$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JkiDgAsqDGS4C5GwHq7JIL8g33E.roa File: JkiDgAsqDGS4C5GwHq7JIL8g33E.roa (raw, json) Hash identifier: 8mJS5+eagVSi7Bb0turMIuHkpbjouOzpladaOG0Ato4= Subject key identifier: 26:48:83:80:0B:2A:0C:64:B8:0B:91:B0:1E:AE:C9:20:BF:20:DF:71 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2616 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JkiDgAsqDGS4C5GwHq7JIL8g33E.roa Signing time: Fri 22 Aug 2025 08:42:34 +0000 ROA not before: Fri 22 Aug 2025 08:42:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 49.158.240.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9750 (0x2616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=264883800B2A0C64B80B91B01EAEC920BF20DF71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3d:1c:2a:b0:00:5a:68:8a:24:9c:3e:01:da: bb:4d:bd:7f:97:36:3e:52:23:33:35:9a:fe:5f:b9: a5:e6:38:1f:13:2b:a4:3b:03:a7:78:db:4d:cd:b5: 38:63:2c:d0:93:78:4a:e5:63:a6:82:0b:47:81:de: 4c:63:3f:42:19:5a:77:c3:bd:d0:25:f2:bd:81:1e: d1:70:2f:f6:fc:d5:57:8b:55:f6:de:30:0b:94:85: 33:f8:b3:a5:c2:00:ff:7f:38:9b:32:a8:fd:1c:7b: eb:c5:65:88:73:19:80:3d:7a:ca:33:ce:60:72:c6: 1a:f8:93:74:c5:ad:51:73:63:d9:fc:1b:c8:83:10: b7:67:d5:bc:4a:33:33:db:c7:44:26:f8:4c:66:94: dd:b5:0d:10:82:b5:b2:9d:02:21:05:f8:bf:55:1c: 19:e0:c0:cd:31:20:d8:9d:c9:0f:aa:23:eb:9f:f3: 28:21:50:d1:5d:fd:bc:38:c3:b6:34:3e:d0:44:4e: 72:b3:b7:61:ed:0a:94:91:0d:6d:f6:0c:14:f2:70: d7:22:0b:c6:db:83:72:c0:99:84:1c:8e:63:9d:f9: aa:00:16:58:41:77:d5:4f:6d:70:4f:89:c0:1c:ae: 17:72:3d:55:5c:6e:cf:37:61:bd:ec:f6:e5:3c:03: 1a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:48:83:80:0B:2A:0C:64:B8:0B:91:B0:1E:AE:C9:20:BF:20:DF:71 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JkiDgAsqDGS4C5GwHq7JIL8g33E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.240.0/21 Signature Algorithm: sha256WithRSAEncryption 0c:8f:9e:c9:83:43:e1:2d:00:02:5d:1e:aa:21:f4:b9:69:85: f6:ab:dd:b2:7e:ee:2e:0d:fc:04:97:a7:0a:e6:e9:45:56:22: b2:c0:9b:e8:18:2b:d0:c9:73:04:08:b7:65:4a:57:9d:44:fd: a9:72:bb:e3:20:c2:2a:90:70:9f:58:30:11:cb:73:cd:06:a6: db:4c:26:9f:df:67:f7:f9:7f:4b:58:14:55:5d:ab:47:30:0f: 14:80:94:26:4d:e3:7a:59:76:50:ba:39:b3:13:e1:e5:a0:f1: dd:70:82:24:ca:d5:ee:7c:8e:1a:ed:21:34:99:88:56:e9:32: 47:9f:3b:d1:46:7d:49:1e:f9:aa:27:bb:73:a3:52:47:ca:fe: 5f:dd:f0:4e:64:6d:71:43:9f:24:32:97:63:f2:20:bc:aa:db: 2d:75:e5:da:c3:2b:2b:7b:db:d4:c9:5d:83:a5:15:89:d0:6d: b6:d5:91:02:86:e4:bf:fa:db:6d:02:52:be:46:20:93:3b:b1: 84:97:f2:99:86:b2:df:39:12:b0:d3:cc:2e:52:bb:d3:1a:76: b7:b6:0c:93:b1:10:0f:44:9b:74:a9:35:29:1d:07:79:38:c3: fd:89:35:0e:c2:cb:93:0a:24:b4:c4:3f:dd:dd:91:93:54:5b: 1b:80:e2:52 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI2NDg4MzgwMEIyQTBD NjRCODBCOTFCMDFFQUVDOTIwQkYyMERGNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIPRwqsABaaIoknD4B2rtNvX+XNj5SIzM1mv5fuaXmOB8TK6Q7 A6d4203NtThjLNCTeErlY6aCC0eB3kxjP0IZWnfDvdAl8r2BHtFwL/b81VeLVfbe MAuUhTP4s6XCAP9/OJsyqP0ce+vFZYhzGYA9esozzmByxhr4k3TFrVFzY9n8G8iD ELdn1bxKMzPbx0Qm+ExmlN21DRCCtbKdAiEF+L9VHBngwM0xINidyQ+qI+uf8ygh UNFd/bw4w7Y0PtBETnKzt2HtCpSRDW32DBTycNciC8bbg3LAmYQcjmOd+aoAFlhB d9VPbXBPicAcrhdyPVVcbs83Yb3s9uU8AxrtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJkiDgAsqDGS4C5GwHq7JIL8g33EwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0praURnQXNxREdTNEM1R3dI cTdKSUw4ZzMzRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nvAwDQYJKoZIhvcNAQELBQADggEBAAyPnsmDQ+EtAAJdHqoh9Llphfar3bJ+7i4N /ASXpwrm6UVWIrLAm+gYK9DJcwQIt2VKV51E/alyu+MgwiqQcJ9YMBHLc80GpttM Jp/fZ/f5f0tYFFVdq0cwDxSAlCZN43pZdlC6ObMT4eWg8d1wgiTK1e58jhrtITSZ iFbpMkefO9FGfUke+aonu3OjUkfK/l/d8E5kbXFDnyQyl2PyILyq2y115drDKyt7 29TJXYOlFYnQbbbVkQKG5L/6220CUr5GIJM7sYSX8pmGst85ErDTzC5Su9Madre2 DJOxEA9Em3SpNSkdB3k4w/2JNQ7Cy5MKJLTEP93dkZNUWxuA4lI= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:40 2025 by rpki-client