$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/m-M1PdFvVyNIFI1-jKhDF7N2OK8.roa File: m-M1PdFvVyNIFI1-jKhDF7N2OK8.roa (raw, json) Hash identifier: IrlJpwld1CCr55Ex551jIOUEp/MnoMGu7tqVH/onjlk= Subject key identifier: 9B:E3:35:3D:D1:6F:57:23:48:14:8D:7E:8C:A8:43:17:B3:76:38:AF Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2655 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/m-M1PdFvVyNIFI1-jKhDF7N2OK8.roa Signing time: Fri 22 Aug 2025 08:42:49 +0000 ROA not before: Fri 22 Aug 2025 08:42:49 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9813 (0x2655) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9BE3353DD16F572348148D7E8CA84317B37638AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a8:13:13:13:fb:2d:f4:af:4e:67:b3:ed:85: 69:b4:1b:cb:cc:96:1b:a0:25:79:59:f5:6e:d8:8c: 1d:ea:f3:ef:f7:b9:a6:4d:36:56:d6:88:1c:8b:c1: 59:c5:1e:25:73:de:b0:4d:f8:25:d4:4d:c0:19:0c: 53:1b:5d:eb:4c:02:c9:db:60:46:07:f6:a1:fd:31: 3a:36:ad:95:54:e3:c4:72:1c:1b:a4:66:74:2f:f9: ac:1a:7a:7a:f9:3f:0f:ef:02:fa:13:97:90:18:2d: 10:e1:91:49:fc:41:42:25:a8:bc:67:d0:68:b8:b2: 20:81:01:a2:23:c8:fc:b2:77:c9:f7:11:03:9f:24: 52:8b:43:39:7f:c7:52:87:b8:38:bd:09:ed:1c:be: 15:b9:ac:00:56:6e:2d:fd:a7:09:51:7f:59:93:70: 4b:57:67:ff:9e:66:2e:94:28:d7:5d:48:30:dd:e3: ca:a0:d2:f6:44:39:eb:04:5c:e5:76:7a:02:a0:5f: 61:a9:b0:c9:f5:7b:3f:03:2d:bb:38:4d:8f:4c:37: 3e:7e:9e:50:2b:aa:35:8d:dd:92:e1:78:4c:05:52: b4:48:65:63:c9:ba:be:81:4c:77:d4:af:e9:c8:a0: 09:ac:80:37:1e:e7:b5:8c:7c:e2:6f:76:56:a9:cd: c8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E3:35:3D:D1:6F:57:23:48:14:8D:7E:8C:A8:43:17:B3:76:38:AF X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/m-M1PdFvVyNIFI1-jKhDF7N2OK8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.232.0/21 Signature Algorithm: sha256WithRSAEncryption 41:64:23:f5:30:36:e0:a0:f3:72:0c:0b:2f:be:c7:de:74:50: bf:5b:ea:59:89:20:4d:b3:47:76:c9:99:5f:cf:5e:02:5b:1e: b6:f0:a3:7b:42:76:96:d5:f1:1a:8c:2b:e9:b9:08:64:ab:7f: 7e:2a:1c:e7:48:df:35:9b:78:f1:04:a2:33:fc:1c:19:85:73: 50:ec:2f:58:f5:b2:d6:b0:25:97:2e:c2:38:2f:5b:67:47:c8: 82:b4:fa:61:55:e1:06:01:6b:75:9d:18:91:b5:fc:59:60:1a: 16:8f:86:07:e6:17:68:42:45:22:04:52:17:52:27:42:01:d1: 5d:4f:6b:e5:c6:fa:cb:38:06:d9:2d:98:38:25:51:fa:11:db: 1b:6e:e3:68:dc:a9:80:07:6e:f2:0d:47:5d:3a:3e:b5:bf:37: 05:b8:84:45:d0:c0:db:c0:d7:e8:77:b2:f8:bb:ad:5f:43:bc: d3:8e:fc:b9:86:52:1c:50:8c:7d:e2:a0:ea:b0:a3:fe:a7:f4: 66:23:df:ac:51:5c:5f:f5:b1:80:31:0d:4e:0a:03:6f:46:db: 7e:2b:f0:38:88:bf:d5:34:5f:0e:b9:1f:e2:0a:7b:61:2d:c9: 4a:41:93:a9:6a:43:e3:ad:1f:4e:a6:e5:6e:5b:7b:c4:86:24: ea:b2:88:85 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJlUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlCRTMzNTNERDE2RjU3 MjM0ODE0OEQ3RThDQTg0MzE3QjM3NjM4QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4qBMTE/st9K9OZ7PthWm0G8vMlhugJXlZ9W7YjB3q8+/3uaZN NlbWiByLwVnFHiVz3rBN+CXUTcAZDFMbXetMAsnbYEYH9qH9MTo2rZVU48RyHBuk ZnQv+awaenr5Pw/vAvoTl5AYLRDhkUn8QUIlqLxn0Gi4siCBAaIjyPyyd8n3EQOf JFKLQzl/x1KHuDi9Ce0cvhW5rABWbi39pwlRf1mTcEtXZ/+eZi6UKNddSDDd48qg 0vZEOesEXOV2egKgX2GpsMn1ez8DLbs4TY9MNz5+nlArqjWN3ZLheEwFUrRIZWPJ ur6BTHfUr+nIoAmsgDce57WMfOJvdlapzcjBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUm+M1PdFvVyNIFI1+jKhDF7N2OK8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL20tTTFQZEZ2VnlOSUZJMS1q S2hERjdOMk9LOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nugwDQYJKoZIhvcNAQELBQADggEBAEFkI/UwNuCg83IMCy++x950UL9b6lmJIE2z R3bJmV/PXgJbHrbwo3tCdpbV8RqMK+m5CGSrf34qHOdI3zWbePEEojP8HBmFc1Ds L1j1stawJZcuwjgvW2dHyIK0+mFV4QYBa3WdGJG1/FlgGhaPhgfmF2hCRSIEUhdS J0IB0V1Pa+XG+ss4BtktmDglUfoR2xtu42jcqYAHbvINR106PrW/NwW4hEXQwNvA 1+h3svi7rV9DvNOO/LmGUhxQjH3ioOqwo/6n9GYj36xRXF/1sYAxDU4KA29G234r 8DiIv9U0Xw65H+IKe2EtyUpBk6lqQ+OtH06m5W5be8SGJOqyiIU= -----END CERTIFICATE-----Generated at Sun Aug 24 11:37:51 2025 by rpki-client