$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RpfdGauRmukqAVBSqzLHMl5mHY0.roa File: RpfdGauRmukqAVBSqzLHMl5mHY0.roa (raw, json) Hash identifier: SajG0xM3r4eVTr1SPuZB7yaSte4UMdgmC1Dz89+3pcI= Subject key identifier: 46:97:DD:19:AB:91:9A:E9:2A:01:50:52:AB:32:C7:32:5E:66:1D:8D Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 271F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RpfdGauRmukqAVBSqzLHMl5mHY0.roa Signing time: Fri 22 Aug 2025 08:43:35 +0000 ROA not before: Fri 22 Aug 2025 08:43:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 103.225.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10015 (0x271f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4697DD19AB919AE92A015052AB32C7325E661D8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:db:15:ac:23:8b:26:15:21:fb:16:75:2d:1c: 5a:4e:3f:04:bd:bf:d3:93:3e:95:93:ef:3f:c1:2c: 75:2a:c4:00:4c:43:d2:51:c8:fe:04:9b:97:97:95: c3:be:0d:ec:7e:8f:b6:2a:2c:01:7c:10:82:0f:ef: 9e:ce:56:1d:7d:9a:b0:bc:8a:7f:49:ca:de:94:5f: 56:78:32:54:c7:8d:96:76:50:f5:38:81:a3:d3:dc: 2c:bc:da:85:08:90:9d:41:53:72:c9:bf:3d:0a:1b: 83:4d:f3:47:5a:14:66:1e:b8:8c:c6:fe:3d:22:94: 03:2a:40:c4:92:04:57:79:9a:cf:a0:85:d2:7b:39: d1:a0:54:78:30:f2:e1:9d:c0:7a:2a:e1:7c:97:21: 3b:a1:dc:fd:5c:74:aa:bf:4a:12:d4:4b:de:77:2e: 78:78:48:a2:2f:99:fe:5a:5b:f7:d2:33:68:5e:fc: 26:4c:d0:a8:bb:a3:bc:b8:2e:59:d2:a7:2a:e8:53: 46:8b:35:1b:2d:bd:2f:05:13:be:d4:ef:13:35:61: b1:73:8d:e4:2a:4a:22:dd:dc:9f:e0:4f:96:1d:42: 89:44:17:fe:bb:09:23:46:c1:3d:6f:64:ca:10:72: b8:4b:38:26:ae:45:a9:3e:e5:89:35:1a:0e:ff:77: 2d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:97:DD:19:AB:91:9A:E9:2A:01:50:52:AB:32:C7:32:5E:66:1D:8D X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RpfdGauRmukqAVBSqzLHMl5mHY0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.225.0.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:4c:18:83:37:83:a8:b3:37:75:51:70:5a:5c:59:45:f3:9c: a9:d1:f9:24:51:da:31:c9:f7:bc:cf:e3:68:83:6f:a5:28:72: 24:84:c5:2b:48:36:93:7f:02:42:2d:0e:f9:a9:bb:0a:e5:0e: d1:84:de:20:34:9f:60:bc:b3:9d:0b:31:5f:f7:f4:9e:9f:da: 29:54:b1:49:76:ac:79:c5:d8:74:6c:c8:9c:2b:a4:03:ab:a1: 24:84:75:32:f3:c7:d0:93:33:8e:5d:30:21:38:15:8c:e8:ca: be:31:8d:07:20:e7:74:90:ec:4c:82:0f:a1:96:85:01:86:6d: dc:b3:ab:d7:75:f3:71:07:c3:e1:f3:27:ef:36:ee:fe:96:db: e4:3f:5b:fc:fd:ee:02:e1:6d:4c:75:cf:97:46:97:da:46:4f: 68:35:9b:23:9f:62:5f:0f:a1:99:80:7f:63:bb:f7:d8:5d:cc: ff:60:93:32:57:e0:47:81:0f:db:0a:d4:f3:15:de:91:88:00: 61:a9:e2:2d:6b:0a:87:5b:b7:c6:b0:95:c9:bf:52:c2:9f:56: a4:03:39:92:6e:92:65:04:0c:53:54:e3:ad:ed:a6:03:ca:2b: c0:22:a4:c1:69:b4:fa:fd:86:c8:c3:8c:3a:f7:87:4b:0d:70: 04:57:56:c9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJx8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ2OTdERDE5QUI5MTlB RTkyQTAxNTA1MkFCMzJDNzMyNUU2NjFEOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDW2xWsI4smFSH7FnUtHFpOPwS9v9OTPpWT7z/BLHUqxABMQ9JR yP4Em5eXlcO+Dex+j7YqLAF8EIIP757OVh19mrC8in9Jyt6UX1Z4MlTHjZZ2UPU4 gaPT3Cy82oUIkJ1BU3LJvz0KG4NN80daFGYeuIzG/j0ilAMqQMSSBFd5ms+ghdJ7 OdGgVHgw8uGdwHoq4XyXITuh3P1cdKq/ShLUS953Lnh4SKIvmf5aW/fSM2he/CZM 0Ki7o7y4LlnSpyroU0aLNRstvS8FE77U7xM1YbFzjeQqSiLd3J/gT5YdQolEF/67 CSNGwT1vZMoQcrhLOCauRak+5Yk1Gg7/dy2rAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQURpfdGauRmukqAVBSqzLHMl5mHY0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1JwZmRHYXVSbXVrcUFWQlNx ekxITWw1bUhZMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn 4QAwDQYJKoZIhvcNAQELBQADggEBAE1MGIM3g6izN3VRcFpcWUXznKnR+SRR2jHJ 97zP42iDb6UociSExStINpN/AkItDvmpuwrlDtGE3iA0n2C8s50LMV/39J6f2ilU sUl2rHnF2HRsyJwrpAOroSSEdTLzx9CTM45dMCE4FYzoyr4xjQcg53SQ7EyCD6GW hQGGbdyzq9d183EHw+HzJ+827v6W2+Q/W/z97gLhbUx1z5dGl9pGT2g1myOfYl8P oZmAf2O799hdzP9gkzJX4EeBD9sK1PMV3pGIAGGp4i1rCodbt8awlcm/UsKfVqQD OZJukmUEDFNU463tpgPKK8AipMFptPr9hsjDjDr3h0sNcARXVsk= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:37 2025 by rpki-client