$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MXvp7XsZ7Cj8k4gP9Xf2UGWa0q4.roa File: MXvp7XsZ7Cj8k4gP9Xf2UGWa0q4.roa (raw, json) Hash identifier: rabJs7E7KAIvqPDl9p+aucOzsHnDLXkS6MmQXQaNjmo= Subject key identifier: 31:7B:E9:ED:7B:19:EC:28:FC:93:88:0F:F5:77:F6:50:65:9A:D2:AE Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 261D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MXvp7XsZ7Cj8k4gP9Xf2UGWa0q4.roa Signing time: Fri 22 Aug 2025 08:42:36 +0000 ROA not before: Fri 22 Aug 2025 08:42:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9757 (0x261d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=317BE9ED7B19EC28FC93880FF577F650659AD2AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7a:f0:2e:a9:6d:8c:62:b4:ba:07:da:60:97: 95:bb:ca:04:c3:06:11:fd:1f:f8:f2:a2:a0:fc:97: 3c:dd:e3:62:39:19:0b:35:71:39:f9:4f:46:27:34: 03:50:9a:9b:61:a1:3e:a7:17:07:ea:62:bd:3c:d9: b0:40:1d:8e:75:40:ee:74:2c:38:ea:ad:01:b1:1f: fe:b6:f7:f6:c9:2c:f2:4d:5b:53:a3:11:8c:a1:c4: 3a:49:77:48:29:6d:f0:90:fd:9a:06:30:c4:c3:72: 90:8d:cc:d7:33:db:bc:9d:08:ef:5e:8f:6d:31:51: f9:c7:b9:62:5f:14:e7:7a:82:c6:8e:73:f6:0c:18: c1:3a:c6:1c:fc:d7:22:74:ad:6f:e5:4c:0e:ae:cd: 17:75:5e:90:46:6d:30:7a:1f:ae:51:4c:72:e4:7b: 00:e7:33:94:6c:03:b9:03:b3:98:6d:d4:9e:8c:1b: c3:34:20:38:a6:7a:b4:31:2d:7e:84:d3:4f:ac:8a: 02:ff:a9:ab:eb:46:32:79:ee:0e:11:30:00:a4:75: 3d:bd:de:e9:08:08:7e:8c:cb:fa:7e:8d:e0:2a:ce: e2:e3:25:dd:e7:42:bd:38:f1:60:a8:31:e8:56:7c: ce:17:9d:71:63:cf:12:2c:25:99:ea:93:90:1c:a6: d4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7B:E9:ED:7B:19:EC:28:FC:93:88:0F:F5:77:F6:50:65:9A:D2:AE X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MXvp7XsZ7Cj8k4gP9Xf2UGWa0q4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.16.0/20 Signature Algorithm: sha256WithRSAEncryption 23:e4:02:39:15:d0:6b:c6:d0:44:bc:01:c9:99:ab:46:47:dc: 0f:4d:72:af:5c:f3:51:20:cf:20:fb:f4:3d:95:13:2c:62:2f: 15:bd:ce:53:9c:3d:0b:c9:d5:c3:3e:b8:f6:18:ca:7a:ea:3b: 5d:b3:5f:a5:e8:fc:f4:32:e3:53:23:ed:82:e7:e1:b0:4a:a9: 85:00:09:aa:09:4f:c3:ca:d5:f5:01:8c:06:b3:36:1f:0f:cb: dd:89:d9:5e:f5:a2:d3:b2:bb:cb:8f:fe:f4:75:83:99:2a:e6: 08:3f:47:0f:c7:a9:1b:ae:77:8f:cd:83:77:59:da:8e:31:ef: ee:71:e5:8f:55:98:f8:f3:4c:ba:cc:5c:c0:e1:26:bc:bf:d6: 8f:4b:64:0e:2f:c0:f0:d2:75:89:23:6d:fe:bb:1a:e7:ca:a4: 84:b2:a4:bb:04:fa:06:de:dd:07:ed:d5:b7:68:fd:a6:d8:ff: 6d:78:32:7d:e9:57:41:cc:56:4d:03:cf:b0:45:f7:2a:78:89: 23:77:26:7e:e1:b0:04:2e:d2:23:0c:fc:35:9b:e5:ff:ad:e6: a4:2a:10:30:e0:7e:0d:c5:e0:09:ef:0e:e4:46:30:58:4a:2a: c0:16:c8:22:f6:b1:2b:df:e3:49:1b:3a:60:82:10:93:2e:e5: 57:72:40:de -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJh0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMxN0JFOUVEN0IxOUVD MjhGQzkzODgwRkY1NzdGNjUwNjU5QUQyQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYevAuqW2MYrS6B9pgl5W7ygTDBhH9H/jyoqD8lzzd42I5GQs1 cTn5T0YnNANQmpthoT6nFwfqYr082bBAHY51QO50LDjqrQGxH/629/bJLPJNW1Oj EYyhxDpJd0gpbfCQ/ZoGMMTDcpCNzNcz27ydCO9ej20xUfnHuWJfFOd6gsaOc/YM GME6xhz81yJ0rW/lTA6uzRd1XpBGbTB6H65RTHLkewDnM5RsA7kDs5ht1J6MG8M0 IDimerQxLX6E00+sigL/qavrRjJ57g4RMACkdT293ukICH6My/p+jeAqzuLjJd3n Qr048WCoMehWfM4XnXFjzxIsJZnqk5AcptSjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUMXvp7XsZ7Cj8k4gP9Xf2UGWa0q4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL01YdnA3WHNaN0NqOGs0Z1A5 WGYyVUdXYTBxNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx nxAwDQYJKoZIhvcNAQELBQADggEBACPkAjkV0GvG0ES8AcmZq0ZH3A9Ncq9c81Eg zyD79D2VEyxiLxW9zlOcPQvJ1cM+uPYYynrqO12zX6Xo/PQy41Mj7YLn4bBKqYUA CaoJT8PK1fUBjAazNh8Py92J2V71otOyu8uP/vR1g5kq5gg/Rw/HqRuud4/Ng3dZ 2o4x7+5x5Y9VmPjzTLrMXMDhJry/1o9LZA4vwPDSdYkjbf67GufKpISypLsE+gbe 3Qft1bdo/abY/214Mn3pV0HMVk0Dz7BF9yp4iSN3Jn7hsAQu0iMM/DWb5f+t5qQq EDDgfg3F4AnvDuRGMFhKKsAWyCL2sSvf40kbOmCCEJMu5VdyQN4= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:15 2025 by rpki-client