$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/eJxlDZ5ZIWJtaHJl6E4XIFKY74w.roa File: eJxlDZ5ZIWJtaHJl6E4XIFKY74w.roa (raw, json) Hash identifier: dTaxL3NKXQd4bVyryyjuVndzdUNP/mpP4/nI0/oWW9w= Subject key identifier: 78:9C:65:0D:9E:59:21:62:6D:68:72:65:E8:4E:17:20:52:98:EF:8C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26EE Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/eJxlDZ5ZIWJtaHJl6E4XIFKY74w.roa Signing time: Fri 22 Aug 2025 08:43:24 +0000 ROA not before: Fri 22 Aug 2025 08:43:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9966 (0x26ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=789C650D9E5921626D687265E84E17205298EF8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:10:2c:49:ef:a6:3b:52:0d:0f:de:1d:e5:96: 74:ab:d8:e3:71:bf:17:1f:8a:0c:fd:d6:e7:07:6c: a4:be:14:cc:d0:12:d6:26:e2:60:b0:80:67:61:0a: 4b:dc:f4:5d:b4:9e:25:98:6f:6d:8e:93:75:f9:6a: ee:f8:40:b8:75:a5:8f:3f:82:49:63:17:6c:ba:91: 86:0d:f1:8d:6b:6e:df:44:58:9f:31:ee:a8:8d:d7: f8:3c:2a:3d:8d:71:48:ca:38:67:35:97:e6:ec:dd: 32:16:77:c5:75:36:b7:be:cb:24:0c:b1:44:f4:4c: a4:59:3b:6d:5d:9a:98:95:87:46:a7:c5:5f:13:ee: 1e:6a:aa:9a:5b:02:f2:0c:60:a0:36:0d:0f:87:d0: 06:42:d3:f2:9b:c5:df:97:40:dd:66:58:61:61:15: c2:7f:3d:42:65:a3:64:60:e6:3a:c8:91:52:0f:fe: bf:20:03:4b:0c:86:d1:ce:3e:29:b4:77:13:85:d2: bf:ee:12:8b:e4:9c:66:d4:49:32:e7:04:e7:d7:18: ad:09:50:e5:81:f8:49:66:3a:d2:ce:65:51:6d:ee: c1:1b:f0:48:d8:62:18:8c:9f:14:71:e7:74:87:8b: f8:3b:75:d5:c6:30:b7:53:6a:e8:8e:ef:1f:cb:51: d5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:9C:65:0D:9E:59:21:62:6D:68:72:65:E8:4E:17:20:52:98:EF:8C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/eJxlDZ5ZIWJtaHJl6E4XIFKY74w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.248.0/21 Signature Algorithm: sha256WithRSAEncryption 9f:c0:f7:ce:c4:96:d5:ca:bd:9a:da:2a:a8:a5:60:2d:27:fe: 49:76:8d:10:cb:09:e0:5d:7d:85:55:71:6b:df:03:84:e2:37: 38:3b:bc:c1:c3:e0:49:d1:1a:5e:f4:eb:20:ed:98:1f:6d:1e: 7d:8e:7a:7b:c8:67:0c:97:2e:57:b3:15:20:0f:91:f2:78:71: 66:df:7c:05:1b:e9:6f:fe:b2:91:7c:ef:e4:da:df:cc:3f:7c: f0:4e:b4:4e:a9:20:17:7d:b6:61:f5:5e:99:3c:87:b0:87:1d: c1:ec:95:45:25:e5:c8:f7:66:05:22:27:53:39:6f:29:37:26: 9d:93:d5:ee:e8:2e:b0:11:ae:6c:8a:f3:4b:d4:56:ea:9c:86: 39:f3:db:22:10:f7:ca:b1:a0:f5:a1:02:88:91:7f:db:57:7f: 2c:33:71:d2:3d:81:54:97:79:c3:e0:5c:9c:44:0a:7d:6b:66: 67:0c:50:57:32:81:4d:2a:9a:50:7b:20:6c:9f:1c:ad:ab:9b: 90:89:12:6e:14:cb:61:82:63:40:f5:9b:2e:cc:d0:e7:5a:82: 89:8a:a2:ed:d2:f4:e0:cf:04:3a:27:40:9f:54:26:b6:f5:60: a3:e8:c7:e9:f9:2c:33:12:1f:57:f4:db:d1:6d:42:ad:ea:f0: 5d:ca:8a:57 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJu4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc4OUM2NTBEOUU1OTIx NjI2RDY4NzI2NUU4NEUxNzIwNTI5OEVGOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0ECxJ76Y7Ug0P3h3llnSr2ONxvxcfigz91ucHbKS+FMzQEtYm 4mCwgGdhCkvc9F20niWYb22Ok3X5au74QLh1pY8/gkljF2y6kYYN8Y1rbt9EWJ8x 7qiN1/g8Kj2NcUjKOGc1l+bs3TIWd8V1Nre+yyQMsUT0TKRZO21dmpiVh0anxV8T 7h5qqppbAvIMYKA2DQ+H0AZC0/Kbxd+XQN1mWGFhFcJ/PUJlo2Rg5jrIkVIP/r8g A0sMhtHOPim0dxOF0r/uEovknGbUSTLnBOfXGK0JUOWB+ElmOtLOZVFt7sEb8EjY YhiMnxRx53SHi/g7ddXGMLdTauiO7x/LUdXXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUeJxlDZ5ZIWJtaHJl6E4XIFKY74wwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2VKeGxEWjVaSVdKdGFISmw2 RTRYSUZLWTc0dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nvgwDQYJKoZIhvcNAQELBQADggEBAJ/A987EltXKvZraKqilYC0n/kl2jRDLCeBd fYVVcWvfA4TiNzg7vMHD4EnRGl706yDtmB9tHn2OenvIZwyXLlezFSAPkfJ4cWbf fAUb6W/+spF87+Ta38w/fPBOtE6pIBd9tmH1Xpk8h7CHHcHslUUl5cj3ZgUiJ1M5 byk3Jp2T1e7oLrARrmyK80vUVuqchjnz2yIQ98qxoPWhAoiRf9tXfywzcdI9gVSX ecPgXJxECn1rZmcMUFcygU0qmlB7IGyfHK2rm5CJEm4Uy2GCY0D1my7M0OdagomK ou3S9ODPBDonQJ9UJrb1YKPox+n5LDMSH1f029FtQq3q8F3Kilc= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:41 2025 by rpki-client