$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/L7ouZlx8U9T6CvbstGDbx74QYpc.roa File: L7ouZlx8U9T6CvbstGDbx74QYpc.roa (raw, json) Hash identifier: dS5V8pkzZgQH20CKKQ8qm3dZ3JEIP7UhdacYfQ7mo5g= Subject key identifier: 2F:BA:2E:66:5C:7C:53:D4:FA:0A:F6:EC:B4:60:DB:C7:BE:10:62:97 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25E1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/L7ouZlx8U9T6CvbstGDbx74QYpc.roa Signing time: Fri 22 Aug 2025 08:42:21 +0000 ROA not before: Fri 22 Aug 2025 08:42:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9697 (0x25e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2FBA2E665C7C53D4FA0AF6ECB460DBC7BE106297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c2:48:4f:25:aa:6b:88:28:47:78:43:0f:41: f3:6d:80:91:28:19:ba:57:8b:9b:a1:2c:83:68:25: 36:ad:88:25:e5:46:f3:a1:ed:0a:0a:3b:94:4c:8d: 6b:91:63:ff:d6:c4:86:d7:f9:85:5a:5a:2f:0a:46: 5f:d3:19:90:23:25:ec:0a:48:35:46:9f:8a:64:9e: b5:3f:66:c2:28:5d:e5:e2:38:04:47:0e:e4:4b:43: 0c:09:a3:83:90:1d:b7:f5:1e:95:ef:cc:22:73:13: 1c:5b:05:2c:96:42:c5:70:95:4f:13:33:4c:85:56: 2e:7e:cc:03:68:f2:46:c2:b0:8b:ea:e2:e6:d5:51: 67:0e:b0:48:ec:9e:ad:fa:50:2b:c0:3e:6c:fe:f1: 61:f7:72:00:4f:7c:3e:4f:f9:89:30:c1:a5:9e:1a: a2:fd:75:05:b3:11:05:90:77:a6:0f:34:7d:79:0c: b6:3f:5e:5d:b8:c3:d3:2a:d8:1a:72:44:fe:e0:26: 14:34:2f:0f:0d:6c:35:ef:83:23:ae:d3:60:a6:ed: 62:13:64:ec:08:7a:70:05:20:10:00:ef:2b:2b:05: f5:12:9a:2c:bb:a8:5e:26:1a:6f:90:2e:af:5e:1a: fe:d8:af:ec:f4:e1:12:ae:f2:e6:96:a1:52:32:b2: 65:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BA:2E:66:5C:7C:53:D4:FA:0A:F6:EC:B4:60:DB:C7:BE:10:62:97 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/L7ouZlx8U9T6CvbstGDbx74QYpc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.168.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:a9:0d:de:03:f6:e0:92:d3:a7:90:7d:29:a7:d0:9e:ec:fe: f2:d5:b6:32:d1:01:7c:2d:ce:e5:0a:88:24:af:36:32:8d:64: dd:41:25:c5:4c:45:ad:78:e6:a7:d5:8b:93:05:da:63:3f:fd: 93:c1:83:02:41:c9:9f:b2:55:e5:86:c9:29:64:5e:f2:cf:43: 97:8c:ec:95:a3:77:fc:f8:c5:3b:57:8e:e1:52:b0:c7:bc:f5: a4:a0:fd:b3:ba:36:b1:98:68:88:b8:f0:ad:24:22:65:7e:e9: 95:f6:76:3e:48:e3:95:7e:0b:bb:95:a6:ca:6f:0e:24:20:70: 33:b0:05:d2:c3:33:fa:7f:f5:1f:95:1a:44:1e:8a:15:4f:95: 6e:92:c8:5c:d6:cf:e4:3d:b5:66:cb:a5:5c:52:6c:bb:de:bd: 92:cd:ab:35:f5:58:ab:0d:63:3c:f8:22:e9:c9:0d:58:0c:38: 5d:7e:db:59:d4:c9:fd:96:6d:05:b4:3d:7c:d9:fe:18:aa:b9: 5f:4d:c0:88:4e:5d:a5:0e:ce:0e:c5:20:4f:89:95:6e:06:ad: 0a:fd:b5:9b:67:bc:91:55:cb:52:ae:12:f6:f0:66:e7:71:c7: d7:d5:9e:8b:3d:1a:46:71:3d:e0:76:6f:e2:16:e4:33:89:2e: e1:42:d6:b3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJeEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJGQkEyRTY2NUM3QzUz RDRGQTBBRjZFQ0I0NjBEQkM3QkUxMDYyOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEwkhPJapriChHeEMPQfNtgJEoGbpXi5uhLINoJTatiCXlRvOh 7QoKO5RMjWuRY//WxIbX+YVaWi8KRl/TGZAjJewKSDVGn4pknrU/ZsIoXeXiOARH DuRLQwwJo4OQHbf1HpXvzCJzExxbBSyWQsVwlU8TM0yFVi5+zANo8kbCsIvq4ubV UWcOsEjsnq36UCvAPmz+8WH3cgBPfD5P+YkwwaWeGqL9dQWzEQWQd6YPNH15DLY/ Xl24w9Mq2BpyRP7gJhQ0Lw8NbDXvgyOu02Cm7WITZOwIenAFIBAA7ysrBfUSmiy7 qF4mGm+QLq9eGv7Yr+z04RKu8uaWoVIysmVpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUL7ouZlx8U9T6CvbstGDbx74QYpcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0w3b3VabHg4VTlUNkN2YnN0 R0RieDc0UVlwYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n6gwDQYJKoZIhvcNAQELBQADggEBAF+pDd4D9uCS06eQfSmn0J7s/vLVtjLRAXwt zuUKiCSvNjKNZN1BJcVMRa145qfVi5MF2mM//ZPBgwJByZ+yVeWGySlkXvLPQ5eM 7JWjd/z4xTtXjuFSsMe89aSg/bO6NrGYaIi48K0kImV+6ZX2dj5I45V+C7uVpspv DiQgcDOwBdLDM/p/9R+VGkQeihVPlW6SyFzWz+Q9tWbLpVxSbLvevZLNqzX1WKsN Yzz4IunJDVgMOF1+21nUyf2WbQW0PXzZ/hiquV9NwIhOXaUOzg7FIE+JlW4GrQr9 tZtnvJFVy1KuEvbwZudxx9fVnos9GkZxPeB2b+IW5DOJLuFC1rM= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:05 2025 by rpki-client