$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FWnCz_NDnJDUA4hgkUE9kNEstGk.roa File: FWnCz_NDnJDUA4hgkUE9kNEstGk.roa (raw, json) Hash identifier: CdVk/pJDP+XeSIOhH/Ybz6Ea5bBSaWap/lUWFZatQtQ= Subject key identifier: 15:69:C2:CF:F3:43:9C:90:D4:03:88:60:91:41:3D:90:D1:2C:B4:69 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2648 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FWnCz_NDnJDUA4hgkUE9kNEstGk.roa Signing time: Fri 22 Aug 2025 08:42:47 +0000 ROA not before: Fri 22 Aug 2025 08:42:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 114.198.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9800 (0x2648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1569C2CFF3439C90D403886091413D90D12CB469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:85:c0:f5:58:29:cf:22:b2:d6:46:98:0d:80: 98:99:83:d8:83:e3:63:09:40:71:79:28:20:0f:86: fa:99:1b:e6:5b:2e:ca:83:f4:a7:69:35:fc:1d:61: 61:40:b6:e2:96:9d:1b:c6:a5:fc:06:1e:f2:b1:06: 85:79:4e:6f:5a:f6:32:a8:a7:11:dc:67:b9:ae:c9: 57:79:22:93:95:e1:d0:0b:f4:5c:35:c1:9c:76:86: c4:af:5d:29:88:74:bd:fb:64:0a:33:52:58:a1:81: 44:d4:4c:6f:3e:c9:77:5b:db:3e:cc:9d:72:68:d7: 0e:3a:82:b0:f3:7f:9a:8b:26:99:03:e4:5f:29:b7: 6c:c4:da:15:75:95:73:e5:63:42:67:9a:ec:12:28: d3:5b:e6:94:f1:42:cf:ac:57:8b:45:7b:61:88:4e: 67:88:97:ec:c1:d6:42:61:bd:81:40:68:7f:3a:44: 08:07:f1:6f:9d:cb:59:f9:ab:08:d6:10:60:d7:1d: 84:3d:5b:dc:d2:6f:46:b9:f8:37:d4:ee:8b:78:4c: d9:e4:aa:86:6c:94:c1:0d:bc:90:78:74:0b:46:5f: 3f:2b:73:ef:d5:c8:8f:5f:83:40:95:56:aa:6a:dd: 5c:0e:dd:fe:c3:58:7b:04:ab:cf:d2:8b:db:70:2e: 4b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:69:C2:CF:F3:43:9C:90:D4:03:88:60:91:41:3D:90:D1:2C:B4:69 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FWnCz_NDnJDUA4hgkUE9kNEstGk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.176.0/20 Signature Algorithm: sha256WithRSAEncryption 5d:5c:01:bb:7a:31:88:eb:2d:cb:54:41:b4:b9:c5:76:89:43: 8e:12:76:eb:bd:fd:fe:10:6a:5e:a0:36:b6:f9:a1:8e:87:59: 07:91:da:d3:3b:36:5c:34:75:34:99:6b:ad:eb:2a:ad:12:bd: ac:1c:57:b8:05:2d:44:ad:f9:2f:f6:f3:73:c0:8b:ec:07:19: a5:34:5a:c5:f2:bd:67:14:97:18:c6:d5:ef:d8:87:69:92:f1: 51:79:2d:14:cc:c8:ec:48:87:16:7f:bb:43:1d:e7:64:e1:9b: 20:25:c5:5a:ca:85:39:87:4e:db:07:96:1d:98:d1:bd:de:0f: 7a:d9:aa:20:cb:cf:68:30:6f:a5:85:1a:f2:20:fc:92:d4:b2: b1:dc:a0:91:a0:9a:11:26:b8:b9:df:33:72:d4:95:fc:88:f7: 60:07:83:54:9b:a9:3c:f9:64:f5:51:4f:63:52:a1:1d:85:96: 4f:84:e8:08:7c:c3:65:7f:4e:0e:70:ac:59:6c:ae:01:09:16: a2:93:92:e0:36:7d:a5:f3:cc:d7:4a:77:f0:5a:04:a9:f5:fe: 2d:94:30:f6:1a:f2:83:75:f6:a6:98:c9:13:48:a0:91:7c:4a: 6b:bb:01:17:b8:2b:13:eb:9f:a6:03:b9:42:4e:e2:34:83:ad: b9:5a:c6:93 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJkgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE1NjlDMkNGRjM0MzlD OTBENDAzODg2MDkxNDEzRDkwRDEyQ0I0NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmhcD1WCnPIrLWRpgNgJiZg9iD42MJQHF5KCAPhvqZG+ZbLsqD 9KdpNfwdYWFAtuKWnRvGpfwGHvKxBoV5Tm9a9jKopxHcZ7muyVd5IpOV4dAL9Fw1 wZx2hsSvXSmIdL37ZAozUlihgUTUTG8+yXdb2z7MnXJo1w46grDzf5qLJpkD5F8p t2zE2hV1lXPlY0JnmuwSKNNb5pTxQs+sV4tFe2GITmeIl+zB1kJhvYFAaH86RAgH 8W+dy1n5qwjWEGDXHYQ9W9zSb0a5+DfU7ot4TNnkqoZslMENvJB4dAtGXz8rc+/V yI9fg0CVVqpq3VwO3f7DWHsEq8/Si9twLkstAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFWnCz/NDnJDUA4hgkUE9kNEstGkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZXbkN6X05EbkpEVUE0aGdr VUU5a05Fc3RHay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy xrAwDQYJKoZIhvcNAQELBQADggEBAF1cAbt6MYjrLctUQbS5xXaJQ44Sduu9/f4Q al6gNrb5oY6HWQeR2tM7Nlw0dTSZa63rKq0SvawcV7gFLUSt+S/283PAi+wHGaU0 WsXyvWcUlxjG1e/Yh2mS8VF5LRTMyOxIhxZ/u0Md52ThmyAlxVrKhTmHTtsHlh2Y 0b3eD3rZqiDLz2gwb6WFGvIg/JLUsrHcoJGgmhEmuLnfM3LUlfyI92AHg1SbqTz5 ZPVRT2NSoR2Flk+E6Ah8w2V/Tg5wrFlsrgEJFqKTkuA2faXzzNdKd/BaBKn1/i2U MPYa8oN19qaYyRNIoJF8Smu7ARe4KxPrn6YDuUJO4jSDrblaxpM= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:34 2025 by rpki-client