$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/c9RmUI9S868Rxzv5SKYAXvlCHeg.roa File: c9RmUI9S868Rxzv5SKYAXvlCHeg.roa (raw, json) Hash identifier: UjS3tP1lRvzY7VVv/7S3ZqiM8FBXuMaYFgGG+sDUg5A= Subject key identifier: 73:D4:66:50:8F:52:F3:AF:11:C7:3B:F9:48:A6:00:5E:F9:42:1D:E8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2746 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/c9RmUI9S868Rxzv5SKYAXvlCHeg.roa Signing time: Fri 22 Aug 2025 08:43:43 +0000 ROA not before: Fri 22 Aug 2025 08:43:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10054 (0x2746) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=73D466508F52F3AF11C73BF948A6005EF9421DE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bf:05:f6:a3:de:12:6b:7a:2b:dd:b9:61:9d: 06:d0:87:3b:a6:5f:dd:29:1f:cf:4e:a9:ca:8e:fa: f9:d4:c7:2e:19:b2:bc:56:7a:05:60:15:44:ae:0e: 6d:17:69:02:3c:d7:7c:e7:2b:a5:c9:c0:34:ff:62: b3:ac:54:5e:ab:e4:8d:24:f5:0c:a5:67:e3:49:df: 19:00:b2:b0:8b:83:ab:5f:86:fb:67:f7:00:5a:bf: 79:e8:f6:5e:2b:e6:f9:e1:6f:98:7f:4c:36:3d:86: 5b:9d:d8:79:83:f6:87:ac:16:4c:2e:c5:25:b4:b7: bb:05:e2:48:0c:4a:83:96:29:ea:85:fd:23:28:f5: 83:d3:26:e7:3b:7f:fa:91:85:69:1e:51:8d:06:fe: ab:0e:03:65:e5:a3:37:6e:fd:c0:6f:fc:a0:a9:da: 19:f0:f2:ab:39:50:3c:82:c2:30:2a:db:0a:61:66: 37:60:c0:50:d6:9d:1f:a5:f8:84:12:0a:82:de:13: a1:f6:36:47:4a:a4:40:a0:e3:29:88:53:0b:4d:a5: 81:64:63:96:1b:99:33:e0:d3:48:41:a1:ee:41:e3: 81:ac:2a:91:5e:bf:8f:89:7d:89:67:8c:56:ff:3e: 95:6f:fd:91:0a:a7:81:ba:33:3a:06:9e:7e:df:fd: 7f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D4:66:50:8F:52:F3:AF:11:C7:3B:F9:48:A6:00:5E:F9:42:1D:E8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/c9RmUI9S868Rxzv5SKYAXvlCHeg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.216.0/22 Signature Algorithm: sha256WithRSAEncryption 33:27:6b:50:7e:59:13:95:09:42:3c:1e:2d:71:42:76:52:bf: c1:10:53:21:99:f6:55:39:a8:29:6e:13:6a:c5:d4:07:45:58: bc:b6:80:11:87:76:cc:0c:07:be:ad:4b:08:db:95:59:07:bb: 9b:56:43:10:cd:cf:ee:85:c8:bc:33:9f:a2:c2:27:d1:58:ea: 83:30:e0:00:ac:5a:9d:a6:96:99:0d:2f:30:50:31:8e:d3:c2: 8b:62:4d:67:0f:8d:37:52:26:a7:d0:c3:31:47:4d:2a:9c:fb: 6d:f6:c2:b4:b1:2c:d4:31:44:94:24:b5:77:99:72:25:45:18: 65:cd:82:2b:3b:5a:89:17:f5:33:f9:e1:e9:60:7a:54:58:e1: 7c:78:fe:ba:cf:12:6b:d2:d6:f1:f1:94:1e:c1:b0:0a:f9:07: a3:76:e1:87:bd:7e:b4:a3:2e:d6:3e:0a:d3:ee:82:86:8b:fe: 76:f7:a7:90:7d:ae:ca:f8:4a:0f:2b:f3:cf:64:86:9b:ca:ab: ed:25:f2:b1:ea:7a:74:93:fd:f2:12:c1:6c:cf:68:e1:c9:82: b5:2a:d9:8f:51:75:4e:ce:1a:f3:01:ad:dc:90:98:b8:a5:ad: 76:a7:9d:b3:b4:b0:04:6e:84:fb:b9:85:71:28:f3:91:97:5f: 82:7e:4b:1b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJ0YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDczRDQ2NjUwOEY1MkYz QUYxMUM3M0JGOTQ4QTYwMDVFRjk0MjFERTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsvwX2o94Sa3or3blhnQbQhzumX90pH89OqcqO+vnUxy4ZsrxW egVgFUSuDm0XaQI813znK6XJwDT/YrOsVF6r5I0k9QylZ+NJ3xkAsrCLg6tfhvtn 9wBav3no9l4r5vnhb5h/TDY9hlud2HmD9oesFkwuxSW0t7sF4kgMSoOWKeqF/SMo 9YPTJuc7f/qRhWkeUY0G/qsOA2Xlozdu/cBv/KCp2hnw8qs5UDyCwjAq2wphZjdg wFDWnR+l+IQSCoLeE6H2NkdKpECg4ymIUwtNpYFkY5YbmTPg00hBoe5B44GsKpFe v4+JfYlnjFb/PpVv/ZEKp4G6MzoGnn7f/X9FAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUc9RmUI9S868Rxzv5SKYAXvlCHegwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2M5Um1VSTlTODY4Unh6djVT S1lBWHZsQ0hlZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx ntgwDQYJKoZIhvcNAQELBQADggEBADMna1B+WROVCUI8Hi1xQnZSv8EQUyGZ9lU5 qCluE2rF1AdFWLy2gBGHdswMB76tSwjblVkHu5tWQxDNz+6FyLwzn6LCJ9FY6oMw 4ACsWp2mlpkNLzBQMY7TwotiTWcPjTdSJqfQwzFHTSqc+232wrSxLNQxRJQktXeZ ciVFGGXNgis7WokX9TP54elgelRY4Xx4/rrPEmvS1vHxlB7BsAr5B6N24Ye9frSj LtY+CtPugoaL/nb3p5B9rsr4Sg8r889khpvKq+0l8rHqenST/fISwWzPaOHJgrUq 2Y9RdU7OGvMBrdyQmLilrXannbO0sARuhPu5hXEo85GXX4J+Sxs= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:39 2025 by rpki-client