$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CfZMYWvllwfYA3MWid6lFYPWy48.roa File: CfZMYWvllwfYA3MWid6lFYPWy48.roa (raw, json) Hash identifier: nisHCWM8nK/Ug1e3JgmU31Np0/KQYugvdg02r2YIBUM= Subject key identifier: 09:F6:4C:61:6B:E5:97:07:D8:03:73:16:89:DE:A5:15:83:D6:CB:8F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 270B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CfZMYWvllwfYA3MWid6lFYPWy48.roa Signing time: Fri 22 Aug 2025 08:43:31 +0000 ROA not before: Fri 22 Aug 2025 08:43:31 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 49.159.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9995 (0x270b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=09F64C616BE59707D803731689DEA51583D6CB8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:12:79:a3:e3:ce:f6:35:c2:39:7e:c9:62:b5: e0:d9:d2:37:35:ff:b6:c3:2a:c1:cd:bc:8b:95:bb: b0:b1:a7:0d:8f:a6:d1:b3:b4:b8:31:2b:a0:e7:4b: 12:8d:16:ad:8f:c1:a9:8f:08:98:97:2a:2c:6e:76: e9:52:7a:cc:20:ef:05:48:0c:5a:f9:a1:2b:bd:d6: 8a:3e:e5:e9:36:c4:bd:29:7e:51:1a:05:a1:cb:97: 52:59:66:f0:4b:e1:ce:0b:ba:3f:ef:de:d2:b5:21: 4f:8a:a2:2f:b0:9d:1a:a2:64:41:46:82:cb:96:36: 11:a9:d1:f3:13:c7:f9:b6:fb:50:95:f3:a5:df:82: b4:43:f2:6f:36:da:0d:87:07:67:eb:70:e7:aa:56: a6:c2:00:2d:19:d5:d7:76:eb:dd:8e:05:65:0c:ad: 50:39:54:3d:b4:34:ff:df:4e:6e:47:35:38:9d:43: 7e:2e:f7:56:08:a7:d6:3f:af:a7:64:67:aa:c1:87: fc:5f:8a:14:90:d0:ff:f2:cf:45:3b:02:af:31:28: 69:34:52:d5:f9:50:77:c7:a6:12:11:d8:7c:f2:e6: 99:cd:e6:cf:4c:8a:34:bf:b9:1e:30:9c:ef:40:b4: 62:43:fd:c7:82:0c:07:11:02:e3:ab:17:a6:62:4c: 1c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F6:4C:61:6B:E5:97:07:D8:03:73:16:89:DE:A5:15:83:D6:CB:8F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CfZMYWvllwfYA3MWid6lFYPWy48.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.208.0/22 Signature Algorithm: sha256WithRSAEncryption 96:85:8e:4d:81:7d:79:f2:d3:96:73:5e:0a:03:b0:49:27:7a: a0:54:d9:39:80:90:60:fb:a0:16:db:ee:bf:5a:34:8b:6a:10: 3c:96:69:89:55:14:f6:8a:4f:ca:37:8f:82:8e:f0:62:0c:24: f5:81:95:e3:6d:76:2c:fa:c0:b8:f7:2a:e0:73:72:31:37:14: ad:7d:e4:38:84:f2:d0:08:e4:15:33:00:31:57:78:4f:3a:8b: 96:95:97:9b:03:c1:4e:d5:a1:34:48:cf:09:c4:8b:ce:a3:0e: f7:ec:5a:ea:ef:c8:28:df:d8:25:2b:68:34:ed:7d:14:e0:f2: 78:c9:37:c5:c9:87:08:6a:6f:86:d7:65:df:44:f4:a7:84:21: 00:67:67:16:8e:e5:ae:89:1c:03:64:af:d2:6c:2b:18:87:f5: 5f:66:7e:fd:12:15:04:13:50:3e:ee:aa:dd:05:82:32:5e:dd: e3:30:e1:a3:1c:5b:b1:69:79:3a:1c:a7:73:77:97:08:41:c0: 13:87:66:51:c2:23:a6:fb:bc:94:dd:52:ee:b4:c2:4c:26:0c: bb:db:e5:ff:c9:40:1c:d5:68:c5:b0:96:59:70:28:46:04:fe: ac:fa:6b:20:c7:d7:4f:99:34:1c:e8:e5:30:2e:22:ed:93:63: 65:7a:86:fa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJwswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA5RjY0QzYxNkJFNTk3 MDdEODAzNzMxNjg5REVBNTE1ODNENkNCOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvEnmj4872NcI5fsliteDZ0jc1/7bDKsHNvIuVu7Cxpw2PptGz tLgxK6DnSxKNFq2PwamPCJiXKixudulSeswg7wVIDFr5oSu91oo+5ek2xL0pflEa BaHLl1JZZvBL4c4Luj/v3tK1IU+Koi+wnRqiZEFGgsuWNhGp0fMTx/m2+1CV86Xf grRD8m822g2HB2frcOeqVqbCAC0Z1dd2692OBWUMrVA5VD20NP/fTm5HNTidQ34u 91YIp9Y/r6dkZ6rBh/xfihSQ0P/yz0U7Aq8xKGk0UtX5UHfHphIR2Hzy5pnN5s9M ijS/uR4wnO9AtGJD/ceCDAcRAuOrF6ZiTBx3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUCfZMYWvllwfYA3MWid6lFYPWy48wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0NmWk1ZV3ZsbHdmWUEzTVdp ZDZsRllQV3k0OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n9AwDQYJKoZIhvcNAQELBQADggEBAJaFjk2BfXny05ZzXgoDsEkneqBU2TmAkGD7 oBbb7r9aNItqEDyWaYlVFPaKT8o3j4KO8GIMJPWBleNtdiz6wLj3KuBzcjE3FK19 5DiE8tAI5BUzADFXeE86i5aVl5sDwU7VoTRIzwnEi86jDvfsWurvyCjf2CUraDTt fRTg8njJN8XJhwhqb4bXZd9E9KeEIQBnZxaO5a6JHANkr9JsKxiH9V9mfv0SFQQT UD7uqt0FgjJe3eMw4aMcW7FpeTocp3N3lwhBwBOHZlHCI6b7vJTdUu60wkwmDLvb 5f/JQBzVaMWwlllwKEYE/qz6ayDH10+ZNBzo5TAuIu2TY2V6hvo= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:31 2025 by rpki-client