$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4ZgOP-s7AkHDjBNDC-Za025l6LI.roa File: 4ZgOP-s7AkHDjBNDC-Za025l6LI.roa (raw, json) Hash identifier: 4NLRR5bu5Qsz/4/fdM9SNiYAQ6OJ8j22nrbvMSmJ3Jg= Subject key identifier: E1:98:0E:3F:EB:3B:02:41:C3:8C:13:43:0B:E6:5A:D3:6E:65:E8:B2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2637 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4ZgOP-s7AkHDjBNDC-Za025l6LI.roa Signing time: Fri 22 Aug 2025 08:42:42 +0000 ROA not before: Fri 22 Aug 2025 08:42:42 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 49.159.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9783 (0x2637) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E1980E3FEB3B0241C38C13430BE65AD36E65E8B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:73:e6:38:1f:73:d6:eb:39:36:83:10:14:32: 2a:93:6c:a9:15:6c:80:e0:a1:5c:cf:bb:19:f8:f5: 62:1b:55:b2:ca:27:99:7a:9e:a3:11:0b:95:9f:a3: d9:3e:94:7f:d8:b9:ee:07:1f:5b:a6:e5:60:5a:4e: 78:72:54:1e:23:0a:e7:83:8c:89:48:dd:ec:58:b7: ef:46:3f:58:85:3d:9b:c4:d5:b5:b3:f6:7a:54:20: ee:ae:3b:70:17:93:5c:41:cd:21:c7:dc:bd:55:10: fc:59:70:01:f2:22:fb:82:7b:f5:76:63:76:21:52: 77:ae:b2:6f:2b:02:67:ea:8b:f7:f6:2c:48:63:54: 41:1a:bb:18:a3:80:55:a0:86:39:d0:7c:dd:16:39: 35:d6:b2:99:1f:e3:08:08:b4:f2:40:3a:27:eb:6e: 67:6f:7e:51:db:06:3f:ea:e9:ac:a4:3a:aa:2f:5e: 65:8f:1e:84:a2:ca:f2:96:32:73:cc:a7:ef:a1:88: 83:15:36:2b:a3:48:03:bc:87:d6:11:ef:99:fb:6f: 54:81:80:f9:6e:7c:c1:f7:fc:09:19:2d:0f:7b:19: 62:7a:2c:46:b4:fb:0b:0e:06:9f:7b:08:1c:52:3f: 05:5c:f2:ff:1a:84:ed:4b:77:4c:67:ec:ce:20:d8: 2c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:98:0E:3F:EB:3B:02:41:C3:8C:13:43:0B:E6:5A:D3:6E:65:E8:B2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4ZgOP-s7AkHDjBNDC-Za025l6LI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.76.0/22 Signature Algorithm: sha256WithRSAEncryption 40:e5:df:3b:26:45:f6:a1:93:c7:27:94:a1:e2:95:96:ab:12: 15:48:de:1d:24:de:1e:70:c1:e1:f4:cb:3c:e9:4e:f4:de:22: 2b:ce:1d:19:57:d1:b3:c3:c0:41:71:c1:17:41:37:c8:b8:92: 16:c2:d5:2b:8d:1d:03:7a:c4:93:fd:95:d6:2a:18:1d:75:ac: ff:f5:67:c3:5e:ec:17:71:c0:81:1d:03:2f:2a:ff:ee:e2:e0: 71:c2:4e:c9:e5:e7:db:1b:95:b5:ba:e4:06:71:e6:99:df:f8: 25:84:4f:8e:0b:c9:0b:2e:22:80:d8:08:c6:dc:dd:38:2e:71: 1e:5e:dc:1b:0c:5e:99:cf:4f:17:72:9b:88:52:a5:2d:9f:4f: 58:76:d3:02:ea:bf:f2:cb:23:ac:46:e9:55:1f:96:5e:42:ac: 93:cc:66:ed:6b:23:15:70:81:71:4c:95:1b:bf:d1:29:76:68: 02:4f:39:0f:ef:d9:ae:d5:fc:5d:e3:10:2a:56:0e:65:76:6d: 1a:38:20:b6:9c:5e:0a:6c:8b:50:0b:9e:6d:74:60:73:8c:bb: 0d:47:63:77:72:0e:a6:c6:42:be:07:14:48:23:d3:27:58:49: 59:a2:19:fb:3c:91:86:79:b3:95:3b:fc:c2:7f:8a:f5:c5:19: 06:4a:92:f0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJjcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUxOTgwRTNGRUIzQjAy NDFDMzhDMTM0MzBCRTY1QUQzNkU2NUU4QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNc+Y4H3PW6zk2gxAUMiqTbKkVbIDgoVzPuxn49WIbVbLKJ5l6 nqMRC5Wfo9k+lH/Yue4HH1um5WBaTnhyVB4jCueDjIlI3exYt+9GP1iFPZvE1bWz 9npUIO6uO3AXk1xBzSHH3L1VEPxZcAHyIvuCe/V2Y3YhUneusm8rAmfqi/f2LEhj VEEauxijgFWghjnQfN0WOTXWspkf4wgItPJAOifrbmdvflHbBj/q6aykOqovXmWP HoSiyvKWMnPMp++hiIMVNiujSAO8h9YR75n7b1SBgPlufMH3/AkZLQ97GWJ6LEa0 +wsOBp97CBxSPwVc8v8ahO1Ld0xn7M4g2CyBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU4ZgOP+s7AkHDjBNDC+Za025l6LIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzRaZ09QLXM3QWtIRGpCTkRD LVphMDI1bDZMSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n0wwDQYJKoZIhvcNAQELBQADggEBAEDl3zsmRfahk8cnlKHilZarEhVI3h0k3h5w weH0yzzpTvTeIivOHRlX0bPDwEFxwRdBN8i4khbC1SuNHQN6xJP9ldYqGB11rP/1 Z8Ne7BdxwIEdAy8q/+7i4HHCTsnl59sblbW65AZx5pnf+CWET44LyQsuIoDYCMbc 3TgucR5e3BsMXpnPTxdym4hSpS2fT1h20wLqv/LLI6xG6VUfll5CrJPMZu1rIxVw gXFMlRu/0Sl2aAJPOQ/v2a7V/F3jECpWDmV2bRo4ILacXgpsi1ALnm10YHOMuw1H Y3dyDqbGQr4HFEgj0ydYSVmiGfs8kYZ5s5U7/MJ/ivXFGQZKkvA= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:35 2025 by rpki-client