$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WT14tG7zdgWwy2qy7Qi1l5J6-xY.roa File: WT14tG7zdgWwy2qy7Qi1l5J6-xY.roa (raw, json) Hash identifier: AE9pNWsQ++++XePEbYhTJp/rHOnxqq6TndOcwpVYv2o= Subject key identifier: 59:3D:78:B4:6E:F3:76:05:B0:CB:6A:B2:ED:08:B5:97:92:7A:FB:16 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2707 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WT14tG7zdgWwy2qy7Qi1l5J6-xY.roa Signing time: Fri 22 Aug 2025 08:43:30 +0000 ROA not before: Fri 22 Aug 2025 08:43:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.120.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9991 (0x2707) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=593D78B46EF37605B0CB6AB2ED08B597927AFB16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:55:2e:d1:da:19:5e:b9:c8:75:75:60:69:56: 77:ac:ec:51:50:21:45:ca:48:dc:6d:09:b1:11:d4: 87:23:d3:99:48:00:25:b1:4e:40:a1:d2:d1:7b:ae: 85:0e:ad:25:0b:36:fd:46:f4:eb:ea:c4:a5:0a:3b: 5d:37:39:c6:c2:6a:e6:98:79:68:4d:10:89:20:d5: c8:98:fd:39:d8:a8:63:e3:3a:51:c4:16:ce:ea:6a: b4:04:da:43:fb:fb:40:8c:44:28:44:45:12:de:8f: 8f:67:bd:cf:06:49:49:4c:13:74:5e:51:51:c9:19: d9:6d:b4:b9:f7:b3:66:4f:f2:66:c1:f0:cf:99:2f: 8c:db:dd:fb:ba:43:52:d7:bb:67:65:cd:3b:3c:32: ef:c5:5d:38:5b:9c:04:11:56:6d:6d:88:f2:11:0e: 31:8c:a8:70:ac:b9:20:27:e3:d5:15:2a:98:33:c7: cd:33:b7:cb:70:e8:a9:7c:19:0b:27:13:4a:73:fc: ef:53:0a:1d:ec:0e:c3:be:a2:f7:b7:64:88:af:91: 4b:1e:d5:75:8e:9a:02:ab:c2:4d:a8:37:43:bc:33: ca:ea:83:18:19:2b:08:6f:91:8f:ba:dd:29:75:59: ea:3a:ec:cf:f7:ce:0e:af:e2:3e:f9:f9:6e:73:f6: 0c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:3D:78:B4:6E:F3:76:05:B0:CB:6A:B2:ED:08:B5:97:92:7A:FB:16 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WT14tG7zdgWwy2qy7Qi1l5J6-xY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.120.0/21 Signature Algorithm: sha256WithRSAEncryption 5d:10:1d:01:71:ca:e0:48:3d:7a:e8:5a:16:d2:8a:54:b7:2e: eb:e6:14:82:8f:8c:47:98:38:04:43:73:b9:2d:c5:37:b4:d4: 07:fb:a6:8a:03:e8:40:05:4f:dd:f9:da:8b:90:a0:00:f3:00: f5:07:bc:ac:06:70:79:fd:88:82:23:29:fa:bc:59:a0:a5:48: 59:de:5e:1e:b4:a2:1c:3b:1f:b5:16:33:b7:07:9e:25:5c:86: 13:73:4e:bc:3d:d5:a2:37:2c:f9:2d:8e:38:be:37:1e:85:fc: 18:94:59:23:54:56:e6:1c:08:88:49:fe:d9:f0:fe:e1:89:de: 73:56:d8:19:17:52:d1:28:4b:dc:c9:a6:97:ad:22:d4:60:e6: 03:0c:9b:ad:46:e2:2b:10:7e:6f:9f:7c:21:e0:75:73:42:bf: ac:d5:61:71:b2:d1:23:05:08:ff:fc:e0:45:6d:3e:22:4c:c8: 92:35:31:13:32:63:29:94:13:42:ad:0d:34:6f:bf:7a:10:e2: d6:10:48:d6:21:02:31:32:7c:b3:8e:76:ef:0b:e8:25:ca:27: 39:3f:9d:a4:3d:5a:85:2e:e3:b7:e3:7f:19:fd:5e:28:11:3a: f5:26:fb:3a:25:16:16:c8:09:dc:28:f0:61:83:71:85:e0:df: 65:c2:a2:93 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJwcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU5M0Q3OEI0NkVGMzc2 MDVCMENCNkFCMkVEMDhCNTk3OTI3QUZCMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGVS7R2hleuch1dWBpVnes7FFQIUXKSNxtCbER1Icj05lIACWx TkCh0tF7roUOrSULNv1G9OvqxKUKO103OcbCauaYeWhNEIkg1ciY/TnYqGPjOlHE Fs7qarQE2kP7+0CMRChERRLej49nvc8GSUlME3ReUVHJGdlttLn3s2ZP8mbB8M+Z L4zb3fu6Q1LXu2dlzTs8Mu/FXThbnAQRVm1tiPIRDjGMqHCsuSAn49UVKpgzx80z t8tw6Kl8GQsnE0pz/O9TCh3sDsO+ove3ZIivkUse1XWOmgKrwk2oN0O8M8rqgxgZ KwhvkY+63Sl1Weo67M/3zg6v4j75+W5z9gzRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUWT14tG7zdgWwy2qy7Qi1l5J6+xYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1dUMTR0Rzd6ZGdXd3kycXk3 UWkxbDVKNi14WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n3gwDQYJKoZIhvcNAQELBQADggEBAF0QHQFxyuBIPXroWhbSilS3LuvmFIKPjEeY OARDc7ktxTe01Af7pooD6EAFT9352ouQoADzAPUHvKwGcHn9iIIjKfq8WaClSFne Xh60ohw7H7UWM7cHniVchhNzTrw91aI3LPktjji+Nx6F/BiUWSNUVuYcCIhJ/tnw /uGJ3nNW2BkXUtEoS9zJppetItRg5gMMm61G4isQfm+ffCHgdXNCv6zVYXGy0SMF CP/84EVtPiJMyJI1MRMyYymUE0KtDTRvv3oQ4tYQSNYhAjEyfLOOdu8L6CXKJzk/ naQ9WoUu47fjfxn9XigROvUm+zolFhbICdwo8GGDcYXg32XCopM= -----END CERTIFICATE-----Generated at Sun Aug 24 11:44:02 2025 by rpki-client