$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OXfwxqb37zCeJxSsjnEi3omoqx8.roa File: OXfwxqb37zCeJxSsjnEi3omoqx8.roa (raw, json) Hash identifier: R2nL1JJefTEVBdzWKmwF+qMF/BO5rMJvDjVD+YfpCZM= Subject key identifier: 39:77:F0:C6:A6:F7:EF:30:9E:27:14:AC:8E:71:22:DE:89:A8:AB:1F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2743 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OXfwxqb37zCeJxSsjnEi3omoqx8.roa Signing time: Fri 22 Aug 2025 08:43:43 +0000 ROA not before: Fri 22 Aug 2025 08:43:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10051 (0x2743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3977F0C6A6F7EF309E2714AC8E7122DE89A8AB1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:73:9a:5a:d1:33:05:60:d5:bb:1e:d2:78:f9: 82:77:87:64:97:55:73:c3:8e:fc:f3:96:b5:d4:63: 31:e6:b5:d4:21:8d:56:68:5a:eb:1a:2b:1c:cc:1b: 6e:aa:f8:7b:fb:a2:37:97:98:0d:c3:c5:e8:a3:f5: 5d:24:56:0d:c3:55:06:64:99:60:67:fa:75:f0:82: 43:68:28:65:5d:d4:a0:f1:8f:10:88:6c:f6:3a:3b: 59:35:7f:d6:f1:0c:bc:12:5a:35:ca:df:d4:eb:52: 9f:aa:c8:49:73:73:a7:72:e2:de:fe:cc:14:da:11: 03:9c:73:79:3b:7d:ca:34:a5:8a:10:cd:c3:61:a3: e2:a1:99:88:a7:63:85:04:9d:1a:d9:e0:22:df:1b: ea:98:a1:2d:54:07:17:6a:48:14:7d:9f:c1:15:2a: d7:6d:3d:5d:b6:07:3c:3c:2e:91:c1:f2:e1:c9:eb: 7d:9b:e7:63:94:b6:38:88:43:8a:4b:eb:bc:71:6a: 91:64:86:61:b3:e9:23:c9:3c:86:5f:58:35:41:14: 13:41:bc:0c:7b:eb:16:48:17:08:69:37:68:5e:4b: 50:dd:88:ea:80:99:26:64:d8:52:fe:71:ac:32:6d: fc:f6:bc:12:bf:13:ed:aa:7a:2e:04:c2:01:65:35: a4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:77:F0:C6:A6:F7:EF:30:9E:27:14:AC:8E:71:22:DE:89:A8:AB:1F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OXfwxqb37zCeJxSsjnEi3omoqx8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.232.0/21 Signature Algorithm: sha256WithRSAEncryption 8d:90:62:42:86:52:62:64:f5:51:8d:06:61:fe:3f:d4:dd:a0: 9c:bf:31:e4:c4:ee:96:58:7a:bd:51:b1:47:51:cd:de:de:4a: 6f:be:d6:08:f8:e2:05:06:82:aa:7f:3a:8a:65:a7:6e:46:ca: d4:34:aa:28:05:d5:8d:0a:1a:67:f5:eb:65:1d:64:5b:85:e1: 2e:a4:ed:78:3b:b8:f2:96:b0:0d:f0:a4:2a:03:f4:80:40:2c: e3:c3:9a:d4:b8:ba:66:d9:ee:ba:2f:cd:b2:e7:9c:43:90:70: 4c:75:b3:03:ab:77:52:a7:39:3d:d9:e7:f3:82:44:ae:25:fd: eb:3a:7e:27:b1:11:be:ec:62:05:8f:04:52:fc:31:db:bd:16: 01:6d:63:f1:01:8a:6a:dd:31:79:f4:a8:44:99:0d:48:1b:cb: 21:96:6b:88:61:46:8b:39:bf:7d:2b:62:67:1f:72:24:fc:4c: 6e:53:ab:04:ed:75:06:eb:6f:cb:14:82:c6:be:e2:9f:ae:1d: a1:b1:f3:3a:27:13:a7:76:38:6b:db:52:74:fa:e1:30:e7:85: 0d:96:90:66:3f:00:7d:dc:9b:a2:0c:ec:fa:32:f7:a4:d7:ac: 63:cb:77:60:6f:43:15:1a:13:a8:5f:f4:de:09:d0:9b:05:7f: 88:c9:82:32 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJ0MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM5NzdGMEM2QTZGN0VG MzA5RTI3MTRBQzhFNzEyMkRFODlBOEFCMUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgc5pa0TMFYNW7HtJ4+YJ3h2SXVXPDjvzzlrXUYzHmtdQhjVZo WusaKxzMG26q+Hv7ojeXmA3Dxeij9V0kVg3DVQZkmWBn+nXwgkNoKGVd1KDxjxCI bPY6O1k1f9bxDLwSWjXK39TrUp+qyElzc6dy4t7+zBTaEQOcc3k7fco0pYoQzcNh o+KhmYinY4UEnRrZ4CLfG+qYoS1UBxdqSBR9n8EVKtdtPV22Bzw8LpHB8uHJ632b 52OUtjiIQ4pL67xxapFkhmGz6SPJPIZfWDVBFBNBvAx76xZIFwhpN2heS1DdiOqA mSZk2FL+cawybfz2vBK/E+2qei4EwgFlNaSJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOXfwxqb37zCeJxSsjnEi3omoqx8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09YZnd4cWIzN3pDZUp4U3Nq bkVpM29tb3F4OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n+gwDQYJKoZIhvcNAQELBQADggEBAI2QYkKGUmJk9VGNBmH+P9TdoJy/MeTE7pZY er1RsUdRzd7eSm++1gj44gUGgqp/Ooplp25GytQ0qigF1Y0KGmf162UdZFuF4S6k 7Xg7uPKWsA3wpCoD9IBALOPDmtS4umbZ7rovzbLnnEOQcEx1swOrd1KnOT3Z5/OC RK4l/es6fiexEb7sYgWPBFL8Mdu9FgFtY/EBimrdMXn0qESZDUgbyyGWa4hhRos5 v30rYmcfciT8TG5TqwTtdQbrb8sUgsa+4p+uHaGx8zonE6d2OGvbUnT64TDnhQ2W kGY/AH3cm6IM7Poy96TXrGPLd2BvQxUaE6hf9N4J0JsFf4jJgjI= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:18 2025 by rpki-client