$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/k-cDmiJVzpTH-8hKQYz7T_mtOh4.roa File: k-cDmiJVzpTH-8hKQYz7T_mtOh4.roa (raw, json) Hash identifier: MZPCDcvB6NJcJunjg3XeKRynfBo9YNboF0qqzvqRf98= Subject key identifier: 93:E7:03:9A:22:55:CE:94:C7:FB:C8:4A:41:8C:FB:4F:F9:AD:3A:1E Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 262A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/k-cDmiJVzpTH-8hKQYz7T_mtOh4.roa Signing time: Fri 22 Aug 2025 08:42:39 +0000 ROA not before: Fri 22 Aug 2025 08:42:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9770 (0x262a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=93E7039A2255CE94C7FBC84A418CFB4FF9AD3A1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:67:20:36:c5:91:12:9c:f7:ec:2e:dd:69:6e: 9c:20:87:a5:f8:73:f5:4e:37:99:c4:c1:1a:5f:e1: 63:a2:d7:45:1d:71:79:2d:fc:e4:b4:e5:01:a5:d3: d3:c9:78:02:5c:d8:f7:38:cf:ca:33:66:3b:86:de: 06:80:ce:c9:53:6c:c8:a5:1d:8f:ae:bf:c8:b4:76: c5:bf:c2:7a:5e:8d:da:1c:f8:58:3f:55:d9:8f:75: 51:e8:ac:fe:58:99:7c:f2:c1:f0:bc:3c:9f:b6:25: 03:74:92:30:2d:90:6f:2f:96:bc:24:78:20:91:38: 7f:b3:e4:e0:34:3d:3f:3b:34:e3:50:0b:c4:a4:b3: c5:56:cf:dd:0b:f0:4d:1c:bd:0a:10:b2:a8:e0:58: a0:d8:75:81:0b:b6:0a:7f:9f:71:80:36:99:ae:49: 2b:9b:13:22:fd:e5:66:be:ef:1d:43:f2:88:89:56: d9:a9:8f:83:ec:24:e1:c5:58:4e:14:4e:0d:00:d8: bc:d2:a1:24:5d:a1:7b:14:2c:ec:6d:5c:1e:5a:41: d3:97:72:f1:5a:78:b4:c0:09:e4:65:fe:50:9e:2e: 51:1a:05:27:bb:00:bf:b9:2a:1d:d5:da:6c:a0:ae: 03:8c:df:75:01:28:66:b2:1d:b8:b4:b2:b6:85:f7: fd:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E7:03:9A:22:55:CE:94:C7:FB:C8:4A:41:8C:FB:4F:F9:AD:3A:1E X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/k-cDmiJVzpTH-8hKQYz7T_mtOh4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.4.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:e8:ff:0d:0e:e7:e9:6f:5b:8b:74:26:a0:41:d3:84:d6:4e: bf:bf:5d:c2:96:4a:c0:a3:d1:b2:9b:ad:4f:61:9d:bf:75:98: 55:51:28:dd:23:ed:f4:66:59:35:f6:52:f6:d1:2d:be:e7:14: e5:6d:92:08:89:9c:da:9e:a8:dd:2c:95:3c:24:a1:4e:0e:32: e9:b0:ea:09:18:a5:9e:13:58:50:68:5d:fa:30:eb:a5:56:e9: be:b0:97:7e:58:92:33:15:0d:ba:2d:c9:3e:15:85:7c:18:83: 38:5e:4f:24:65:12:34:f1:d8:cd:9f:45:46:2f:a6:d8:e4:de: fd:10:64:aa:5f:cc:fd:95:63:05:53:e4:71:0c:27:d9:44:5b: 2e:13:08:5d:7d:ad:f2:b1:01:be:dd:0c:6a:b3:64:00:f0:77: fa:3f:2f:af:d3:f1:dd:d8:d9:4b:7d:c4:53:4e:f9:8a:48:fa: ed:0d:a4:8b:3f:38:ae:5c:29:96:ac:8c:3b:a2:39:57:a9:0d: 22:9e:57:2a:08:d8:50:e2:53:2d:69:e5:ea:16:98:9c:cd:0c: 1c:d2:31:d3:da:2f:54:c2:f9:62:c1:ac:02:81:6e:f9:0e:f1: 6e:34:94:a6:3f:94:cf:93:0f:9d:25:21:4d:de:93:a1:c6:a1: 5c:be:61:b7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJiowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkzRTcwMzlBMjI1NUNF OTRDN0ZCQzg0QTQxOENGQjRGRjlBRDNBMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRZyA2xZESnPfsLt1pbpwgh6X4c/VON5nEwRpf4WOi10UdcXkt /OS05QGl09PJeAJc2Pc4z8ozZjuG3gaAzslTbMilHY+uv8i0dsW/wnpejdoc+Fg/ VdmPdVHorP5YmXzywfC8PJ+2JQN0kjAtkG8vlrwkeCCROH+z5OA0PT87NONQC8Sk s8VWz90L8E0cvQoQsqjgWKDYdYELtgp/n3GANpmuSSubEyL95Wa+7x1D8oiJVtmp j4PsJOHFWE4UTg0A2LzSoSRdoXsULOxtXB5aQdOXcvFaeLTACeRl/lCeLlEaBSe7 AL+5Kh3V2mygrgOM33UBKGayHbi0sraF9/2pAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUk+cDmiJVzpTH+8hKQYz7T/mtOh4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2stY0RtaUpWenBUSC04aEtR WXo3VF9tdE9oNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nwQwDQYJKoZIhvcNAQELBQADggEBAJro/w0O5+lvW4t0JqBB04TWTr+/XcKWSsCj 0bKbrU9hnb91mFVRKN0j7fRmWTX2UvbRLb7nFOVtkgiJnNqeqN0slTwkoU4OMumw 6gkYpZ4TWFBoXfow66VW6b6wl35YkjMVDbotyT4VhXwYgzheTyRlEjTx2M2fRUYv ptjk3v0QZKpfzP2VYwVT5HEMJ9lEWy4TCF19rfKxAb7dDGqzZADwd/o/L6/T8d3Y 2Ut9xFNO+YpI+u0NpIs/OK5cKZasjDuiOVepDSKeVyoI2FDiUy1p5eoWmJzNDBzS MdPaL1TC+WLBrAKBbvkO8W40lKY/lM+TD50lIU3ek6HGoVy+Ybc= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:46 2025 by rpki-client