$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AZ9qHmSK9ExQIEJ0dgIchJdDzyo.roa File: AZ9qHmSK9ExQIEJ0dgIchJdDzyo.roa (raw, json) Hash identifier: ojMhud3RwX2mvEBLelMofLqapqWe2ebaBBt5u6wT62M= Subject key identifier: 01:9F:6A:1E:64:8A:F4:4C:50:20:42:74:76:02:1C:84:97:43:CF:2A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 261F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AZ9qHmSK9ExQIEJ0dgIchJdDzyo.roa Signing time: Fri 22 Aug 2025 08:42:36 +0000 ROA not before: Fri 22 Aug 2025 08:42:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9759 (0x261f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=019F6A1E648AF44C5020427476021C849743CF2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:36:fe:bb:91:12:75:c8:af:06:3e:2b:4b:82: 16:c6:3c:68:c5:51:60:20:25:33:af:6e:46:78:78: f8:35:83:41:ad:47:12:9f:af:72:a2:f6:d7:91:b1: a3:6e:01:b4:2c:da:7e:0e:2e:8a:0b:5f:5b:cc:67: e8:a0:30:a3:32:55:2b:42:c1:18:95:8e:58:9d:3e: 56:1c:c8:18:11:ad:92:ef:2e:a7:4a:e4:67:1b:ff: 27:27:52:b2:09:43:16:b8:dd:d3:b3:f4:06:dc:a9: 61:62:8a:34:c1:3a:9b:d6:7b:a2:45:b1:1b:1f:48: be:8f:c6:9e:d8:43:da:b3:73:e4:61:31:cb:c6:a0: 8d:a5:d4:bb:36:d3:f9:86:f6:6f:05:0b:8f:f2:51: d3:08:c8:38:f7:38:aa:d9:23:87:1a:50:49:bc:27: 94:3d:1b:a0:55:9f:ea:96:6c:c4:59:2c:0c:ab:b5: 1a:cc:02:76:49:4c:49:6b:b5:cf:d6:9a:a1:2a:0b: cc:72:3f:dc:2b:4c:a4:11:d3:8e:0c:5b:c7:36:a9: 37:9a:b9:79:d2:03:a1:96:68:cf:85:6e:7d:0d:ab: e5:35:6d:e1:19:ba:81:dc:5e:11:6e:b4:a7:03:76: a5:da:df:d1:7c:ee:5b:73:d0:97:53:9f:19:27:17: a7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:9F:6A:1E:64:8A:F4:4C:50:20:42:74:76:02:1C:84:97:43:CF:2A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AZ9qHmSK9ExQIEJ0dgIchJdDzyo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.136.0/21 Signature Algorithm: sha256WithRSAEncryption 45:87:d8:b7:e1:77:10:36:14:12:a7:52:1e:e7:cc:3d:da:b1: 9f:52:33:a6:59:fa:f0:ab:bf:4b:85:ec:50:20:7e:1a:46:49: 57:d6:63:93:d5:87:1c:6a:a7:84:35:d1:73:5b:75:3d:59:8f: b3:e4:60:a2:1e:43:db:32:3c:ed:db:4d:2d:11:33:f8:d7:5b: 46:f5:fd:07:a1:8f:0e:4b:3a:e7:d6:2f:7c:30:14:90:ba:ed: 36:f9:5f:a5:9c:08:a3:bb:3f:fc:ed:a9:c6:36:f2:a6:4c:0c: ed:49:39:3f:f8:fc:32:1d:17:82:e9:a8:61:ec:05:bf:ec:23: b1:e6:d5:e8:13:c4:ea:00:60:9a:21:f5:c5:39:d2:45:33:d6: 83:df:0f:fb:7a:02:ef:ec:be:1f:f4:27:dc:e1:d2:4f:d6:b9: 20:6b:62:fa:c5:89:49:3e:7f:be:28:0e:63:c3:10:f5:8d:fb: 75:04:f5:e6:15:17:0f:9c:98:37:3b:52:50:2d:f3:6d:83:2b: f9:dd:52:f1:79:66:6e:c0:58:17:1f:2b:03:89:00:81:9d:3a: 8d:4b:54:19:97:b5:7f:3c:08:62:b0:d4:8d:5c:b1:53:44:e6: 65:12:60:21:74:db:f0:fd:2d:af:96:9f:ee:be:05:34:6c:e2: 8e:02:c8:77 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJh8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAxOUY2QTFFNjQ4QUY0 NEM1MDIwNDI3NDc2MDIxQzg0OTc0M0NGMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVNv67kRJ1yK8GPitLghbGPGjFUWAgJTOvbkZ4ePg1g0GtRxKf r3Ki9teRsaNuAbQs2n4OLooLX1vMZ+igMKMyVStCwRiVjlidPlYcyBgRrZLvLqdK 5Gcb/ycnUrIJQxa43dOz9AbcqWFiijTBOpvWe6JFsRsfSL6Pxp7YQ9qzc+RhMcvG oI2l1Ls20/mG9m8FC4/yUdMIyDj3OKrZI4caUEm8J5Q9G6BVn+qWbMRZLAyrtRrM AnZJTElrtc/WmqEqC8xyP9wrTKQR044MW8c2qTeauXnSA6GWaM+Fbn0Nq+U1beEZ uoHcXhFutKcDdqXa39F87ltz0JdTnxknF6dFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAZ9qHmSK9ExQIEJ0dgIchJdDzyowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0FaOXFIbVNLOUV4UUlFSjBk Z0ljaEpkRHp5by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nogwDQYJKoZIhvcNAQELBQADggEBAEWH2LfhdxA2FBKnUh7nzD3asZ9SM6ZZ+vCr v0uF7FAgfhpGSVfWY5PVhxxqp4Q10XNbdT1Zj7PkYKIeQ9syPO3bTS0RM/jXW0b1 /Qehjw5LOufWL3wwFJC67Tb5X6WcCKO7P/ztqcY28qZMDO1JOT/4/DIdF4LpqGHs Bb/sI7Hm1egTxOoAYJoh9cU50kUz1oPfD/t6Au/svh/0J9zh0k/WuSBrYvrFiUk+ f74oDmPDEPWN+3UE9eYVFw+cmDc7UlAt822DK/ndUvF5Zm7AWBcfKwOJAIGdOo1L VBmXtX88CGKw1I1csVNE5mUSYCF02/D9La+Wn+6+BTRs4o4CyHc= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:14 2025 by rpki-client