$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/E39Zfa1gSaqUVjMxqLtuPv6mkaE.roa File: E39Zfa1gSaqUVjMxqLtuPv6mkaE.roa (raw, json) Hash identifier: Ez3XZZjN7WzR91E9NF9AtUvournlbvLZcErj2ROJvUw= Subject key identifier: 13:7F:59:7D:AD:60:49:AA:94:56:33:31:A8:BB:6E:3E:FE:A6:91:A1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2692 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/E39Zfa1gSaqUVjMxqLtuPv6mkaE.roa Signing time: Fri 22 Aug 2025 08:43:04 +0000 ROA not before: Fri 22 Aug 2025 08:43:04 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.240.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9874 (0x2692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=137F597DAD6049AA94563331A8BB6E3EFEA691A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0e:5c:a5:d9:0b:fd:da:ef:7b:05:f5:83:fc: c2:7c:91:9b:cb:8b:1a:f0:d2:6a:17:dd:f7:15:42: 95:b9:b6:58:77:10:2f:d4:d8:ae:a9:91:3b:69:d2: 6c:d1:c8:48:a9:6a:ac:e2:34:2b:1b:21:7e:bd:c5: 9c:1a:fa:a6:f9:d0:d6:de:66:3c:a6:03:74:14:e9: bf:15:6b:1e:3c:1d:57:29:b0:71:08:b8:9a:0e:b4: 6a:25:2f:2a:c0:5f:45:bd:51:02:77:18:36:f1:1e: 74:a5:38:db:29:03:99:6f:e6:b9:eb:bc:bd:45:ea: e9:19:4d:0c:0f:29:2e:87:d5:15:5f:a3:47:ab:13: e1:95:d4:b7:fd:87:3a:ed:9d:e1:77:73:4c:88:31: 13:43:34:3d:1f:df:0e:bb:fd:d6:02:84:7c:58:7b: 4c:51:43:42:e9:5d:1d:ec:4d:ce:94:68:aa:a5:4e: 23:87:a4:b6:a2:6f:26:f6:8e:5c:65:1e:f5:70:59: bb:df:3a:6d:0b:87:64:38:2f:25:5e:de:66:8b:40: c2:6a:99:a4:0e:f3:40:eb:e1:6b:a0:c3:b9:4f:cd: b6:71:a8:64:a6:0d:d5:6d:63:52:30:08:bd:bd:89: f2:4c:86:f1:fe:16:49:0f:e0:a8:a1:e1:f2:c9:16: 1e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:7F:59:7D:AD:60:49:AA:94:56:33:31:A8:BB:6E:3E:FE:A6:91:A1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/E39Zfa1gSaqUVjMxqLtuPv6mkaE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.240.0/21 Signature Algorithm: sha256WithRSAEncryption 77:a2:8d:14:c1:8e:14:c2:de:b5:bd:0c:9b:d6:72:81:ba:c5: 23:98:8b:46:5e:14:ed:07:d1:e5:ff:ea:c5:97:61:03:33:1d: 01:dc:e3:33:04:c9:14:0c:81:16:8e:58:5f:09:fc:8c:93:ef: 1b:eb:4f:38:7c:b2:15:47:1e:3f:64:27:22:16:47:50:21:64: 41:db:8d:88:5d:d3:e9:5d:62:1f:db:02:db:93:5c:c8:5a:11: e3:7a:dc:c4:44:7d:19:ff:9c:fa:d5:01:fc:de:36:1f:f3:8f: 48:d2:e4:04:6e:61:8c:08:54:fe:86:6e:37:a0:07:37:d3:6f: 15:a9:b2:bd:36:32:98:fa:95:48:14:7b:06:25:ad:17:62:8e: e0:10:bb:f2:f9:80:b7:4c:b2:6c:2e:ab:cc:19:11:e9:2d:0d: 88:ce:4e:28:67:fb:71:d2:7a:de:84:aa:ef:fe:fe:a0:ac:ba: 88:f8:72:3c:f8:66:98:21:2a:87:df:1f:05:39:96:c0:8b:24: 9f:ae:94:2f:ae:bf:29:a0:c5:0c:2a:b9:1a:57:7f:92:5b:01: 1b:37:66:ba:4d:74:4b:90:a1:c2:c1:af:c2:13:e9:a5:a1:21: 48:d8:f0:ef:f9:95:1d:33:25:4e:92:67:8f:ed:0a:3a:49:8c: 5a:5f:45:dd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJpIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDEzN0Y1OTdEQUQ2MDQ5 QUE5NDU2MzMzMUE4QkI2RTNFRkVBNjkxQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1Dlyl2Qv92u97BfWD/MJ8kZvLixrw0moX3fcVQpW5tlh3EC/U 2K6pkTtp0mzRyEipaqziNCsbIX69xZwa+qb50NbeZjymA3QU6b8Vax48HVcpsHEI uJoOtGolLyrAX0W9UQJ3GDbxHnSlONspA5lv5rnrvL1F6ukZTQwPKS6H1RVfo0er E+GV1Lf9hzrtneF3c0yIMRNDND0f3w67/dYChHxYe0xRQ0LpXR3sTc6UaKqlTiOH pLaibyb2jlxlHvVwWbvfOm0Lh2Q4LyVe3maLQMJqmaQO80Dr4Wugw7lPzbZxqGSm DdVtY1IwCL29ifJMhvH+FkkP4Kih4fLJFh75AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUE39Zfa1gSaqUVjMxqLtuPv6mkaEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0UzOVpmYTFnU2FxVVZqTXhx THR1UHY2bWthRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nvAwDQYJKoZIhvcNAQELBQADggEBAHeijRTBjhTC3rW9DJvWcoG6xSOYi0ZeFO0H 0eX/6sWXYQMzHQHc4zMEyRQMgRaOWF8J/IyT7xvrTzh8shVHHj9kJyIWR1AhZEHb jYhd0+ldYh/bAtuTXMhaEeN63MREfRn/nPrVAfzeNh/zj0jS5ARuYYwIVP6Gbjeg BzfTbxWpsr02Mpj6lUgUewYlrRdijuAQu/L5gLdMsmwuq8wZEektDYjOTihn+3HS et6Equ/+/qCsuoj4cjz4ZpghKoffHwU5lsCLJJ+ulC+uvymgxQwquRpXf5JbARs3 ZrpNdEuQocLBr8IT6aWhIUjY8O/5lR0zJU6SZ4/tCjpJjFpfRd0= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:24 2025 by rpki-client