$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PsjQmLuCXaGbKRJgXrWQT1OsuS8.roa File: PsjQmLuCXaGbKRJgXrWQT1OsuS8.roa (raw, json) Hash identifier: UOJKcOPesTIBli+FIxSG7S+hGtuvR91gXxxQ+oQQiLM= Subject key identifier: 3E:C8:D0:98:BB:82:5D:A1:9B:29:12:60:5E:B5:90:4F:53:AC:B9:2F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 269C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PsjQmLuCXaGbKRJgXrWQT1OsuS8.roa Signing time: Fri 22 Aug 2025 08:43:06 +0000 ROA not before: Fri 22 Aug 2025 08:43:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9884 (0x269c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3EC8D098BB825DA19B2912605EB5904F53ACB92F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f3:a2:66:ed:47:63:1a:1e:c3:c8:10:1a:ae: cb:bf:79:71:54:09:10:a1:fc:6f:c4:c7:e3:67:1a: 2c:0a:85:ac:53:3f:9e:96:ca:9f:20:33:0f:0e:91: 77:88:c9:5a:f6:8c:8f:a8:c0:87:e9:3b:31:00:25: da:d7:8c:13:42:09:42:66:9f:46:de:e9:e0:30:42: 13:5c:d2:97:b9:b5:be:d2:1b:c8:1a:68:ed:a0:fc: 3d:6b:4d:f9:a6:a4:48:0f:42:55:d2:d0:bd:8e:0f: 37:42:66:0d:97:c4:f6:ec:71:73:0a:47:8a:e4:4d: 85:de:de:85:a5:8e:93:d9:ac:9a:ea:0c:e2:18:de: 71:82:25:82:bf:81:18:7d:ae:f6:05:67:e0:9c:c2: 34:7b:f4:58:1a:d5:c2:cd:70:0b:35:5c:7b:af:7e: 66:4d:9a:8d:47:0c:28:3d:9c:26:e2:24:f0:18:c7: 31:42:50:73:b2:27:82:1d:28:40:f2:b1:1f:f0:1a: 62:38:8a:64:29:48:a5:61:ce:7a:c5:3b:a8:a2:68: 94:47:d5:11:af:b9:10:64:3a:8d:a7:12:94:b6:6a: 36:7e:9a:3c:da:5c:91:af:05:5e:05:ff:2e:e7:e3: 77:bb:b0:85:29:5d:9c:f8:a8:42:ef:65:f6:a8:e3: c2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:C8:D0:98:BB:82:5D:A1:9B:29:12:60:5E:B5:90:4F:53:AC:B9:2F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PsjQmLuCXaGbKRJgXrWQT1OsuS8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.112.0/21 Signature Algorithm: sha256WithRSAEncryption 27:dc:12:57:7d:1b:95:3a:64:32:f1:51:e9:14:76:ea:1a:a2: b4:f3:bd:85:74:e9:33:3d:b6:95:36:4a:a2:b8:91:ca:1c:1b: 07:f0:11:29:5f:e8:f3:6c:c4:13:5a:bf:fa:d1:4c:ba:44:5f: 32:6d:b2:01:7d:f0:9b:ba:5d:9a:0a:e7:f2:70:6d:15:99:17: ec:cd:f1:4a:1a:9b:43:b4:1d:ac:94:6d:a2:4a:97:43:60:10: d2:d3:ad:0b:6f:a5:a8:48:d3:b2:3e:7d:83:f5:05:37:4c:0f: e9:d5:d9:65:27:91:37:11:34:b6:0f:2e:5d:c0:f2:37:f4:c4: 03:4f:5c:35:75:51:00:4d:35:fb:52:f4:fe:68:38:c0:d1:77: b1:7c:e2:5c:8a:1e:35:22:65:b8:e2:27:6a:5a:82:66:a6:a9: 94:ef:ad:2c:2b:36:50:f1:aa:62:95:2c:b3:05:8f:21:15:77: 0e:8c:a5:04:bd:83:03:42:3b:d7:33:a4:20:2d:3e:a6:b3:0e: 58:d0:e0:58:6e:84:26:fb:cf:89:60:36:9d:50:68:ce:bd:83: 39:7a:91:5c:33:a0:fe:95:ef:a2:79:16:9a:4e:0e:a2:1f:12: 25:cb:5c:0a:dc:48:06:02:8d:86:45:68:01:8f:4d:72:66:e6: e1:c5:e8:98 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJpwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNFQzhEMDk4QkI4MjVE QTE5QjI5MTI2MDVFQjU5MDRGNTNBQ0I5MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ86Jm7UdjGh7DyBAarsu/eXFUCRCh/G/Ex+NnGiwKhaxTP56W yp8gMw8OkXeIyVr2jI+owIfpOzEAJdrXjBNCCUJmn0be6eAwQhNc0pe5tb7SG8ga aO2g/D1rTfmmpEgPQlXS0L2ODzdCZg2XxPbscXMKR4rkTYXe3oWljpPZrJrqDOIY 3nGCJYK/gRh9rvYFZ+CcwjR79Fga1cLNcAs1XHuvfmZNmo1HDCg9nCbiJPAYxzFC UHOyJ4IdKEDysR/wGmI4imQpSKVhznrFO6iiaJRH1RGvuRBkOo2nEpS2ajZ+mjza XJGvBV4F/y7n43e7sIUpXZz4qELvZfao48IvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPsjQmLuCXaGbKRJgXrWQT1OsuS8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1BzalFtTHVDWGFHYktSSmdY cldRVDFPc3VTOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n3AwDQYJKoZIhvcNAQELBQADggEBACfcEld9G5U6ZDLxUekUduoaorTzvYV06TM9 tpU2SqK4kcocGwfwESlf6PNsxBNav/rRTLpEXzJtsgF98Ju6XZoK5/JwbRWZF+zN 8Uoam0O0HayUbaJKl0NgENLTrQtvpahI07I+fYP1BTdMD+nV2WUnkTcRNLYPLl3A 8jf0xANPXDV1UQBNNftS9P5oOMDRd7F84lyKHjUiZbjiJ2pagmamqZTvrSwrNlDx qmKVLLMFjyEVdw6MpQS9gwNCO9czpCAtPqazDljQ4FhuhCb7z4lgNp1QaM69gzl6 kVwzoP6V76J5FppODqIfEiXLXArcSAYCjYZFaAGPTXJm5uHF6Jg= -----END CERTIFICATE-----Generated at Sun Aug 24 11:45:04 2025 by rpki-client