$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g3OUdSagOSbemycjLgwG4doIqiE.roa File: g3OUdSagOSbemycjLgwG4doIqiE.roa (raw, json) Hash identifier: tMJdjfrQup96iDfwCSrI5748Jw0djTQkwuAPW9SyOY0= Subject key identifier: 83:73:94:75:26:A0:39:26:DE:9B:27:23:2E:0C:06:E1:DA:08:AA:21 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26F1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g3OUdSagOSbemycjLgwG4doIqiE.roa Signing time: Fri 22 Aug 2025 08:43:24 +0000 ROA not before: Fri 22 Aug 2025 08:43:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9969 (0x26f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8373947526A03926DE9B27232E0C06E1DA08AA21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:01:d1:ca:41:60:fc:02:4f:99:6d:2b:0e:f4: 17:5a:c0:87:6f:2e:dd:41:92:23:66:5f:9c:3e:aa: 89:c9:ec:39:e5:66:28:21:2c:a3:55:9f:67:67:24: 2e:73:a5:da:7e:f6:5f:25:88:9f:3d:0e:8b:2a:9d: 8f:64:2f:c0:33:b0:12:fc:7e:b6:af:7b:8d:b0:d3: f3:3d:ec:31:89:23:e1:62:35:63:18:e7:e1:49:06: 70:b5:0c:f9:d6:c4:51:49:e8:cf:61:57:ba:ea:b6: f6:65:2a:1a:22:72:38:2a:ad:40:32:63:04:ef:c0: bb:06:8e:25:7c:7e:3f:b5:69:12:03:3d:d7:b9:02: 3f:13:20:b8:1f:b1:ea:19:f5:1a:b3:f4:e1:77:70: 8f:2a:e7:a1:11:7b:1e:74:5d:b3:c1:e4:6f:31:e5: d5:9d:18:cc:17:95:30:7d:8d:90:a5:aa:1a:3c:46: 31:31:ec:8f:98:64:9d:d0:47:ad:0c:8a:8f:fd:b3: 76:a8:b5:70:92:9d:0d:2d:56:f3:06:20:b6:0f:f6: 84:fc:9c:2e:91:cd:fb:12:a3:fd:9a:04:59:14:11: d7:e0:bc:b2:6d:d5:43:d1:d2:4a:16:1c:07:21:3d: ab:d7:9b:ae:95:7b:47:17:a2:03:bf:20:a8:f6:8b: 1d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:73:94:75:26:A0:39:26:DE:9B:27:23:2E:0C:06:E1:DA:08:AA:21 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g3OUdSagOSbemycjLgwG4doIqiE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.40.0/21 Signature Algorithm: sha256WithRSAEncryption 05:e5:8e:cf:a5:01:80:3f:1d:5a:cb:9d:42:0d:c0:e5:32:44: c4:12:9d:80:0f:3e:bd:45:4a:fc:fa:f3:2b:6f:fb:57:f6:43: 4a:a3:b0:d4:7e:26:3f:d0:4f:62:f7:38:44:99:94:88:ee:36: 8f:40:c5:a2:d5:d1:05:07:db:cd:fe:7e:c5:89:75:ec:97:9e: 5f:70:6a:bc:1b:87:f6:07:6d:d5:f8:86:c4:a8:a2:a3:24:a2: 57:25:40:d0:e6:c4:74:be:d8:93:1d:ac:b8:cc:f1:f3:f0:ca: 6e:93:6f:4a:cd:c1:30:6c:c0:75:0d:7b:b4:b0:9d:93:6e:36: 5d:75:5d:b4:46:a7:e1:5f:26:8b:cf:de:f2:7c:5e:8d:de:e4: c4:e4:e8:09:e2:85:2e:7d:af:09:e6:ee:f7:a2:f7:02:f7:7d: a5:f8:c0:47:5d:94:a6:7e:0f:90:80:57:3d:ba:ad:67:27:f2: 36:36:a5:bd:98:c9:a3:0e:1d:62:51:6e:f5:53:c1:cb:f4:87: 4f:f7:a2:f6:eb:c1:bb:88:5e:b9:0c:b3:09:fd:ed:d5:b9:5c: c4:db:75:d7:02:80:f6:1c:7f:6f:40:01:2f:c1:2a:90:bd:3c: cb:67:5d:17:06:a0:56:45:53:78:26:f9:b2:55:d3:c3:85:d6: 10:e5:2a:70 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJvEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgzNzM5NDc1MjZBMDM5 MjZERTlCMjcyMzJFMEMwNkUxREEwOEFBMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhAdHKQWD8Ak+ZbSsO9BdawIdvLt1BkiNmX5w+qonJ7DnlZigh LKNVn2dnJC5zpdp+9l8liJ89DosqnY9kL8AzsBL8frave42w0/M97DGJI+FiNWMY 5+FJBnC1DPnWxFFJ6M9hV7rqtvZlKhoicjgqrUAyYwTvwLsGjiV8fj+1aRIDPde5 Aj8TILgfseoZ9Rqz9OF3cI8q56ERex50XbPB5G8x5dWdGMwXlTB9jZClqho8RjEx 7I+YZJ3QR60Mio/9s3aotXCSnQ0tVvMGILYP9oT8nC6RzfsSo/2aBFkUEdfgvLJt 1UPR0koWHAchPavXm66Ve0cXogO/IKj2ix1LAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUg3OUdSagOSbemycjLgwG4doIqiEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2czT1VkU2FnT1NiZW15Y2pM Z3dHNGRvSXFpRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nigwDQYJKoZIhvcNAQELBQADggEBAAXljs+lAYA/HVrLnUINwOUyRMQSnYAPPr1F Svz68ytv+1f2Q0qjsNR+Jj/QT2L3OESZlIjuNo9AxaLV0QUH283+fsWJdeyXnl9w arwbh/YHbdX4hsSooqMkolclQNDmxHS+2JMdrLjM8fPwym6Tb0rNwTBswHUNe7Sw nZNuNl11XbRGp+FfJovP3vJ8Xo3e5MTk6AnihS59rwnm7vei9wL3faX4wEddlKZ+ D5CAVz26rWcn8jY2pb2YyaMOHWJRbvVTwcv0h0/3ovbrwbuIXrkMswn97dW5XMTb ddcCgPYcf29AAS/BKpC9PMtnXRcGoFZFU3gm+bJV08OF1hDlKnA= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:41 2025 by rpki-client