$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mbKKTl8DkZIfxtD8txtEjpIzZHM.roa File: mbKKTl8DkZIfxtD8txtEjpIzZHM.roa (raw, json) Hash identifier: TTjpT9AvQmjR4K5tPAmiD5H+1fuiTEdW2x9FdCGbprg= Subject key identifier: 99:B2:8A:4E:5F:03:91:92:1F:C6:D0:FC:B7:1B:44:8E:92:33:64:73 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2657 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mbKKTl8DkZIfxtD8txtEjpIzZHM.roa Signing time: Fri 22 Aug 2025 08:42:50 +0000 ROA not before: Fri 22 Aug 2025 08:42:50 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 114.198.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9815 (0x2657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=99B28A4E5F0391921FC6D0FCB71B448E92336473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:27:3d:3e:97:ac:d6:22:41:41:81:17:46:ee: a2:c6:e5:a3:87:36:40:ac:43:e0:eb:14:bb:a5:1c: 26:85:2f:78:29:64:fe:a7:6c:c1:47:26:cb:f0:bf: fe:2f:84:d2:a8:d1:ca:4e:33:8a:0e:9c:4a:b0:c1: 3e:2b:03:ba:4f:4f:98:9e:d2:75:37:1a:14:99:f5: b3:02:2a:43:aa:b1:43:71:58:68:dd:bd:e6:cf:56: 9c:3c:e4:94:2b:56:5a:94:d9:8a:b7:3a:50:44:23: 54:3a:dd:81:9a:e8:4c:dc:6a:53:78:7a:f1:fb:39: c5:e9:df:04:19:f2:00:c5:af:de:95:e5:55:60:8a: 09:57:c4:30:a2:d7:83:bf:66:f0:8a:04:f8:37:03: 7c:dd:5e:89:99:74:03:aa:96:4f:6c:06:89:b7:ab: dc:e3:8f:19:44:68:08:0e:1c:08:d9:5d:2c:49:45: d1:f8:a5:e0:f6:ca:76:8f:1d:44:35:b5:a0:d8:8e: e1:0a:ee:3f:39:d6:8f:a9:88:74:a5:24:ed:19:3f: 35:94:03:e2:ef:35:82:c9:39:dd:f9:76:7e:87:61: 32:6e:61:4a:74:47:5f:7e:fa:79:7a:c5:f7:c2:93: 76:d1:f4:29:e1:cd:77:e3:92:0c:7c:a6:35:59:e5: 6a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B2:8A:4E:5F:03:91:92:1F:C6:D0:FC:B7:1B:44:8E:92:33:64:73 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mbKKTl8DkZIfxtD8txtEjpIzZHM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.176.0/20 Signature Algorithm: sha256WithRSAEncryption 08:12:04:2a:da:36:46:8e:5e:4e:c0:e0:c1:4e:e9:10:eb:50: 89:d1:5f:a2:03:eb:5a:cc:04:3e:49:cf:1e:10:79:67:df:e1: ea:4a:dc:c2:ee:d6:02:e0:b2:45:5b:89:27:54:7f:21:76:ca: 92:3f:da:be:35:7f:02:34:07:d5:dc:5e:7a:ba:6f:8a:38:02: 4e:5d:b3:8d:bd:ec:70:24:95:25:5a:d7:4f:95:19:34:65:d7: 0a:4c:8a:fc:99:c5:e4:08:34:48:5b:aa:c4:ff:f9:ea:72:9b: 55:5e:96:f9:2a:bc:47:21:59:dd:f4:08:ca:95:00:d0:75:f0: b3:88:c0:8a:df:3e:c8:9e:f6:70:47:ef:23:31:34:9b:85:ee: f0:92:71:8a:22:2a:1c:fd:bc:a4:69:b0:55:fa:6f:33:44:a2: 35:06:3b:6e:e5:a9:78:76:5d:0e:e5:81:6c:1c:7a:cc:b0:ef: 7f:88:eb:2b:16:b2:c2:c9:53:64:4a:fe:39:f6:b7:62:71:61: b3:a8:40:f6:67:18:36:21:c2:2a:75:0f:23:2e:f5:d4:b2:fa: 6b:78:b1:e2:dc:a5:4b:b9:0b:49:ea:52:87:1b:8e:ab:c8:6e: 70:c9:e2:ef:58:63:c0:93:2c:fa:14:a3:71:ba:e2:36:5f:44: da:33:be:f8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJlcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk5QjI4QTRFNUYwMzkx OTIxRkM2RDBGQ0I3MUI0NDhFOTIzMzY0NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtJz0+l6zWIkFBgRdG7qLG5aOHNkCsQ+DrFLulHCaFL3gpZP6n bMFHJsvwv/4vhNKo0cpOM4oOnEqwwT4rA7pPT5ie0nU3GhSZ9bMCKkOqsUNxWGjd vebPVpw85JQrVlqU2Yq3OlBEI1Q63YGa6EzcalN4evH7OcXp3wQZ8gDFr96V5VVg iglXxDCi14O/ZvCKBPg3A3zdXomZdAOqlk9sBom3q9zjjxlEaAgOHAjZXSxJRdH4 peD2ynaPHUQ1taDYjuEK7j851o+piHSlJO0ZPzWUA+LvNYLJOd35dn6HYTJuYUp0 R19++nl6xffCk3bR9CnhzXfjkgx8pjVZ5WoNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUmbKKTl8DkZIfxtD8txtEjpIzZHMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL21iS0tUbDhEa1pJZnh0RDh0 eHRFanBJelpITS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy xrAwDQYJKoZIhvcNAQELBQADggEBAAgSBCraNkaOXk7A4MFO6RDrUInRX6ID61rM BD5Jzx4QeWff4epK3MLu1gLgskVbiSdUfyF2ypI/2r41fwI0B9XcXnq6b4o4Ak5d s4297HAklSVa10+VGTRl1wpMivyZxeQINEhbqsT/+epym1VelvkqvEchWd30CMqV ANB18LOIwIrfPsie9nBH7yMxNJuF7vCScYoiKhz9vKRpsFX6bzNEojUGO27lqXh2 XQ7lgWwcesyw73+I6ysWssLJU2RK/jn2t2JxYbOoQPZnGDYhwip1DyMu9dSy+mt4 seLcpUu5C0nqUocbjqvIbnDJ4u9YY8CTLPoUo3G64jZfRNozvvg= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:36 2025 by rpki-client