$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nX7_XYpoo2x9tOiz_EMqbufZvzI.roa File: nX7_XYpoo2x9tOiz_EMqbufZvzI.roa (raw, json) Hash identifier: Bm6PT46F5R2lqdw1cMKin/Cb3RZfSfLl9tSknaFHTp4= Subject key identifier: 9D:7E:FF:5D:8A:68:A3:6C:7D:B4:E8:B3:FC:43:2A:6E:E7:D9:BF:32 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2709 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nX7_XYpoo2x9tOiz_EMqbufZvzI.roa Signing time: Fri 22 Aug 2025 08:43:30 +0000 ROA not before: Fri 22 Aug 2025 08:43:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9993 (0x2709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9D7EFF5D8A68A36C7DB4E8B3FC432A6EE7D9BF32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d1:92:ce:f4:f1:15:2c:7d:e0:49:55:e6:70: 52:ae:9b:26:46:64:1d:a2:41:e5:c5:af:23:89:7e: a7:83:a7:90:45:b9:e9:f1:29:2e:39:39:06:bf:33: 7b:6f:10:e5:08:89:01:d6:5e:00:9d:6c:b1:ed:02: 76:63:db:7d:eb:fe:1c:c4:3a:2a:14:ad:44:fb:8b: 8c:95:d7:40:b5:e7:f8:f1:37:cd:31:c1:35:e8:fa: e5:73:bc:b9:12:21:d4:68:14:29:3f:33:c6:b5:f8: 9e:a3:8a:1a:7b:86:4f:0c:2a:9c:43:7d:c3:90:32: db:5f:dc:70:c2:93:c5:34:da:d8:32:b8:c2:df:11: 25:f5:51:3e:f6:96:30:d2:31:fe:24:f8:47:a9:47: 71:99:d9:0e:ff:ef:79:b4:ac:e9:11:7b:26:78:9f: 35:fb:ae:ba:d6:1e:e6:14:55:99:9a:eb:12:58:64: e5:84:f5:02:ca:08:4a:82:50:ca:70:5e:1c:2a:9a: 80:bc:6c:ae:2c:db:57:28:13:41:42:1a:be:63:b7: 66:69:6a:a2:ca:8b:1d:3d:7f:35:91:40:3a:df:68: 08:49:3b:a6:53:1e:3f:b8:df:c0:09:9f:bf:1d:b4: 54:fa:07:c8:bf:e2:1c:f5:d7:06:f6:9b:f7:64:50: 06:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:7E:FF:5D:8A:68:A3:6C:7D:B4:E8:B3:FC:43:2A:6E:E7:D9:BF:32 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nX7_XYpoo2x9tOiz_EMqbufZvzI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.104.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:fa:ff:be:f8:a6:e4:b6:68:02:96:e7:33:96:04:b6:6c:c8: 28:ae:76:01:84:ea:55:2d:fb:d4:c1:f6:fe:e9:76:63:33:fd: a5:dd:27:de:01:00:9a:c6:08:56:88:2b:43:9e:99:08:11:3b: a8:5c:d1:1b:77:58:49:3d:38:29:8c:c9:89:1d:e9:17:94:89: b1:9f:e2:03:61:b8:41:0b:80:4b:e5:92:11:82:58:98:72:2a: db:52:dd:23:ef:54:e4:dd:01:b6:52:97:28:34:01:eb:94:73: 79:56:11:73:45:94:85:ff:91:3c:aa:10:c7:42:6e:1b:37:ac: 13:6b:96:ae:a3:76:f6:50:c0:96:d8:98:26:a4:06:0f:9c:3d: ee:19:80:5d:a9:ad:26:f5:09:d9:b9:50:86:76:58:97:03:93: 45:c3:5c:d5:3e:ee:ea:de:5f:8a:ad:f9:14:53:6f:00:0a:61: e5:0f:ab:28:ab:dd:e6:ef:1d:ab:24:c6:ed:23:0f:fe:78:a6: c3:11:dc:84:24:9b:e7:c8:be:2f:e0:37:30:e5:c0:f8:df:0d: d2:49:4e:3c:c9:97:23:c6:84:5d:94:a5:13:c3:df:9b:91:5c: 2d:18:0b:ad:47:7f:22:6c:40:50:a4:a4:1f:7a:e4:5b:5f:fe: fa:99:ce:4b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJwkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlEN0VGRjVEOEE2OEEz NkM3REI0RThCM0ZDNDMyQTZFRTdEOUJGMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu0ZLO9PEVLH3gSVXmcFKumyZGZB2iQeXFryOJfqeDp5BFuenx KS45OQa/M3tvEOUIiQHWXgCdbLHtAnZj233r/hzEOioUrUT7i4yV10C15/jxN80x wTXo+uVzvLkSIdRoFCk/M8a1+J6jihp7hk8MKpxDfcOQMttf3HDCk8U02tgyuMLf ESX1UT72ljDSMf4k+EepR3GZ2Q7/73m0rOkReyZ4nzX7rrrWHuYUVZma6xJYZOWE 9QLKCEqCUMpwXhwqmoC8bK4s21coE0FCGr5jt2ZpaqLKix09fzWRQDrfaAhJO6ZT Hj+438AJn78dtFT6B8i/4hz11wb2m/dkUAZ1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUnX7/XYpoo2x9tOiz/EMqbufZvzIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL25YN19YWXBvbzJ4OXRPaXpf RU1xYnVmWnZ6SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n2gwDQYJKoZIhvcNAQELBQADggEBAJr6/774puS2aAKW5zOWBLZsyCiudgGE6lUt +9TB9v7pdmMz/aXdJ94BAJrGCFaIK0OemQgRO6hc0Rt3WEk9OCmMyYkd6ReUibGf 4gNhuEELgEvlkhGCWJhyKttS3SPvVOTdAbZSlyg0AeuUc3lWEXNFlIX/kTyqEMdC bhs3rBNrlq6jdvZQwJbYmCakBg+cPe4ZgF2prSb1Cdm5UIZ2WJcDk0XDXNU+7ure X4qt+RRTbwAKYeUPqyir3ebvHaskxu0jD/54psMR3IQkm+fIvi/gNzDlwPjfDdJJ TjzJlyPGhF2UpRPD35uRXC0YC61HfyJsQFCkpB965Ftf/vqZzks= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:37 2025 by rpki-client