: d3:c5:f2:6b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJgAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQzNDQ5MEFBRUM0QjIx QjA3ODdERkE5OTZGODZGMDcxQTA3MEUxQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxswkrOhJaFB+qgsWAVIHvFvey1uElWaGTV4LSjjycwFmXKTH8 ykUY8yzmsc015o0iTXlKnHFMMB/bpe6ePA1ubRzdaNBIH8YTRXPC0QhUfFgPhe0J qR2gdjWdjfYpl4qQTvzYK22IFaf0W4SbGXAtre1E80DIh3JiJ+aFQR11kkHVAP/t eYEHTJGiRZ4EIFJi0WCFGgWX70zTXkzxAFdbyZyYYjxvdWL4Y8U/3kAaAPsq4EqV f1hiAEzSNC0I5cSr4QGjkjTmQlojlGnJFUVwtrGP5mh14IlvxpgU9AN7TEtc9G2m dRo/LLqo35npAC5TwFKzERkvnkD2z6YOGNxFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU00SQquxLIbB4ffqZb4bwcaBw4c4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzAwU1FxdXhMSWJCNGZmcVpi NGJ3Y2FCdzRjNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEx nugwDQYJKoZIhvcNAQELBQADggEBABIZPL4JZIpO53rSgMft4c++IE/i+pzOKtp1 qQjCsqiJAFBjC3stfIgqQIbfXt0rJIADhKvjk+bhFtd3ZffhyJt2sBYZ1ThPYFHw ePRYnYEczBZT7y0MfJaNPwq4HheqaKXzAA+AY369JQeeuGyYAIcOG2isIbhfVVOQ InG/bswee/2GXX2lL8YhNanRhjrKmz/FHS9yuWdcG1H/ND8qWx5OPfIxUe60h/bk O0yJIkp1LQUSCSEKDGNSkrakrkwZbPJYJE9nEGr8E42juFDUnMlx4/mDJr8AQbT/ bgV5k7PmkX70xWmBhTCMLUPfvAitN+5F2BLEpXup0GvUXNPF8ms= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:46 2025 by rpki-client