$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/W9bMoHztC54d9CrjhHucN1BcfxI.roa File: W9bMoHztC54d9CrjhHucN1BcfxI.roa (raw, json) Hash identifier: q0cJyxnTZD8HgjhB25LvtKFwYl63q2MyHJ+FKulhbwY= Subject key identifier: 5B:D6:CC:A0:7C:ED:0B:9E:1D:F4:2A:E3:84:7B:9C:37:50:5C:7F:12 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2708 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/W9bMoHztC54d9CrjhHucN1BcfxI.roa Signing time: Fri 22 Aug 2025 08:43:30 +0000 ROA not before: Fri 22 Aug 2025 08:43:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9992 (0x2708) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5BD6CCA07CED0B9E1DF42AE3847B9C37505C7F12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e3:c9:80:b3:87:0f:b7:45:5c:85:16:df:45: f0:31:ce:be:c5:71:c6:bd:b1:de:c8:41:6a:f8:f9: 11:13:04:2d:f9:4d:28:82:0f:32:e1:2e:b7:93:50: 2b:87:08:51:f5:cf:2f:f9:f3:04:7b:ea:13:61:73: ad:31:0e:2b:79:95:30:1b:e2:81:6b:a4:96:59:29: 97:24:a6:ee:2c:ce:0b:ea:c4:6f:8c:a7:69:99:47: 77:45:72:ba:aa:72:b9:d4:b6:9f:a7:b4:03:15:c4: f7:c0:5b:a0:31:05:b4:8f:26:05:97:68:c6:14:6c: 70:d9:3b:6f:e9:0b:a6:b5:f0:e2:91:6d:2d:c7:70: bc:33:f2:1d:ee:6d:89:82:c7:e7:26:02:68:bf:23: 10:8a:46:72:c0:a0:56:30:cd:b0:4f:85:ca:9f:34: 37:c5:17:06:22:69:8b:3b:c3:62:1a:a3:3f:a3:bb: 48:ba:3c:96:f7:8c:69:52:5b:4b:c5:dd:f5:4f:9e: 68:41:1c:38:9a:3d:79:01:5d:07:73:b6:d6:1a:2c: 7c:de:4c:b7:ed:2b:7e:84:6b:6f:d0:04:db:99:47: 74:a0:e9:c5:1c:b5:88:ab:d5:47:89:4c:b2:28:85: ed:6b:7d:f1:f6:27:1c:02:38:f3:44:17:b8:e8:71: a4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D6:CC:A0:7C:ED:0B:9E:1D:F4:2A:E3:84:7B:9C:37:50:5C:7F:12 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/W9bMoHztC54d9CrjhHucN1BcfxI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.160.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:45:cf:b3:68:f3:c3:61:04:6a:2a:c7:39:5f:87:10:b9:49: 77:a4:5d:cd:9d:28:f8:1c:7d:b3:cb:4f:cc:a7:91:85:22:f8: 46:a1:95:4a:3d:d5:2d:ac:c8:13:26:dd:b9:14:49:33:92:d6: 16:aa:fc:48:c0:7a:dc:a8:7a:31:b1:98:44:71:61:7e:fa:8a: 3b:33:d9:fa:b8:68:a8:ed:22:c8:84:ae:93:54:a1:cd:76:4c: e0:f5:7f:56:3a:7a:8d:84:ad:99:a6:ca:50:83:1f:a6:46:1c: d1:26:19:89:c6:b1:59:81:c4:a7:71:21:1a:e1:0f:98:11:49: 55:98:52:b4:63:c0:41:6e:d2:88:a5:2f:7f:01:9e:d1:0a:0a: 21:dd:f7:33:f1:37:b7:82:53:ee:9e:0c:a4:f6:53:8f:ca:37: bc:01:cd:bb:dd:2e:52:da:75:ae:2f:1a:23:14:4e:71:39:95: 65:ab:b9:44:c9:3b:66:37:d7:9a:c7:d2:a8:a8:dc:06:af:fc: d7:70:05:e1:86:c9:bf:a0:8d:47:10:f0:a5:d7:56:5e:51:30: 7e:ea:e4:3b:86:e8:a0:48:39:fb:bb:ea:fa:1f:b5:fb:ff:d9: ff:34:14:04:21:00:f3:6a:e8:0b:28:97:35:ea:c4:6b:66:48: 71:b8:3f:f0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJwgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVCRDZDQ0EwN0NFRDBC OUUxREY0MkFFMzg0N0I5QzM3NTA1QzdGMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY48mAs4cPt0VchRbfRfAxzr7Fcca9sd7IQWr4+RETBC35TSiC DzLhLreTUCuHCFH1zy/58wR76hNhc60xDit5lTAb4oFrpJZZKZckpu4szgvqxG+M p2mZR3dFcrqqcrnUtp+ntAMVxPfAW6AxBbSPJgWXaMYUbHDZO2/pC6a18OKRbS3H cLwz8h3ubYmCx+cmAmi/IxCKRnLAoFYwzbBPhcqfNDfFFwYiaYs7w2Iaoz+ju0i6 PJb3jGlSW0vF3fVPnmhBHDiaPXkBXQdzttYaLHzeTLftK36Ea2/QBNuZR3Sg6cUc tYir1UeJTLIohe1rffH2JxwCOPNEF7jocaSPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUW9bMoHztC54d9CrjhHucN1BcfxIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1c5Yk1vSHp0QzU0ZDlDcmpo SHVjTjFCY2Z4SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n6AwDQYJKoZIhvcNAQELBQADggEBAHtFz7No88NhBGoqxzlfhxC5SXekXc2dKPgc fbPLT8ynkYUi+EahlUo91S2syBMm3bkUSTOS1haq/EjAetyoejGxmERxYX76ijsz 2fq4aKjtIsiErpNUoc12TOD1f1Y6eo2ErZmmylCDH6ZGHNEmGYnGsVmBxKdxIRrh D5gRSVWYUrRjwEFu0oilL38BntEKCiHd9zPxN7eCU+6eDKT2U4/KN7wBzbvdLlLa da4vGiMUTnE5lWWruUTJO2Y315rH0qio3Aav/NdwBeGGyb+gjUcQ8KXXVl5RMH7q 5DuG6KBIOfu76voftfv/2f80FAQhAPNq6AsolzXqxGtmSHG4P/A= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:33 2025 by rpki-client