$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/066oDnF9SaD1AMvVYq058ot8chM.roa File: 066oDnF9SaD1AMvVYq058ot8chM.roa (raw, json) Hash identifier: uGf9MugQ8mcuC+CZTi8ZVDKu37gvXWoTRg5HE/LPL3I= Subject key identifier: D3:AE:A8:0E:71:7D:49:A0:F5:00:CB:D5:62:AD:39:F2:8B:7C:72:13 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26E8 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/066oDnF9SaD1AMvVYq058ot8chM.roa Signing time: Fri 22 Aug 2025 08:43:22 +0000 ROA not before: Fri 22 Aug 2025 08:43:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 49.158.152.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9960 (0x26e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D3AEA80E717D49A0F500CBD562AD39F28B7C7213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9b:01:89:60:b6:62:06:5e:af:d1:31:c6:6c: 32:83:5c:df:d3:db:46:bb:01:b1:0f:1d:4f:53:9b: ec:72:91:89:d8:03:f8:c5:e4:be:8d:74:34:9d:d4: 4d:54:48:2c:e0:40:f6:c0:20:20:13:b6:7f:65:64: 56:41:c4:8d:c6:d1:dd:63:3c:76:26:36:5e:c2:d9: 21:16:e5:33:a5:af:59:4c:32:42:6c:90:c3:1d:95: 49:aa:9a:95:23:31:55:db:99:9a:1d:b5:15:1e:fd: 7a:aa:74:06:b9:6a:d5:f9:4a:98:e9:ee:c6:cb:54: 08:95:8e:0b:93:64:32:29:48:b8:df:08:ce:b1:1a: 78:fc:a2:f7:a0:32:46:fa:ed:0e:bc:14:d0:68:db: 60:fa:de:05:81:0d:c3:b4:82:0f:64:63:2d:a4:2f: 92:f1:c3:11:12:d5:22:e3:0b:a7:4c:9a:f9:67:ac: ed:00:f9:20:56:56:30:9d:72:f3:51:59:45:2d:93: ab:fa:86:ac:34:52:da:f0:7a:47:f6:36:05:ec:4b: 44:bb:6b:8e:fb:38:d6:78:a3:68:f4:e0:a8:07:76: 4f:cd:58:b1:45:c0:d8:2f:34:bc:61:8b:3d:6b:7d: 2c:4c:f8:95:21:97:d5:08:9d:76:1a:e6:a3:34:bc: e8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AE:A8:0E:71:7D:49:A0:F5:00:CB:D5:62:AD:39:F2:8B:7C:72:13 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/066oDnF9SaD1AMvVYq058ot8chM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.152.0/21 Signature Algorithm: sha256WithRSAEncryption 42:fe:6b:4d:be:8b:cf:fc:ba:af:18:d5:9f:61:d2:b4:2e:f5: 87:3b:88:85:e8:95:71:df:0d:2a:30:83:d6:08:81:a6:fc:1f: 68:0c:64:7e:d9:a7:1b:8d:56:5a:e2:16:ef:ff:a7:81:63:6e: 29:a6:a2:4b:ad:3a:35:c0:2c:c8:ec:af:94:3a:bb:bb:f0:cd: e2:c4:d7:a5:8d:d0:4f:0b:b9:42:f6:b2:a2:4d:76:0f:e7:f5: 83:34:22:1f:b0:04:2f:20:d2:66:58:00:85:fe:90:84:60:31: a7:6c:62:df:3a:4f:c4:8a:76:d4:e6:83:d1:1a:e1:11:f5:25: 05:8f:7c:5f:0b:4f:35:45:cc:5f:06:1f:54:af:b2:f4:c6:a0: 60:50:61:06:8d:54:0b:41:3a:37:f5:46:eb:49:3c:81:cc:0c: 32:ef:78:9e:c4:c0:16:4f:35:5b:81:e6:93:e1:e8:93:5b:87: 2d:ac:59:08:87:b3:81:09:87:af:ec:18:57:3e:40:1a:8e:78: ee:24:86:e8:ce:85:ae:81:7e:45:ae:01:a6:25:95:7b:85:9f: a0:f9:d0:f0:30:15:c2:58:73:f2:2a:75:49:26:ea:97:24:fe: 03:f1:39:7a:e0:f3:81:89:e0:36:45:c4:4c:ab:ad:bd:e6:93: 42:a8:c0:df -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQzQUVBODBFNzE3RDQ5 QTBGNTAwQ0JENTYyQUQzOUYyOEI3QzcyMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0mwGJYLZiBl6v0THGbDKDXN/T20a7AbEPHU9Tm+xykYnYA/jF 5L6NdDSd1E1USCzgQPbAICATtn9lZFZBxI3G0d1jPHYmNl7C2SEW5TOlr1lMMkJs kMMdlUmqmpUjMVXbmZodtRUe/XqqdAa5atX5Spjp7sbLVAiVjguTZDIpSLjfCM6x Gnj8ovegMkb67Q68FNBo22D63gWBDcO0gg9kYy2kL5LxwxES1SLjC6dMmvlnrO0A +SBWVjCdcvNRWUUtk6v6hqw0Utrwekf2NgXsS0S7a477ONZ4o2j04KgHdk/NWLFF wNgvNLxhiz1rfSxM+JUhl9UInXYa5qM0vOiNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU066oDnF9SaD1AMvVYq058ot8chMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzA2Nm9EbkY5U2FEMUFNdlZZ cTA1OG90OGNoTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx npgwDQYJKoZIhvcNAQELBQADggEBAEL+a02+i8/8uq8Y1Z9h0rQu9Yc7iIXolXHf DSowg9YIgab8H2gMZH7ZpxuNVlriFu//p4FjbimmokutOjXALMjsr5Q6u7vwzeLE 16WN0E8LuUL2sqJNdg/n9YM0Ih+wBC8g0mZYAIX+kIRgMadsYt86T8SKdtTmg9Ea 4RH1JQWPfF8LTzVFzF8GH1SvsvTGoGBQYQaNVAtBOjf1RutJPIHMDDLveJ7EwBZP NVuB5pPh6JNbhy2sWQiHs4EJh6/sGFc+QBqOeO4khujOha6BfkWuAaYllXuFn6D5 0PAwFcJYc/IqdUkm6pck/gPxOXrg84GJ4DZFxEyrrb3mk0KowN8= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:39 2025 by rpki-client