$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hsnoUh1rJHPlgm3Z6QucB_tJN8E.roa File: hsnoUh1rJHPlgm3Z6QucB_tJN8E.roa (raw, json) Hash identifier: cdZylWoSiV9t0oWqKHyDcc/WdoYXWO7BnOwoo7f/Ieg= Subject key identifier: 86:C9:E8:52:1D:6B:24:73:E5:82:6D:D9:E9:0B:9C:07:FB:49:37:C1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2747 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hsnoUh1rJHPlgm3Z6QucB_tJN8E.roa Signing time: Fri 22 Aug 2025 08:43:43 +0000 ROA not before: Fri 22 Aug 2025 08:43:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 49.159.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10055 (0x2747) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=86C9E8521D6B2473E5826DD9E90B9C07FB4937C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b7:08:01:5c:ea:11:23:cb:86:05:58:13:85: da:19:d6:95:e1:e3:fc:df:39:0c:a3:f4:86:af:89: 74:b6:a7:7c:60:8f:b2:64:3d:6a:79:65:ea:a0:50: 8c:e2:b4:b2:f5:70:03:60:93:84:0a:4d:a2:c5:5d: 0b:1b:b8:76:11:f0:21:d5:76:e1:9a:d9:59:84:c0: e6:55:30:b1:58:4d:34:9a:df:fd:77:4e:69:a2:da: 90:91:73:0d:fb:be:27:f8:f5:84:ea:9d:64:4e:ec: 32:17:c2:88:5d:cd:b5:f6:04:6c:13:1f:05:d3:03: 93:54:a1:1b:ee:34:c8:4a:02:1f:fb:b9:8b:5f:cb: 14:74:92:a5:87:30:5e:a5:4d:61:0b:68:75:e1:e1: ca:39:8c:78:54:ad:77:c7:da:08:5d:26:ec:f4:ef: 9d:d1:b2:a9:fd:7d:2c:7f:f7:42:05:10:11:1a:1b: 40:b0:ce:74:a8:ed:7f:b1:2c:0b:e6:d5:e4:66:af: 63:b7:2b:33:f5:5d:bb:70:cd:92:77:a1:a8:66:48: 96:ec:8e:33:f7:2f:41:b0:bd:0d:e0:af:f0:be:0d: 23:99:0a:c8:19:b2:e4:a5:e2:c9:2a:63:ad:aa:ad: 10:8b:92:0f:04:2c:1d:b0:fd:28:b8:c0:33:6e:a4: 28:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C9:E8:52:1D:6B:24:73:E5:82:6D:D9:E9:0B:9C:07:FB:49:37:C1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hsnoUh1rJHPlgm3Z6QucB_tJN8E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.252.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:2d:49:d4:e2:52:6c:f9:8d:a3:74:2f:70:5f:7b:0e:b2:43: e6:8c:9a:2e:41:12:e2:06:35:d7:17:8f:49:c1:e9:3c:e0:45: 8a:b7:1b:be:6c:61:82:37:c8:3f:6f:49:31:42:0d:40:e2:df: 42:dc:37:6b:03:95:02:2a:b8:54:0e:cd:33:d9:cc:3d:dc:f2: f3:63:94:a4:a6:07:80:fa:9e:3c:b3:f5:34:4b:4e:be:8c:1e: 80:8a:bf:e9:60:4c:37:f2:bd:c9:aa:56:98:8d:7d:fc:c9:2a: 50:9c:e5:9a:3e:02:53:e8:08:0f:8f:16:ee:7f:0e:ae:00:02: f6:62:66:e8:0b:54:63:66:e9:03:b1:c0:ab:3b:5a:b8:b2:1d: 56:77:69:50:4a:1c:c4:93:e4:5e:e6:3b:9f:00:36:34:59:0b: 20:fd:12:7d:1a:d1:38:7e:a3:cf:55:d3:8c:fb:bd:a5:e0:85: 83:db:85:cb:30:36:80:35:5b:d4:d5:16:54:95:42:f1:77:00: 87:45:77:46:4f:ca:08:f9:ff:0f:c2:6f:f0:c1:e4:bd:f3:18: 70:93:1f:a6:1d:68:d1:3b:25:f7:5d:0c:af:4e:26:18:e8:64: 1d:4f:5e:df:e7:14:99:5a:c0:fc:cd:04:ef:54:0c:bf:96:00: 81:d5:23:ac -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJ0cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg2QzlFODUyMUQ2QjI0 NzNFNTgyNkREOUU5MEI5QzA3RkI0OTM3QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDtwgBXOoRI8uGBVgThdoZ1pXh4/zfOQyj9IaviXS2p3xgj7Jk PWp5ZeqgUIzitLL1cANgk4QKTaLFXQsbuHYR8CHVduGa2VmEwOZVMLFYTTSa3/13 Tmmi2pCRcw37vif49YTqnWRO7DIXwohdzbX2BGwTHwXTA5NUoRvuNMhKAh/7uYtf yxR0kqWHMF6lTWELaHXh4co5jHhUrXfH2ghdJuz0753Rsqn9fSx/90IFEBEaG0Cw znSo7X+xLAvm1eRmr2O3KzP1XbtwzZJ3oahmSJbsjjP3L0GwvQ3gr/C+DSOZCsgZ suSl4skqY62qrRCLkg8ELB2w/Si4wDNupCj9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhsnoUh1rJHPlgm3Z6QucB/tJN8EwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hzbm9VaDFySkhQbGdtM1o2 UXVjQl90Sk44RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n/wwDQYJKoZIhvcNAQELBQADggEBAEwtSdTiUmz5jaN0L3Bfew6yQ+aMmi5BEuIG NdcXj0nB6TzgRYq3G75sYYI3yD9vSTFCDUDi30LcN2sDlQIquFQOzTPZzD3c8vNj lKSmB4D6njyz9TRLTr6MHoCKv+lgTDfyvcmqVpiNffzJKlCc5Zo+AlPoCA+PFu5/ Dq4AAvZiZugLVGNm6QOxwKs7WriyHVZ3aVBKHMST5F7mO58ANjRZCyD9En0a0Th+ o89V04z7vaXghYPbhcswNoA1W9TVFlSVQvF3AIdFd0ZPygj5/w/Cb/DB5L3zGHCT H6YdaNE7JfddDK9OJhjoZB1PXt/nFJlawPzNBO9UDL+WAIHVI6w= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:22 2025 by rpki-client