$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/A3il3q-92iG4nJYPCIFydWpzSEY.roa File: A3il3q-92iG4nJYPCIFydWpzSEY.roa (raw, json) Hash identifier: 3iqyh5LJrFf3CgTeboD+EhE0IVtIMCjFo7UVrd+sc4I= Subject key identifier: 03:78:A5:DE:AF:BD:DA:21:B8:9C:96:0F:08:81:72:75:6A:73:48:46 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25FE Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/A3il3q-92iG4nJYPCIFydWpzSEY.roa Signing time: Fri 22 Aug 2025 08:42:28 +0000 ROA not before: Fri 22 Aug 2025 08:42:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 49.158.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9726 (0x25fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0378A5DEAFBDDA21B89C960F088172756A734846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f7:ca:a0:02:a2:d7:e5:6c:82:f6:b0:44:ae: 30:24:83:ea:1d:6c:6e:03:78:b4:69:05:95:ac:ff: 47:60:79:18:71:07:e6:59:b1:1f:63:a1:49:5b:58: 83:aa:a3:fe:a3:26:16:97:c0:c4:01:22:22:65:da: 4b:0d:9c:32:5e:09:bf:c9:0d:cd:08:27:28:1a:4d: 8f:82:a8:bf:ad:bf:69:65:34:f7:df:0a:8d:5d:36: 69:4a:f7:b9:a6:b7:7e:a7:a3:b4:19:4d:79:07:17: 81:ae:9f:3f:1e:c3:2d:b6:20:55:2d:c3:5c:a3:fb: 4e:41:19:ad:bf:51:0d:b0:35:bc:1f:6f:ca:56:19: 12:2e:4a:ff:a6:de:5d:cf:18:49:27:13:c3:e5:c8: a9:db:90:b0:c4:de:79:88:af:28:32:a5:0e:43:2f: 67:93:f7:11:ea:80:bf:76:13:3e:0d:d2:e8:91:8b: 0d:8d:22:38:2a:fa:b9:17:91:7a:32:12:92:2d:d9: d2:69:2a:91:4f:50:97:df:97:e8:96:a3:f9:f2:29: 69:7c:e1:15:a7:cf:07:fe:96:db:b9:60:5e:21:92: 82:07:1f:e6:88:1f:ad:93:18:88:57:a8:c9:fa:b0: 75:95:fa:43:d4:66:5d:3f:ea:cb:3f:b1:62:ae:f2: e8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:78:A5:DE:AF:BD:DA:21:B8:9C:96:0F:08:81:72:75:6A:73:48:46 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/A3il3q-92iG4nJYPCIFydWpzSEY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.200.0/21 Signature Algorithm: sha256WithRSAEncryption 39:9e:64:10:80:1d:45:4d:20:58:5c:6f:1b:c0:d9:cd:ea:42: 77:de:a0:18:2b:38:98:be:0d:14:95:65:68:f2:28:24:56:34: f7:30:ce:64:09:7f:94:09:9f:90:50:ee:54:41:6c:7d:91:5a: 37:ca:85:da:4a:a5:78:d1:f2:08:8a:34:a2:2d:28:40:55:6d: 2b:25:d6:80:82:16:87:51:8b:31:42:8f:e2:2b:9f:58:0d:9b: 43:ee:8a:86:5d:0a:22:4c:ca:dd:13:4f:80:ec:e5:e8:4a:34: 1e:42:70:4c:3c:b2:8b:58:db:f9:e0:d4:b9:8c:a7:3b:00:7d: 6b:fa:ca:7c:ba:24:1c:8f:ca:43:f5:f0:42:90:96:3f:38:85: eb:59:7a:69:4b:07:b3:d1:71:ae:6e:b9:7a:a9:43:f6:d4:5d: 13:e1:5a:d6:6e:4c:d3:93:8e:05:00:03:62:78:e5:56:5b:6b: 81:74:1e:09:f7:3b:44:a2:7d:2c:2d:99:47:e3:46:5b:08:4e: cf:6e:11:bf:08:15:36:0f:5a:b9:67:ca:60:51:a0:ee:dc:c1: 98:7c:c6:4c:53:20:95:d3:88:61:8e:1b:53:22:a8:1f:58:60: e6:c9:f3:94:20:f6:64:01:05:c5:2a:db:57:40:6c:fb:62:9d: 01:4e:de:cc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJf4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAzNzhBNURFQUZCRERB MjFCODlDOTYwRjA4ODE3Mjc1NkE3MzQ4NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo98qgAqLX5WyC9rBErjAkg+odbG4DeLRpBZWs/0dgeRhxB+ZZ sR9joUlbWIOqo/6jJhaXwMQBIiJl2ksNnDJeCb/JDc0IJygaTY+CqL+tv2llNPff Co1dNmlK97mmt36no7QZTXkHF4Gunz8ewy22IFUtw1yj+05BGa2/UQ2wNbwfb8pW GRIuSv+m3l3PGEknE8PlyKnbkLDE3nmIrygypQ5DL2eT9xHqgL92Ez4N0uiRiw2N Ijgq+rkXkXoyEpIt2dJpKpFPUJffl+iWo/nyKWl84RWnzwf+ltu5YF4hkoIHH+aI H62TGIhXqMn6sHWV+kPUZl0/6ss/sWKu8ugdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUA3il3q+92iG4nJYPCIFydWpzSEYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0EzaWwzcS05MmlHNG5KWVBD SUZ5ZFdwelNFWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nsgwDQYJKoZIhvcNAQELBQADggEBADmeZBCAHUVNIFhcbxvA2c3qQnfeoBgrOJi+ DRSVZWjyKCRWNPcwzmQJf5QJn5BQ7lRBbH2RWjfKhdpKpXjR8giKNKItKEBVbSsl 1oCCFodRizFCj+Irn1gNm0PuioZdCiJMyt0TT4Ds5ehKNB5CcEw8sotY2/ng1LmM pzsAfWv6yny6JByPykP18EKQlj84hetZemlLB7PRca5uuXqpQ/bUXRPhWtZuTNOT jgUAA2J45VZba4F0Hgn3O0SifSwtmUfjRlsITs9uEb8IFTYPWrlnymBRoO7cwZh8 xkxTIJXTiGGOG1MiqB9YYObJ85Qg9mQBBcUq21dAbPtinQFO3sw= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:42 2025 by rpki-client