$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rd-Fv--Hsv-QZ7CKmW8zQIVrtx4.roa File: rd-Fv--Hsv-QZ7CKmW8zQIVrtx4.roa (raw, json) Hash identifier: fNfiNRMtyyo26dOryyh7LvpMZFL5d6QvWsU9CAPP4yM= Subject key identifier: AD:DF:85:BF:EF:87:B2:FF:90:67:B0:8A:99:6F:33:40:85:6B:B7:1E Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 25D1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rd-Fv--Hsv-QZ7CKmW8zQIVrtx4.roa Signing time: Fri 22 Aug 2025 08:42:16 +0000 ROA not before: Fri 22 Aug 2025 08:42:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 49.159.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9681 (0x25d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ADDF85BFEF87B2FF9067B08A996F3340856BB71E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bc:42:8e:09:d4:ed:82:76:d7:53:46:14:a2: 32:b7:33:2e:20:3b:3b:73:6c:02:e9:4f:3b:c3:65: 5a:13:fc:c0:60:df:25:41:0c:62:8c:5c:b0:aa:25: c9:1e:ef:e5:cb:e0:72:82:8b:0c:b8:40:ea:41:1b: a8:fe:dc:1f:ec:a8:74:f6:ff:3e:34:75:81:88:3a: 7b:52:55:36:90:3f:a4:c5:56:cc:b1:29:91:e0:aa: 1b:77:12:51:d3:6b:18:87:b3:d6:0c:98:00:ee:08: 69:13:ef:15:41:b5:d7:56:b2:fd:b1:c7:e7:e5:10: 07:a2:5e:a4:06:0d:fa:af:4c:21:0d:bf:a1:5a:cf: fe:45:b0:f3:38:e9:ca:91:7b:e4:47:4b:9a:f0:d1: b8:9d:a5:08:33:89:da:0e:0b:d1:47:ca:dc:f1:4b: 4f:a6:f4:6e:d1:42:f3:2c:a2:e9:6e:74:66:13:88: 78:74:44:a4:18:d3:85:76:eb:1b:50:76:41:10:3c: 08:df:65:ca:20:8b:1d:84:e9:34:fc:f0:b1:5a:2a: 13:3c:3f:6a:99:6a:ce:5a:64:91:74:63:37:3a:d2: 68:a7:55:a4:5c:ec:e3:5b:1a:33:f1:a4:3a:3f:4a: fd:fa:25:10:00:0f:f1:05:f0:e1:c6:29:49:90:68: 94:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:DF:85:BF:EF:87:B2:FF:90:67:B0:8A:99:6F:33:40:85:6B:B7:1E X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rd-Fv--Hsv-QZ7CKmW8zQIVrtx4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.68.0/22 Signature Algorithm: sha256WithRSAEncryption 56:f5:0d:17:87:d5:08:8e:c5:c8:a2:86:22:a8:d8:49:ea:b7: 26:1b:ea:22:80:ec:b7:61:75:f7:24:3c:52:84:19:f5:17:71: cd:74:3d:d3:e1:73:db:0c:9e:14:a5:40:44:64:44:6a:7f:81: 26:2b:f2:ee:49:ee:88:4b:f2:0b:a0:cd:e3:af:26:eb:8f:87: 64:6f:d8:fc:ff:f9:ce:4b:51:79:70:4f:74:78:a2:a7:a1:19: 85:b8:c7:d0:5d:29:b8:4f:6d:af:85:63:69:0f:9b:d6:d5:79: 6e:98:0b:8a:b4:f8:a3:b9:c7:ed:f7:01:10:a1:40:39:08:b1: 81:c8:ce:68:75:dc:19:b8:7a:c9:1c:39:e2:79:f3:63:ad:f7: 09:d5:f0:e4:c2:b7:d2:56:ed:0d:be:94:f1:e0:fe:ef:94:68: 59:0d:9e:4f:23:62:86:4e:b3:49:a3:3d:e9:2c:f0:0c:6e:e1: 90:80:58:6b:9f:4c:03:9c:0b:23:16:c2:c7:c0:03:c2:cf:78: 7f:aa:78:78:ad:3a:62:b1:38:bd:9b:fc:a6:cd:3e:7e:38:74: 58:7d:7b:80:c7:27:f4:24:20:38:29:96:4d:10:4b:46:f4:33: 3e:45:25:f4:d6:ba:03:72:6d:0f:5c:35:5f:3a:35:9d:ce:a7: 04:7a:4f:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJdEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyMTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFEREY4NUJGRUY4N0Iy RkY5MDY3QjA4QTk5NkYzMzQwODU2QkI3MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYvEKOCdTtgnbXU0YUojK3My4gOztzbALpTzvDZVoT/MBg3yVB DGKMXLCqJcke7+XL4HKCiwy4QOpBG6j+3B/sqHT2/z40dYGIOntSVTaQP6TFVsyx KZHgqht3ElHTaxiHs9YMmADuCGkT7xVBtddWsv2xx+flEAeiXqQGDfqvTCENv6Fa z/5FsPM46cqRe+RHS5rw0bidpQgzidoOC9FHytzxS0+m9G7RQvMsouludGYTiHh0 RKQY04V26xtQdkEQPAjfZcogix2E6TT88LFaKhM8P2qZas5aZJF0Yzc60minVaRc 7ONbGjPxpDo/Sv36JRAAD/EF8OHGKUmQaJSjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrd+Fv++Hsv+QZ7CKmW8zQIVrtx4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3JkLUZ2LS1Ic3YtUVo3Q0tt Vzh6UUlWcnR4NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n0QwDQYJKoZIhvcNAQELBQADggEBAFb1DReH1QiOxciihiKo2EnqtyYb6iKA7Ldh dfckPFKEGfUXcc10PdPhc9sMnhSlQERkRGp/gSYr8u5J7ohL8gugzeOvJuuPh2Rv 2Pz/+c5LUXlwT3R4oqehGYW4x9BdKbhPba+FY2kPm9bVeW6YC4q0+KO5x+33ARCh QDkIsYHIzmh13Bm4eskcOeJ582Ot9wnV8OTCt9JW7Q2+lPHg/u+UaFkNnk8jYoZO s0mjPeks8Axu4ZCAWGufTAOcCyMWwsfAA8LPeH+qeHitOmKxOL2b/KbNPn44dFh9 e4DHJ/QkIDgplk0QS0b0Mz5FJfTWugNybQ9cNV86NZ3OpwR6TxA= -----END CERTIFICATE-----Generated at Sun Aug 24 11:40:34 2025 by rpki-client