$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tS41f1RoTDpEQTnGyFGZT_4Qr0w.roa File: tS41f1RoTDpEQTnGyFGZT_4Qr0w.roa (raw, json) Hash identifier: ciynFNkTKKfh/LtMTX8UPlbQ0SHEMijv2hVXqX7X/J8= Subject key identifier: B5:2E:35:7F:54:68:4C:3A:44:41:39:C6:C8:51:99:4F:FE:10:AF:4C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 263B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tS41f1RoTDpEQTnGyFGZT_4Qr0w.roa Signing time: Fri 22 Aug 2025 08:42:43 +0000 ROA not before: Fri 22 Aug 2025 08:42:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9787 (0x263b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:42:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B52E357F54684C3A444139C6C851994FFE10AF4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:44:68:f5:c9:a3:10:95:7d:7a:31:e5:9e:6d: 6a:91:54:00:c7:fb:b1:d2:25:91:9a:15:29:66:a2: 50:ef:e7:3d:3e:dc:37:2f:cc:61:8d:e4:b2:71:e9: 40:5f:e8:6f:8c:57:02:d0:7b:11:c0:25:08:f9:96: ba:df:62:f8:c2:99:6c:d0:78:cc:f7:a9:51:da:ee: 5c:ab:3b:bb:8d:1a:00:23:58:3a:0d:4b:43:06:16: 0b:6d:51:82:e5:36:7b:30:66:67:57:c9:dd:f3:f4: 30:0f:3c:aa:e3:41:a0:46:32:66:6c:df:c1:29:56: ba:66:a6:e6:fa:e2:c4:65:12:44:09:e9:5e:f9:35: d7:62:31:39:fb:0b:2c:c6:f8:6d:a3:0e:de:c7:d5: 13:8f:81:bb:54:69:25:aa:19:a2:82:bd:b7:77:f8: 17:e5:7e:18:c2:87:90:0a:9e:ac:e6:fc:a6:43:a4: fd:6d:a4:bf:71:73:7d:3e:a5:a7:18:c7:fa:bc:03: ac:eb:0d:55:3a:3b:e6:c2:7a:a7:eb:ae:d1:17:1f: 1e:db:be:96:17:df:69:60:cc:a8:22:aa:52:76:e8: 16:de:a3:ce:7d:0e:13:f4:81:7b:5a:cb:53:06:5e: aa:7e:81:49:86:d9:05:f9:4a:a4:0e:d3:48:c4:4b: 48:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2E:35:7F:54:68:4C:3A:44:41:39:C6:C8:51:99:4F:FE:10:AF:4C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tS41f1RoTDpEQTnGyFGZT_4Qr0w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.32.0/20 Signature Algorithm: sha256WithRSAEncryption 58:a8:b9:71:11:19:ef:42:1d:97:02:86:89:ff:2d:74:38:fd: 6f:4e:c9:5d:e0:39:80:77:88:e3:02:63:7a:d9:b8:d4:2b:dd: 6b:20:d3:e9:53:95:48:2d:1b:d1:8a:12:65:42:23:cb:e5:2c: 31:fe:89:3f:d2:d5:d8:10:e7:64:5e:9e:59:d0:49:31:bb:8b: c1:13:13:96:5a:26:ea:d3:2a:b2:16:12:21:12:c0:1c:b0:f6: b1:69:fa:63:53:e4:5f:8c:fc:b7:06:7e:b7:df:30:20:90:f2: 3d:7f:57:e3:aa:24:d6:f7:9d:18:5b:7a:e4:7a:95:77:14:aa: fb:37:db:d9:2a:e8:35:54:d3:75:e4:69:8d:7d:58:23:e8:30: a3:51:29:fd:d1:22:f3:fb:41:12:34:e5:b5:b6:a3:d0:38:67: 8a:ce:07:50:28:8e:17:84:b7:ee:da:d9:57:0d:45:10:9d:67: 73:2a:8d:78:26:b7:a7:27:85:cb:64:d3:03:b8:a5:da:24:6a: 18:ed:b6:da:d5:f6:35:76:7e:40:58:15:1e:5b:d0:0b:75:5b: 76:1d:31:22:1e:1c:e0:fe:72:de:7f:ef:7b:11:39:ad:4e:28: 9e:49:9f:ed:6a:53:a4:aa:0c:5f:f8:94:8b:1c:63:cf:83:42: e2:c1:a4:34 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJjswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQyNDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI1MkUzNTdGNTQ2ODRD M0E0NDQxMzlDNkM4NTE5OTRGRkUxMEFGNEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClRGj1yaMQlX16MeWebWqRVADH+7HSJZGaFSlmolDv5z0+3Dcv zGGN5LJx6UBf6G+MVwLQexHAJQj5lrrfYvjCmWzQeMz3qVHa7lyrO7uNGgAjWDoN S0MGFgttUYLlNnswZmdXyd3z9DAPPKrjQaBGMmZs38EpVrpmpub64sRlEkQJ6V75 NddiMTn7CyzG+G2jDt7H1ROPgbtUaSWqGaKCvbd3+BflfhjCh5AKnqzm/KZDpP1t pL9xc30+pacYx/q8A6zrDVU6O+bCeqfrrtEXHx7bvpYX32lgzKgiqlJ26Bbeo859 DhP0gXtay1MGXqp+gUmG2QX5SqQO00jES0gRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtS41f1RoTDpEQTnGyFGZT/4Qr0wwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3RTNDFmMVJvVERwRVFUbkd5 RkdaVF80UXIwdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx niAwDQYJKoZIhvcNAQELBQADggEBAFiouXERGe9CHZcChon/LXQ4/W9OyV3gOYB3 iOMCY3rZuNQr3Wsg0+lTlUgtG9GKEmVCI8vlLDH+iT/S1dgQ52RenlnQSTG7i8ET E5ZaJurTKrIWEiESwByw9rFp+mNT5F+M/LcGfrffMCCQ8j1/V+OqJNb3nRhbeuR6 lXcUqvs329kq6DVU03XkaY19WCPoMKNRKf3RIvP7QRI05bW2o9A4Z4rOB1AojheE t+7a2VcNRRCdZ3MqjXgmt6cnhctk0wO4pdokahjtttrV9jV2fkBYFR5b0At1W3Yd MSIeHOD+ct5/73sROa1OKJ5Jn+1qU6SqDF/4lIscY8+DQuLBpDQ= -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:22 2025 by rpki-client