$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NYApM4inJinIK7FJ8DEWqSiSDvQ.roa File: NYApM4inJinIK7FJ8DEWqSiSDvQ.roa (raw, json) Hash identifier: UFw9B3jULp5ge9PxmvY/2KEHIJTfL9CJNoixmvPQQEE= Subject key identifier: 35:80:29:33:88:A7:26:29:C8:2B:B1:49:F0:31:16:A9:28:92:0E:F4 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2676 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NYApM4inJinIK7FJ8DEWqSiSDvQ.roa Signing time: Fri 22 Aug 2025 08:42:57 +0000 ROA not before: Fri 22 Aug 2025 08:42:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9846 (0x2676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3580293388A72629C82BB149F03116A928920EF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:26:56:11:57:ff:46:f7:4d:5c:97:ab:2d:76: 1b:ed:4e:f6:b7:39:38:f8:33:2d:69:62:b4:41:3f: fb:98:86:b4:08:43:ba:74:3e:f3:7f:05:2b:40:23: 8b:5d:89:c2:bb:dc:04:06:49:9a:a5:37:b3:57:8f: bb:eb:0e:6e:89:04:b4:cc:07:4f:0c:4e:e6:01:b6: c8:3f:16:87:7f:92:3a:e9:d9:3f:05:02:75:0d:ae: 2d:ca:b1:b6:c8:eb:10:71:0a:0f:31:ad:0c:31:12: 90:13:d3:fb:5a:25:b7:a6:9b:6a:17:bb:38:87:37: 84:71:86:08:05:bb:a0:7a:ed:d3:94:43:71:1d:f2: 95:23:59:8f:b9:37:4f:c9:04:53:43:c1:88:78:fb: 41:f6:e4:63:83:c8:65:37:e7:6c:e8:51:00:7b:b2: 48:ee:00:00:af:77:c6:81:5b:73:10:53:c5:f4:1e: 1b:94:3c:b9:3a:5d:f4:13:ae:a7:0c:0a:0d:44:19: 5d:0d:f5:b1:4e:19:34:cf:84:ba:b5:e9:98:0c:b2: fd:70:48:7d:ed:f3:a9:4a:e2:dc:29:9e:9c:76:1a: 40:92:c2:d4:cd:85:5b:c1:95:5a:fd:bf:19:90:14: cc:9c:1e:51:67:d2:bc:a2:b2:fb:88:b3:59:d2:58: 86:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:80:29:33:88:A7:26:29:C8:2B:B1:49:F0:31:16:A9:28:92:0E:F4 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NYApM4inJinIK7FJ8DEWqSiSDvQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.146.0/24 Signature Algorithm: sha256WithRSAEncryption 52:70:5c:ed:12:c4:00:0a:82:73:0a:d1:43:05:65:2f:c6:a1: 3c:88:8c:26:04:d5:e3:00:48:58:3a:cd:f9:da:70:64:d2:9c: 42:05:7f:74:35:f0:0b:69:11:6d:e6:60:30:b0:04:e6:cd:3e: a1:84:05:7c:03:57:de:b0:a0:18:9a:7e:eb:aa:21:da:70:08: ba:06:11:e7:6f:2f:aa:6a:12:f7:aa:5a:9a:81:8f:a5:52:dc: ab:15:1f:22:6a:91:06:66:0b:e6:ef:4b:d0:43:ab:dd:9f:22: b5:d7:0c:53:86:e3:e3:63:af:01:40:85:a3:3d:dd:de:65:81: 26:4d:1c:fb:93:81:78:04:f3:89:58:6d:aa:ec:fe:3f:29:8b: 81:0a:c6:11:1d:de:e6:25:25:14:e8:9c:ed:a8:21:a5:80:0f: 09:26:ca:1b:9e:e3:12:d5:a7:8a:b2:ec:2a:3f:18:a4:d4:56: ed:27:c1:20:79:e6:7f:bc:c7:7a:4f:b4:1b:be:d8:9f:e8:2e: a7:76:d2:23:42:90:c9:c7:42:e5:73:ab:a9:cf:58:23:68:a2: 5c:67:85:eb:88:ad:67:61:ca:cf:0f:b9:91:52:f8:f5:89:09: d3:1f:91:cb:58:bb:d0:c3:d9:75:b8:7a:72:fa:34:e3:d5:16: c3:cd:23:5f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJnYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM1ODAyOTMzODhBNzI2 MjlDODJCQjE0OUYwMzExNkE5Mjg5MjBFRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaJlYRV/9G901cl6stdhvtTva3OTj4My1pYrRBP/uYhrQIQ7p0 PvN/BStAI4tdicK73AQGSZqlN7NXj7vrDm6JBLTMB08MTuYBtsg/Fod/kjrp2T8F AnUNri3KsbbI6xBxCg8xrQwxEpAT0/taJbemm2oXuziHN4RxhggFu6B67dOUQ3Ed 8pUjWY+5N0/JBFNDwYh4+0H25GODyGU352zoUQB7skjuAACvd8aBW3MQU8X0HhuU PLk6XfQTrqcMCg1EGV0N9bFOGTTPhLq16ZgMsv1wSH3t86lK4twpnpx2GkCSwtTN hVvBlVr9vxmQFMycHlFn0ryisvuIs1nSWIa3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNYApM4inJinIK7FJ8DEWqSiSDvQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL05ZQXBNNGluSmluSUs3Rko4 REVXcVNpU0R2US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAx npIwDQYJKoZIhvcNAQELBQADggEBAFJwXO0SxAAKgnMK0UMFZS/GoTyIjCYE1eMA SFg6zfnacGTSnEIFf3Q18AtpEW3mYDCwBObNPqGEBXwDV96woBiafuuqIdpwCLoG EedvL6pqEveqWpqBj6VS3KsVHyJqkQZmC+bvS9BDq92fIrXXDFOG4+NjrwFAhaM9 3d5lgSZNHPuTgXgE84lYbars/j8pi4EKxhEd3uYlJRTonO2oIaWADwkmyhue4xLV p4qy7Co/GKTUVu0nwSB55n+8x3pPtBu+2J/oLqd20iNCkMnHQuVzq6nPWCNoolxn heuIrWdhys8PuZFS+PWJCdMfkctYu9DD2XW4enL6NOPVFsPNI18= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:33 2025 by rpki-client