$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IJ7zSKp9eKonRVdv0QqrYP2SZC8.roa File: IJ7zSKp9eKonRVdv0QqrYP2SZC8.roa (raw, json) Hash identifier: 2GuV1g+VahEb7tRFsj+ra1CjH+bh5zmGntVC3SfC7+A= Subject key identifier: 20:9E:F3:48:AA:7D:78:AA:27:45:57:6F:D1:0A:AB:60:FD:92:64:2F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2725 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IJ7zSKp9eKonRVdv0QqrYP2SZC8.roa Signing time: Fri 22 Aug 2025 08:43:36 +0000 ROA not before: Fri 22 Aug 2025 08:43:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10021 (0x2725) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=209EF348AA7D78AA2745576FD10AAB60FD92642F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fd:ea:7c:2f:11:54:d6:ab:17:ab:b5:b8:fc: c0:75:73:e6:c4:d3:3d:2f:86:ec:ba:78:5a:c2:37: 54:05:13:e6:21:97:ec:a4:62:c4:18:66:4b:cc:bf: a7:17:9b:a6:29:2b:c2:f2:5d:ba:00:ab:4d:6e:1b: 51:5b:37:76:84:11:50:6f:5c:b0:f0:13:93:29:a8: 77:d4:c3:25:a1:62:1c:56:c1:eb:ea:4a:bd:eb:1b: 25:92:b2:e8:75:22:44:36:70:3e:5f:99:ec:41:19: 5e:92:31:c3:2e:6b:f3:e6:67:44:f4:d4:a6:4b:29: 0b:b5:92:19:5e:65:f8:6f:49:c6:c2:83:fd:6b:13: 51:82:ef:9d:cd:f4:94:32:e1:9f:77:30:b2:08:9a: 26:fb:d7:a6:2f:49:1e:d4:87:ca:5d:89:87:21:79: d4:7c:6a:99:93:cb:6e:8d:af:15:d2:4c:37:1b:e7: c6:7d:75:db:fa:e4:e2:07:01:17:b0:5b:fa:85:2c: 17:d4:6c:c2:12:0c:29:e2:53:b1:9d:c3:75:5a:6d: ed:8f:be:5c:77:e1:16:ea:c2:3c:78:b6:92:e2:a5: 78:00:d3:fc:2d:d4:48:5b:5a:b5:17:7f:b1:5c:2f: f4:3d:f7:4f:af:b1:15:88:82:65:0b:5d:eb:70:d5: f2:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:9E:F3:48:AA:7D:78:AA:27:45:57:6F:D1:0A:AB:60:FD:92:64:2F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IJ7zSKp9eKonRVdv0QqrYP2SZC8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.56.0/21 Signature Algorithm: sha256WithRSAEncryption 45:68:7a:0c:8d:db:ad:2a:b7:b0:24:89:dc:db:7b:90:69:fb: 48:5b:cd:c7:ca:5d:7f:a9:85:6e:62:64:e4:e2:91:2e:0c:71: 8d:fc:9c:2c:9e:2f:ac:62:0f:b2:78:4e:8f:9d:9f:46:ea:65: af:eb:ed:9c:26:f8:2e:5e:60:33:01:e0:ea:79:17:a5:09:bd: af:5c:64:6b:26:77:ff:31:82:a2:27:d1:0e:10:84:76:4c:d8: 84:43:42:b3:4f:f0:f2:28:71:07:9c:78:be:de:ad:f1:48:5a: 80:79:bd:00:bd:8d:91:c4:24:00:62:23:7c:43:28:bd:29:87: c6:83:3b:cf:7b:c0:25:60:90:23:06:b4:9b:84:05:c9:99:a5: 42:00:1c:2c:11:24:ea:19:c8:6c:bb:51:8b:ab:be:93:5f:91: 3c:31:95:bc:f2:dd:19:d0:30:99:f7:23:73:0c:2e:2f:d7:90: 02:b7:5e:1b:4f:e5:e5:62:17:a6:2a:06:49:70:40:1a:89:f6: 32:5d:e3:3b:43:1d:3d:fd:5a:85:42:ba:84:96:09:fc:86:f9: ba:b4:a1:38:96:08:59:b3:ae:7b:11:4f:c7:e6:67:18:a7:5f: de:26:04:a0:38:e8:7c:e8:7d:59:07:43:aa:77:9d:47:a0:de: ae:4a:4c:d1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJyUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIwOUVGMzQ4QUE3RDc4 QUEyNzQ1NTc2RkQxMEFBQjYwRkQ5MjY0MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7/ep8LxFU1qsXq7W4/MB1c+bE0z0vhuy6eFrCN1QFE+Yhl+yk YsQYZkvMv6cXm6YpK8LyXboAq01uG1FbN3aEEVBvXLDwE5MpqHfUwyWhYhxWwevq Sr3rGyWSsuh1IkQ2cD5fmexBGV6SMcMua/PmZ0T01KZLKQu1khleZfhvScbCg/1r E1GC753N9JQy4Z93MLIImib716YvSR7Uh8pdiYchedR8apmTy26NrxXSTDcb58Z9 ddv65OIHARewW/qFLBfUbMISDCniU7Gdw3Vabe2Pvlx34Rbqwjx4tpLipXgA0/wt 1EhbWrUXf7FcL/Q990+vsRWIgmULXetw1fJvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIJ7zSKp9eKonRVdv0QqrYP2SZC8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0lKN3pTS3A5ZUtvblJWZHYw UXFyWVAyU1pDOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nzgwDQYJKoZIhvcNAQELBQADggEBAEVoegyN260qt7Akidzbe5Bp+0hbzcfKXX+p hW5iZOTikS4McY38nCyeL6xiD7J4To+dn0bqZa/r7Zwm+C5eYDMB4Op5F6UJva9c ZGsmd/8xgqIn0Q4QhHZM2IRDQrNP8PIocQeceL7erfFIWoB5vQC9jZHEJABiI3xD KL0ph8aDO897wCVgkCMGtJuEBcmZpUIAHCwRJOoZyGy7UYurvpNfkTwxlbzy3RnQ MJn3I3MMLi/XkAK3XhtP5eViF6YqBklwQBqJ9jJd4ztDHT39WoVCuoSWCfyG+bq0 oTiWCFmzrnsRT8fmZxinX94mBKA46HzofVkHQ6p3nUeg3q5KTNE= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:32 2025 by rpki-client