$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lMSq7IE54BiJc1V9MFHAE_4-jTE.roa File: lMSq7IE54BiJc1V9MFHAE_4-jTE.roa (raw, json) Hash identifier: knW4IfpeQSZM+qWGA0m3rR8wmMSfK0ZxfBTMOdikO5g= Subject key identifier: 94:C4:AA:EC:81:39:E0:18:89:73:55:7D:30:51:C0:13:FE:3E:8D:31 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26FF Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lMSq7IE54BiJc1V9MFHAE_4-jTE.roa Signing time: Fri 22 Aug 2025 08:43:28 +0000 ROA not before: Fri 22 Aug 2025 08:43:28 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 49.159.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9983 (0x26ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=94C4AAEC8139E0188973557D3051C013FE3E8D31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b9:2b:b8:bc:5b:1e:f6:42:4c:fc:b2:00:cf: 05:ac:49:78:1b:92:fd:d9:8d:bf:fe:0a:4c:ce:6d: b9:80:85:4a:cd:d3:a1:05:91:95:3b:9d:46:e2:9c: ed:f3:c4:f7:01:9a:9b:e4:77:48:77:2d:cc:32:70: aa:6c:44:e3:55:dd:89:96:5f:01:9c:16:08:ce:22: fc:ec:01:8d:30:41:43:2b:1d:db:a8:55:33:85:07: 25:fc:e3:71:ba:69:99:d0:26:6e:bd:ec:86:3d:8b: 6a:a0:08:35:0a:5b:33:76:61:d1:7e:59:03:c1:ea: 87:68:7f:5f:20:de:cb:01:e9:2d:ac:68:b3:d6:a9: 50:72:bd:74:a0:2f:af:16:18:2c:be:09:4b:6e:bd: 19:58:e4:44:72:ff:37:e7:cc:3a:9d:d5:51:a8:dd: 61:1a:d1:c8:38:13:fd:ec:05:a0:8c:8d:3c:7d:c7: 91:fd:c2:5e:37:73:a5:ef:03:8c:e6:2a:79:3d:7a: c1:7e:18:c8:69:3b:36:a0:74:23:04:7c:14:5f:cf: e5:90:8e:04:0a:19:4e:12:b1:2d:63:0e:b6:35:26: a4:12:7c:98:1f:bf:ee:c3:6a:44:93:3c:7f:ae:52: 07:d3:17:07:ce:b0:5f:f9:3f:cd:b4:73:1c:38:2e: 9e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C4:AA:EC:81:39:E0:18:89:73:55:7D:30:51:C0:13:FE:3E:8D:31 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lMSq7IE54BiJc1V9MFHAE_4-jTE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.212.0/22 Signature Algorithm: sha256WithRSAEncryption 40:a4:64:97:72:6e:26:d1:e0:5d:4d:84:9f:a7:69:07:c8:d0: 14:f6:ae:38:95:4d:da:7d:39:18:c4:2b:0c:b2:b1:56:cb:be: 05:19:56:49:04:fe:d6:6e:5d:c0:ac:34:40:62:eb:f5:33:1c: 68:e6:ca:4c:03:a5:9a:82:e8:6c:80:a6:e2:0e:ef:75:83:d9: 55:08:67:06:2b:f9:96:66:2f:be:f8:15:e1:97:8b:65:9d:25: 48:eb:d8:6d:15:15:1a:19:dd:6b:e0:df:71:7e:89:79:4f:0c: f0:f5:9c:01:c5:c7:ce:e4:a7:be:c4:9c:d4:2e:8e:68:62:a0: 96:8a:f7:2a:a3:fc:f5:f3:86:6c:85:72:32:e3:8a:e8:15:a6: 64:63:6a:e0:fd:7f:84:9c:ab:9d:29:a7:47:fa:2e:29:d9:4e: 24:a5:53:58:bc:82:70:68:dc:3f:71:ec:87:84:6e:17:56:0f: ef:52:3e:90:24:cf:9a:52:a0:2b:1c:e8:39:72:b4:c7:f4:3e: 9d:2a:7e:28:d9:18:80:55:27:e9:bb:a0:30:5e:40:0f:43:9d: 87:39:6f:5e:5f:ce:01:19:d8:3f:a3:70:62:8e:d4:9f:89:8f: cc:ab:dc:77:1e:d4:96:2e:d1:4b:a6:b2:c3:5c:02:02:f6:df: 88:2b:f8:f1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJv8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk0QzRBQUVDODEzOUUw MTg4OTczNTU3RDMwNTFDMDEzRkUzRThEMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFuSu4vFse9kJM/LIAzwWsSXgbkv3Zjb/+CkzObbmAhUrN06EF kZU7nUbinO3zxPcBmpvkd0h3LcwycKpsRONV3YmWXwGcFgjOIvzsAY0wQUMrHduo VTOFByX843G6aZnQJm697IY9i2qgCDUKWzN2YdF+WQPB6odof18g3ssB6S2saLPW qVByvXSgL68WGCy+CUtuvRlY5ERy/zfnzDqd1VGo3WEa0cg4E/3sBaCMjTx9x5H9 wl43c6XvA4zmKnk9esF+GMhpOzagdCMEfBRfz+WQjgQKGU4SsS1jDrY1JqQSfJgf v+7DakSTPH+uUgfTFwfOsF/5P820cxw4Lp4lAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlMSq7IE54BiJc1V9MFHAE/4+jTEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2xNU3E3SUU1NEJpSmMxVjlN RkhBRV80LWpURS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n9QwDQYJKoZIhvcNAQELBQADggEBAECkZJdybibR4F1NhJ+naQfI0BT2rjiVTdp9 ORjEKwyysVbLvgUZVkkE/tZuXcCsNEBi6/UzHGjmykwDpZqC6GyApuIO73WD2VUI ZwYr+ZZmL774FeGXi2WdJUjr2G0VFRoZ3Wvg33F+iXlPDPD1nAHFx87kp77EnNQu jmhioJaK9yqj/PXzhmyFcjLjiugVpmRjauD9f4Scq50pp0f6LinZTiSlU1i8gnBo 3D9x7IeEbhdWD+9SPpAkz5pSoCsc6DlytMf0Pp0qfijZGIBVJ+m7oDBeQA9DnYc5 b15fzgEZ2D+jcGKO1J+Jj8yr3Hce1JYu0UumssNcAgL234gr+PE= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:45 2025 by rpki-client