$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IzRBv_KxWvsZQbcdGD9Zlza0b-A.roa File: IzRBv_KxWvsZQbcdGD9Zlza0b-A.roa (raw, json) Hash identifier: tugqKEIoZ5uezOE1T/IFW3wnoqm0RQx/jIw/NePcPb4= Subject key identifier: 23:34:41:BF:F2:B1:5A:FB:19:41:B7:1D:18:3F:59:97:36:B4:6F:E0 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 269D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IzRBv_KxWvsZQbcdGD9Zlza0b-A.roa Signing time: Fri 22 Aug 2025 08:43:06 +0000 ROA not before: Fri 22 Aug 2025 08:43:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 49.159.80.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9885 (0x269d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=233441BFF2B15AFB1941B71D183F599736B46FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:83:0f:55:bd:8d:f8:ed:e3:4b:88:bb:39:e6: c3:e1:ac:48:19:a3:66:27:29:73:ba:ef:f9:59:09: b3:d8:15:b8:a0:d0:10:05:35:97:62:d5:12:fc:b4: b3:b5:a7:be:6e:12:4b:9c:be:e1:90:38:0c:42:51: 85:80:ee:63:c0:eb:8b:60:b1:30:33:37:22:aa:1b: 5d:e0:eb:b2:70:59:c2:27:37:5e:7c:a2:97:a2:ff: 48:dd:2f:28:9e:f4:72:0c:e6:65:b9:bc:29:7b:f5: 9c:98:db:6a:ad:54:d3:04:5a:b1:e3:fc:ab:76:34: 56:d9:3b:bb:fb:88:b8:ae:ac:e3:6d:28:dd:40:0b: 28:9c:85:97:4c:6d:e1:4e:a0:ce:9f:bb:a9:a5:ff: e8:b8:f5:3b:cf:c2:df:ff:a7:ad:b6:7a:12:d8:22: 08:34:b1:0d:08:fc:50:56:54:82:f9:0e:33:d9:6f: aa:85:c8:0a:a0:dc:5f:12:62:2f:06:48:03:b5:04: 50:f8:76:ff:e8:fa:17:63:e9:ca:c5:6c:00:22:64: 35:76:18:f1:38:50:65:1c:40:b2:be:d3:df:9b:06: b9:70:f9:ab:ec:1a:67:a4:34:d8:fc:56:77:ea:79: 26:5b:76:f4:88:bb:96:df:6f:d7:76:1a:fe:f3:20: b3:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:34:41:BF:F2:B1:5A:FB:19:41:B7:1D:18:3F:59:97:36:B4:6F:E0 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IzRBv_KxWvsZQbcdGD9Zlza0b-A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.80.0/20 Signature Algorithm: sha256WithRSAEncryption 7c:8c:c2:5b:f5:54:0f:0c:d8:52:8d:47:ee:25:33:c1:87:e8: 43:70:fd:3e:86:73:f7:76:ef:6e:30:44:3b:8b:ea:30:95:39: 42:45:aa:bc:07:c6:4f:af:43:e9:e0:0b:6a:db:84:44:92:cc: 3f:53:0c:0b:61:8f:1e:7e:a8:6e:d5:52:87:f3:03:a9:af:b9: c2:c6:75:a9:f2:c8:5a:05:66:b5:6a:dc:b1:a9:0e:b2:ab:72: f7:0f:92:8e:ef:c8:54:3b:db:b1:92:f9:c6:54:d8:85:64:0f: 75:87:04:f0:88:e3:6c:d7:64:58:85:64:c2:47:7f:40:95:6c: f3:b2:1b:59:e3:10:c9:ab:e0:da:01:5e:90:ab:ec:1a:bd:35: 1a:ef:39:0e:3a:5b:02:2c:53:8e:42:ec:15:11:51:1a:d3:02: a1:7d:d4:85:b8:51:f7:2f:f5:a1:46:7d:64:b9:02:05:6a:76: c5:ef:41:49:c7:60:a8:c2:dd:30:bd:f3:ed:82:c9:e5:56:ce: b1:d5:db:d4:84:3d:c1:d8:94:5f:13:a8:ac:5c:d8:c1:bc:f0: 83:c0:67:37:7d:48:26:4c:79:1f:13:65:42:86:29:3d:7c:4b: 08:6e:dd:d9:c3:8c:67:b5:6a:bf:ed:50:b5:8a:d2:9e:28:9f: 52:8d:a8:58 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJp0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIzMzQ0MUJGRjJCMTVB RkIxOTQxQjcxRDE4M0Y1OTk3MzZCNDZGRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCXgw9VvY347eNLiLs55sPhrEgZo2YnKXO67/lZCbPYFbig0BAF NZdi1RL8tLO1p75uEkucvuGQOAxCUYWA7mPA64tgsTAzNyKqG13g67JwWcInN158 opei/0jdLyie9HIM5mW5vCl79ZyY22qtVNMEWrHj/Kt2NFbZO7v7iLiurONtKN1A CyichZdMbeFOoM6fu6ml/+i49TvPwt//p622ehLYIgg0sQ0I/FBWVIL5DjPZb6qF yAqg3F8SYi8GSAO1BFD4dv/o+hdj6crFbAAiZDV2GPE4UGUcQLK+09+bBrlw+avs GmekNNj8VnfqeSZbdvSIu5bfb9d2Gv7zILPDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIzRBv/KxWvsZQbcdGD9Zlza0b+AwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0l6UkJ2X0t4V3ZzWlFiY2RH RDlabHphMGItQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx n1AwDQYJKoZIhvcNAQELBQADggEBAHyMwlv1VA8M2FKNR+4lM8GH6ENw/T6Gc/d2 724wRDuL6jCVOUJFqrwHxk+vQ+ngC2rbhESSzD9TDAthjx5+qG7VUofzA6mvucLG danyyFoFZrVq3LGpDrKrcvcPko7vyFQ727GS+cZU2IVkD3WHBPCI42zXZFiFZMJH f0CVbPOyG1njEMmr4NoBXpCr7Bq9NRrvOQ46WwIsU45C7BURURrTAqF91IW4Ufcv 9aFGfWS5AgVqdsXvQUnHYKjC3TC98+2CyeVWzrHV29SEPcHYlF8TqKxc2MG88IPA Zzd9SCZMeR8TZUKGKT18Swhu3dnDjGe1ar/tULWK0p4on1KNqFg= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:47 2025 by rpki-client