$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dSC_Wu8z-dVfexnSbx5dtfIpceo.roa File: dSC_Wu8z-dVfexnSbx5dtfIpceo.roa (raw, json) Hash identifier: CMPcZmZwtJLd6qJ5B7p9CPya4yPG/49B6jwedXvruUc= Subject key identifier: 75:20:BF:5A:EF:33:F9:D5:5F:7B:19:D2:6F:1E:5D:B5:F2:29:71:EA Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25D3 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dSC_Wu8z-dVfexnSbx5dtfIpceo.roa Signing time: Fri 22 Aug 2025 08:42:17 +0000 ROA not before: Fri 22 Aug 2025 08:42:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9683 (0x25d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7520BF5AEF33F9D55F7B19D26F1E5DB5F22971EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7e:98:84:19:ae:02:34:57:77:22:a6:5f:c4: 86:64:71:13:82:93:34:36:6f:87:3a:2a:9d:5a:a7: e6:a1:fe:01:20:df:b8:2c:54:dc:25:58:57:95:7e: 07:82:7f:c4:44:98:f4:eb:35:fc:6b:5e:d9:a3:26: 04:ac:79:05:cc:37:a2:bf:96:ad:8b:2b:e6:31:46: 0c:17:60:ee:05:2b:bf:0f:3e:3b:2f:99:20:a2:21: 47:68:af:8d:4c:1e:61:2d:a7:e8:ed:e3:b2:a4:df: 84:96:b5:b5:99:3e:7d:57:74:a0:e1:78:8b:9e:81: 07:e6:3b:23:25:a1:bc:6c:38:dd:84:cd:eb:8a:07: 03:fd:cd:0b:2f:c3:49:5b:5b:db:30:78:c0:7d:0d: 17:66:dc:0a:57:c8:d6:10:0b:1f:b9:25:13:91:c0: e3:30:d9:83:e8:5a:ce:ca:f3:18:67:dd:44:b7:ee: 3a:b3:b2:fe:1a:da:7a:5b:77:19:b0:39:06:08:da: 09:e0:61:29:c9:05:59:a3:00:6c:c0:36:00:2c:37: 27:8e:65:f5:73:38:84:d5:95:40:79:1e:4a:0a:ff: 9f:ff:7a:04:c0:2a:f8:2d:11:f8:98:0c:bd:4e:5c: cf:87:7c:e5:4e:3a:8b:26:da:80:dc:ea:ce:5c:7c: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:20:BF:5A:EF:33:F9:D5:5F:7B:19:D2:6F:1E:5D:B5:F2:29:71:EA X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dSC_Wu8z-dVfexnSbx5dtfIpceo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.147.0/24 Signature Algorithm: sha256WithRSAEncryption 77:9f:f0:2f:cf:54:9e:15:a9:2a:54:52:ee:67:2d:60:bd:29: 48:5a:72:70:3a:83:bd:65:12:92:ee:f9:be:6b:0d:dc:09:46: b3:18:52:96:27:9c:05:76:3e:2b:42:6d:b3:d9:81:32:35:dc: 0a:e1:58:7c:1a:2a:63:73:e5:6f:90:4d:4e:5a:13:50:06:69: 19:f5:d2:10:2d:41:72:82:2f:94:2b:43:81:43:c0:8c:88:98: 88:0a:28:ee:e0:12:d9:4a:db:fe:92:87:05:42:70:b7:2b:18: 24:67:e7:47:0e:0a:7c:d9:2f:54:50:8f:60:ed:4b:4e:f7:27: da:0f:60:1c:2d:25:b9:1c:eb:09:ef:f2:9c:03:0a:3d:64:b0: f1:6e:23:a2:38:15:16:6b:91:a8:4b:b3:e7:56:3b:15:aa:c9: f7:22:77:af:18:32:85:fa:6d:46:7f:70:04:e8:0c:4b:eb:21: 84:ab:b7:20:96:0e:27:20:c8:2e:f9:8b:2a:bb:30:b0:5c:3c: a3:9b:08:66:ee:75:83:a2:2b:74:d4:50:85:dd:d7:28:8a:70: e8:73:39:7c:8c:00:7b:f0:e7:e6:aa:97:40:4e:ee:1d:28:a1: 0a:69:9b:82:40:73:9c:94:ed:fa:d2:36:18:c8:e3:8c:6d:49: 7b:3f:dc:4d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJdMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc1MjBCRjVBRUYzM0Y5 RDU1RjdCMTlEMjZGMUU1REI1RjIyOTcxRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrfpiEGa4CNFd3IqZfxIZkcROCkzQ2b4c6Kp1ap+ah/gEg37gs VNwlWFeVfgeCf8REmPTrNfxrXtmjJgSseQXMN6K/lq2LK+YxRgwXYO4FK78PPjsv mSCiIUdor41MHmEtp+jt47Kk34SWtbWZPn1XdKDheIuegQfmOyMlobxsON2EzeuK BwP9zQsvw0lbW9sweMB9DRdm3ApXyNYQCx+5JRORwOMw2YPoWs7K8xhn3US37jqz sv4a2npbdxmwOQYI2gngYSnJBVmjAGzANgAsNyeOZfVzOITVlUB5HkoK/5//egTA KvgtEfiYDL1OXM+HfOVOOosm2oDc6s5cfBE1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdSC/Wu8z+dVfexnSbx5dtfIpceowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2RTQ19XdTh6LWRWZmV4blNi eDVkdGZJcGNlby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAx npMwDQYJKoZIhvcNAQELBQADggEBAHef8C/PVJ4VqSpUUu5nLWC9KUhacnA6g71l EpLu+b5rDdwJRrMYUpYnnAV2PitCbbPZgTI13ArhWHwaKmNz5W+QTU5aE1AGaRn1 0hAtQXKCL5QrQ4FDwIyImIgKKO7gEtlK2/6ShwVCcLcrGCRn50cOCnzZL1RQj2Dt S073J9oPYBwtJbkc6wnv8pwDCj1ksPFuI6I4FRZrkahLs+dWOxWqyfcid68YMoX6 bUZ/cAToDEvrIYSrtyCWDicgyC75iyq7MLBcPKObCGbudYOiK3TUUIXd1yiKcOhz OXyMAHvw5+aql0BO7h0ooQppm4JAc5yU7frSNhjI44xtSXs/3E0= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:13 2025 by rpki-client