$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g_kKPA0t1dh7KF--J4g8GhvRbwQ.roa File: g_kKPA0t1dh7KF--J4g8GhvRbwQ.roa (raw, json) Hash identifier: KQ121Fdn+SwI4RjU41Ne9QC/5pt52EiX1V0tj1M9k7Y= Subject key identifier: 83:F9:0A:3C:0D:2D:D5:D8:7B:28:5F:BE:27:88:3C:1A:1B:D1:6F:04 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25ED Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g_kKPA0t1dh7KF--J4g8GhvRbwQ.roa Signing time: Fri 22 Aug 2025 08:42:23 +0000 ROA not before: Fri 22 Aug 2025 08:42:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9709 (0x25ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=83F90A3C0D2DD5D87B285FBE27883C1A1BD16F04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:28:5e:95:a4:1f:1d:11:8a:e1:f4:49:6b:62: 2c:c9:87:ba:03:05:d4:fa:8a:fd:4d:f8:76:9e:d2: ea:a0:77:9b:b1:6d:e2:ae:43:d9:f0:cd:78:ed:e3: 25:e9:78:b2:99:59:2e:e2:eb:22:a5:ed:99:81:de: 7c:f3:8a:aa:81:a1:03:c6:aa:5d:63:ed:e5:8b:cd: 85:6c:8e:f0:a2:b6:31:24:a1:07:47:16:18:8b:bb: 32:30:81:04:18:a4:0c:33:1e:65:0c:10:3c:aa:79: b8:18:6f:db:f4:24:a4:63:90:15:39:c4:0c:7d:fb: 8d:c7:7a:88:77:3a:07:34:cc:ae:42:76:da:2d:46: a2:e9:94:be:ea:28:21:e7:c6:f3:15:85:bd:3e:39: 68:95:34:df:36:3a:8b:2e:2e:4c:7b:06:0b:6a:0d: 59:7a:45:9f:c4:e2:6e:32:bd:5e:b8:8b:f1:30:04: b8:7c:5d:35:f4:51:28:c8:7a:06:45:49:86:dc:e8: 27:92:55:b2:b5:ea:de:be:78:59:8c:18:6f:83:2d: 0f:1e:61:d5:00:4b:5c:53:12:c5:b0:75:ce:0a:fa: 95:94:fb:e9:15:c7:b5:8c:45:23:67:b7:20:61:d6: bf:22:94:a1:33:c8:78:96:65:b9:74:b4:0f:a8:7e: 85:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:F9:0A:3C:0D:2D:D5:D8:7B:28:5F:BE:27:88:3C:1A:1B:D1:6F:04 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g_kKPA0t1dh7KF--J4g8GhvRbwQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.24.0/21 Signature Algorithm: sha256WithRSAEncryption 49:16:0f:2d:28:60:54:dc:51:e9:8a:56:3b:f8:d5:94:e9:c2: 9b:45:d0:fc:d7:c6:7b:96:94:6f:a8:7e:2a:f9:bc:ff:88:f3: b2:c3:70:60:48:5b:23:aa:e6:84:4a:fd:ab:68:1f:ad:75:71: c6:50:d4:40:4b:54:4a:9c:13:86:e6:90:9c:af:6d:34:55:f4: 3c:48:d4:d4:ca:59:18:35:3c:f6:7b:9a:1b:d2:b6:7d:e5:73: 4f:8a:01:91:ed:88:85:83:08:44:d7:f5:e6:2b:ac:bb:ef:73: 49:00:54:0b:d7:6d:e6:27:1d:03:c9:b0:16:45:40:32:a6:8d: a4:fb:38:94:43:ac:68:89:45:b7:43:47:2f:84:10:c6:bf:e9: 9b:19:4a:9e:58:b6:84:18:06:19:2d:93:62:ec:69:d6:48:2a: 60:d5:af:99:7c:e7:7d:a1:5a:95:e2:cb:83:57:a0:85:f6:ec: 21:82:b3:62:d0:77:31:63:b4:1f:ea:b3:38:e4:0c:e7:7b:a5: 08:8c:83:f6:3d:e3:26:3c:24:4e:69:3f:bd:24:e3:22:41:30: b9:ee:fd:00:81:47:7f:8d:c2:de:4a:ae:90:c6:1c:f7:e0:4f: a5:1f:c7:84:e3:69:2f:ba:b9:1e:49:c0:69:12:f2:a4:6b:db: 9b:2b:b2:28 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgzRjkwQTNDMEQyREQ1 RDg3QjI4NUZCRTI3ODgzQzFBMUJEMTZGMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAKF6VpB8dEYrh9ElrYizJh7oDBdT6iv1N+Hae0uqgd5uxbeKu Q9nwzXjt4yXpeLKZWS7i6yKl7ZmB3nzziqqBoQPGql1j7eWLzYVsjvCitjEkoQdH FhiLuzIwgQQYpAwzHmUMEDyqebgYb9v0JKRjkBU5xAx9+43Heoh3Ogc0zK5Cdtot RqLplL7qKCHnxvMVhb0+OWiVNN82OosuLkx7BgtqDVl6RZ/E4m4yvV64i/EwBLh8 XTX0USjIegZFSYbc6CeSVbK16t6+eFmMGG+DLQ8eYdUAS1xTEsWwdc4K+pWU++kV x7WMRSNntyBh1r8ilKEzyHiWZbl0tA+ofoWDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUg/kKPA0t1dh7KF++J4g8GhvRbwQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2dfa0tQQTB0MWRoN0tGLS1K NGc4R2h2UmJ3US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nhgwDQYJKoZIhvcNAQELBQADggEBAEkWDy0oYFTcUemKVjv41ZTpwptF0PzXxnuW lG+ofir5vP+I87LDcGBIWyOq5oRK/atoH611ccZQ1EBLVEqcE4bmkJyvbTRV9DxI 1NTKWRg1PPZ7mhvStn3lc0+KAZHtiIWDCETX9eYrrLvvc0kAVAvXbeYnHQPJsBZF QDKmjaT7OJRDrGiJRbdDRy+EEMa/6ZsZSp5YtoQYBhktk2LsadZIKmDVr5l8532h WpXiy4NXoIX27CGCs2LQdzFjtB/qszjkDOd7pQiMg/Y94yY8JE5pP70k4yJBMLnu /QCBR3+Nwt5KrpDGHPfgT6Ufx4TjaS+6uR5JwGkS8qRr25srsig= -----END CERTIFICATE-----Generated at Sun Aug 24 11:42:12 2025 by rpki-client