$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DBrA64fFBBO2RhOvNTipbnXgOiY.roa File: DBrA64fFBBO2RhOvNTipbnXgOiY.roa (raw, json) Hash identifier: yElSPEKaGv1UTDwyhHlX8oPjXbXnjYnbNIw7Z8BKt/Q= Subject key identifier: 0C:1A:C0:EB:87:C5:04:13:B6:46:13:AF:35:38:A9:6E:75:E0:3A:26 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2650 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DBrA64fFBBO2RhOvNTipbnXgOiY.roa Signing time: Fri 22 Aug 2025 08:42:48 +0000 ROA not before: Fri 22 Aug 2025 08:42:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 211.76.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9808 (0x2650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0C1AC0EB87C50413B64613AF3538A96E75E03A26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:08:99:bd:f8:5a:aa:f8:70:23:d6:82:91:ea: 5e:a6:9b:95:cd:c1:a2:c9:f5:9c:af:76:7a:6f:bb: fe:09:28:1e:ea:e0:e8:e6:bb:52:9e:1b:ca:71:41: 98:d4:99:6e:aa:71:92:8a:4e:45:f3:bc:21:f7:92: ec:10:5b:e3:31:43:65:89:59:34:98:35:ee:cf:a4: 5a:5a:f3:c2:f0:24:63:37:53:0e:cf:32:22:7c:a8: d7:a4:bf:bb:69:b2:bf:c0:ae:48:14:33:ac:d0:7c: d7:fd:c4:6e:c2:d1:e9:42:26:1b:2d:db:6f:c1:fc: 85:50:50:73:7d:78:08:fa:56:71:e7:f0:b9:d7:2b: 24:ca:38:40:c2:3b:3a:10:37:fe:e5:72:75:32:fb: b9:73:8d:f3:ad:b5:0c:18:7d:dc:46:b1:24:06:f3: a9:99:ea:de:b3:43:e6:e7:b6:ba:44:85:d0:97:63: b7:e3:85:63:90:00:70:99:09:a3:39:bc:1c:47:a1: 0d:5a:4c:fd:5f:38:de:7e:45:e6:67:db:f1:d7:ed: 3a:2b:cb:81:4b:89:cc:52:b0:c0:4c:c2:96:38:60: 1e:95:02:e5:68:da:f2:7d:f5:fe:b2:e4:8e:2b:2c: c6:b0:5d:e5:d9:c1:3d:44:72:e6:5f:fe:e8:0b:b3: eb:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1A:C0:EB:87:C5:04:13:B6:46:13:AF:35:38:A9:6E:75:E0:3A:26 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DBrA64fFBBO2RhOvNTipbnXgOiY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.48.0/22 Signature Algorithm: sha256WithRSAEncryption 99:8e:c0:47:6e:68:56:cc:c0:6a:b1:61:f3:2d:e4:f5:74:b2: 39:76:44:40:39:4a:0a:0c:f4:4e:b9:6f:ea:1a:d1:d1:7f:c0: 85:62:fd:21:90:11:75:63:a1:91:1d:0e:17:8d:42:7d:38:e5: e8:40:18:05:db:bc:63:6a:be:75:26:e1:c5:cf:99:09:5b:f9: db:c4:51:ba:25:99:3a:ea:8c:a6:2b:47:cd:2a:5f:a3:77:99: 73:a4:5d:5a:34:1a:c4:d3:5c:19:ef:18:22:c3:30:8c:13:07: e4:88:87:0b:61:ab:06:ff:1f:cd:14:90:bf:09:df:40:5f:49: 58:67:d8:3c:f6:a3:80:e0:ab:98:7a:e4:ad:ea:c6:41:1c:d1: c6:16:01:39:b5:93:aa:c3:cd:e4:97:20:1e:35:8e:57:41:23: 13:c8:99:35:cc:99:08:98:2e:e3:a8:1a:35:00:60:9a:e4:d8: ff:25:07:78:18:a5:b0:8f:b8:28:ec:97:1c:b3:ee:8f:29:a0: ca:f7:a2:09:37:09:cc:76:33:f7:5c:23:c6:6a:80:78:e0:d0: ea:da:fa:84:2b:7b:c1:80:6d:ec:0d:4a:4e:41:b3:08:01:03: dc:cf:9c:0b:01:40:55:c0:6b:75:66:a1:fc:f8:c1:82:84:fb: 3b:bc:e5:5c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJlAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBDMUFDMEVCODdDNTA0 MTNCNjQ2MTNBRjM1MzhBOTZFNzVFMDNBMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNCJm9+Fqq+HAj1oKR6l6mm5XNwaLJ9Zyvdnpvu/4JKB7q4Ojm u1KeG8pxQZjUmW6qcZKKTkXzvCH3kuwQW+MxQ2WJWTSYNe7PpFpa88LwJGM3Uw7P MiJ8qNekv7tpsr/ArkgUM6zQfNf9xG7C0elCJhst22/B/IVQUHN9eAj6VnHn8LnX KyTKOEDCOzoQN/7lcnUy+7lzjfOttQwYfdxGsSQG86mZ6t6zQ+bntrpEhdCXY7fj hWOQAHCZCaM5vBxHoQ1aTP1fON5+ReZn2/HX7Tory4FLicxSsMBMwpY4YB6VAuVo 2vJ99f6y5I4rLMawXeXZwT1EcuZf/ugLs+sRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDBrA64fFBBO2RhOvNTipbnXgOiYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0RCckE2NGZGQkJPMlJoT3ZO VGlwYm5YZ09pWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALT TDAwDQYJKoZIhvcNAQELBQADggEBAJmOwEduaFbMwGqxYfMt5PV0sjl2REA5SgoM 9E65b+oa0dF/wIVi/SGQEXVjoZEdDheNQn045ehAGAXbvGNqvnUm4cXPmQlb+dvE UbolmTrqjKYrR80qX6N3mXOkXVo0GsTTXBnvGCLDMIwTB+SIhwthqwb/H80UkL8J 30BfSVhn2Dz2o4Dgq5h65K3qxkEc0cYWATm1k6rDzeSXIB41jldBIxPImTXMmQiY LuOoGjUAYJrk2P8lB3gYpbCPuCjslxyz7o8poMr3ogk3Ccx2M/dcI8ZqgHjg0Ora +oQre8GAbewNSk5BswgBA9zPnAsBQFXAa3Vmofz4wYKE+zu85Vw= -----END CERTIFICATE-----Generated at Sun Aug 24 11:40:34 2025 by rpki-client