$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/igHyWMI04TkXT1k2yrcQQIbsq48.roa File: igHyWMI04TkXT1k2yrcQQIbsq48.roa (raw, json) Hash identifier: 3R6BBndn6VOsK1fZ/2sgcor9pN+FLrGv2TUIwI6fYBU= Subject key identifier: 8A:01:F2:58:C2:34:E1:39:17:4F:59:36:CA:B7:10:40:86:EC:AB:8F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 272F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/igHyWMI04TkXT1k2yrcQQIbsq48.roa Signing time: Fri 22 Aug 2025 08:43:38 +0000 ROA not before: Fri 22 Aug 2025 08:43:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10031 (0x272f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8A01F258C234E139174F5936CAB7104086ECAB8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a4:b8:06:c8:8e:34:2d:49:38:19:28:e6:7c: 47:d5:01:7d:99:43:28:c0:16:64:fc:48:30:ca:73: 7c:4a:23:d0:e4:62:25:bc:3d:ff:46:e7:47:b6:be: 4b:6c:0a:ad:76:5e:c2:40:59:7e:ad:4f:ee:90:ea: 22:79:af:04:33:77:9b:fe:6b:ef:f5:f5:81:05:2b: 36:a8:84:0b:d5:8f:12:4a:6a:e5:44:69:c6:65:8a: 28:42:cd:8a:12:1e:ec:7d:c4:3e:e8:90:47:91:4b: c0:59:5c:4b:86:4f:cb:0d:f7:92:0d:7e:81:ca:3d: 6b:d6:a0:64:38:c2:39:43:a1:f6:ff:64:98:79:6a: b3:cf:c7:94:60:aa:0f:af:db:00:ea:9d:a0:b5:ad: 2a:f5:7f:1f:bf:29:eb:7a:a7:4d:06:28:e4:aa:b6: 77:b9:dd:1d:6a:e6:c5:65:3d:d2:11:dd:ed:91:ee: f9:cc:c4:22:34:84:b2:54:58:27:1b:77:1b:08:d6: 11:3f:f7:7c:cd:00:18:60:5a:00:5d:dc:8a:5e:ab: 99:00:fe:b4:4a:9a:8d:2a:b6:15:50:a7:6c:da:f0: 92:b5:97:31:25:dc:ad:77:7a:ec:c5:9e:10:9b:8a: c4:cb:85:ce:46:52:18:1c:2f:42:a5:e5:c3:0b:55: 4b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:01:F2:58:C2:34:E1:39:17:4F:59:36:CA:B7:10:40:86:EC:AB:8F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/igHyWMI04TkXT1k2yrcQQIbsq48.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.232.0/21 Signature Algorithm: sha256WithRSAEncryption 4a:51:e8:ba:a2:0c:6d:c5:10:3b:66:fe:04:d7:5f:80:46:ad: 41:66:9d:ed:48:62:64:b3:88:3d:10:3e:ef:5b:cf:b1:24:e5: 1d:de:cd:4e:c2:41:0c:af:c8:71:e0:46:97:26:9e:7b:b9:38: ee:8d:91:1d:99:b4:8f:a2:a4:29:61:ae:9f:5b:71:fc:0f:00: 8f:83:d2:00:69:12:be:c6:4e:8c:76:3a:23:d1:21:01:21:99: 95:8e:cb:41:3e:19:7b:35:5c:09:e7:65:f4:3a:f7:20:7e:fc: 21:c8:76:e2:de:8a:9e:67:24:75:30:fb:ff:38:ef:8a:da:9e: 16:46:d9:73:9c:1f:71:e3:93:3d:39:b6:51:27:e1:9b:6f:95: 99:b1:8c:dd:0c:6c:58:7f:c1:0a:9a:de:de:cc:65:15:e2:23: 84:96:26:c4:01:bc:14:09:77:62:43:d5:89:5a:09:7e:97:5f: 23:66:de:2a:8a:8b:39:13:9b:11:34:df:27:e7:3f:41:62:af: 38:a6:63:fa:40:9a:15:70:fa:dc:8b:71:13:37:f1:6a:10:26: 45:24:2a:c4:11:c6:c2:97:3a:35:b2:2a:d1:52:38:33:20:81: cf:0b:af:76:a2:91:e7:23:d0:fc:1a:f0:90:79:e4:38:9d:07: f4:14:e4:99 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJy8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhBMDFGMjU4QzIzNEUx MzkxNzRGNTkzNkNBQjcxMDQwODZFQ0FCOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvpLgGyI40LUk4GSjmfEfVAX2ZQyjAFmT8SDDKc3xKI9DkYiW8 Pf9G50e2vktsCq12XsJAWX6tT+6Q6iJ5rwQzd5v+a+/19YEFKzaohAvVjxJKauVE acZliihCzYoSHux9xD7okEeRS8BZXEuGT8sN95INfoHKPWvWoGQ4wjlDofb/ZJh5 arPPx5Rgqg+v2wDqnaC1rSr1fx+/Ket6p00GKOSqtne53R1q5sVlPdIR3e2R7vnM xCI0hLJUWCcbdxsI1hE/93zNABhgWgBd3Ipeq5kA/rRKmo0qthVQp2za8JK1lzEl 3K13euzFnhCbisTLhc5GUhgcL0Kl5cMLVUu9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUigHyWMI04TkXT1k2yrcQQIbsq48wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2lnSHlXTUkwNFRrWFQxazJ5 cmNRUUlic3E0OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n+gwDQYJKoZIhvcNAQELBQADggEBAEpR6LqiDG3FEDtm/gTXX4BGrUFmne1IYmSz iD0QPu9bz7Ek5R3ezU7CQQyvyHHgRpcmnnu5OO6NkR2ZtI+ipClhrp9bcfwPAI+D 0gBpEr7GTox2OiPRIQEhmZWOy0E+GXs1XAnnZfQ69yB+/CHIduLeip5nJHUw+/84 74ranhZG2XOcH3Hjkz05tlEn4ZtvlZmxjN0MbFh/wQqa3t7MZRXiI4SWJsQBvBQJ d2JD1YlaCX6XXyNm3iqKizkTmxE03yfnP0FirzimY/pAmhVw+tyLcRM38WoQJkUk KsQRxsKXOjWyKtFSODMggc8Lr3aikecj0Pwa8JB55DidB/QU5Jk= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:43 2025 by rpki-client