$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uNCthInF61vAlfc7OAWVJ5cQ-mU.roa File: uNCthInF61vAlfc7OAWVJ5cQ-mU.roa (raw, json) Hash identifier: m64u5Ile7PDkNB8+PlaPSmVCGQxxZP9YDD0tKGco73c= Subject key identifier: B8:D0:AD:84:89:C5:EB:5B:C0:95:F7:3B:38:05:95:27:97:10:FA:65 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2712 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uNCthInF61vAlfc7OAWVJ5cQ-mU.roa Signing time: Fri 22 Aug 2025 08:43:32 +0000 ROA not before: Fri 22 Aug 2025 08:43:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.158.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10002 (0x2712) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B8D0AD8489C5EB5BC095F73B380595279710FA65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:23:93:36:84:ee:e6:38:97:44:ea:4b:60:95: 14:74:cb:33:34:67:79:d6:c7:fa:86:74:ae:6f:11: fb:3c:f1:e1:10:19:57:f5:e4:40:38:94:37:35:a0: b3:55:90:92:1a:64:cb:72:32:82:66:de:be:2f:6d: 4e:00:dd:64:8a:f9:5d:0f:0f:62:59:65:be:4e:92: 91:e6:3d:0c:be:a9:ac:77:2c:57:e2:ea:84:4b:e5: 40:0a:41:6d:3f:66:e2:15:eb:39:e0:c5:06:d0:ac: c1:66:0a:e6:93:44:ef:f6:bf:8d:66:51:e1:42:a7: 0b:b6:18:18:e4:40:e1:85:d1:f3:5a:95:e9:7b:fb: 27:7e:e4:70:d9:b9:88:88:f8:b5:b0:81:cb:23:69: fe:14:ff:e3:e7:c3:f2:87:ad:fa:40:36:d9:e1:94: 84:72:c9:5a:1a:28:28:0b:47:02:cd:96:3d:87:87: 84:77:08:9a:f4:f2:20:7a:03:b2:79:28:d7:57:a7: fc:19:91:2f:46:0d:bd:46:cf:09:f8:f5:45:31:c6: 3d:8f:59:b5:cd:df:ec:32:2e:d3:3a:6f:50:ad:36: b3:8f:08:1b:9a:bc:a4:8e:0b:c6:61:ff:a9:80:22: 55:02:e5:6d:81:c7:7c:96:bb:31:d6:96:48:bb:fb: ce:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D0:AD:84:89:C5:EB:5B:C0:95:F7:3B:38:05:95:27:97:10:FA:65 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uNCthInF61vAlfc7OAWVJ5cQ-mU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.144.0/24 Signature Algorithm: sha256WithRSAEncryption 25:98:9e:26:6a:59:f1:8e:87:b3:97:ca:8a:e1:8d:a1:a3:c8: bd:23:4f:c9:dc:32:0d:19:6a:9d:ff:c0:0a:b8:d5:38:76:f2: 19:6c:aa:c3:62:2c:13:58:46:32:55:42:a2:61:5c:f0:1c:9a: 83:c7:87:18:39:83:d3:25:13:ef:81:a6:29:61:b6:d9:d5:c1: e6:6f:2e:85:f1:e9:e9:d0:71:0c:3b:4a:97:03:8d:0b:5d:a3: 85:03:0b:a6:1a:dd:33:a6:3f:b5:ed:fa:ff:de:17:46:cd:23: 5d:17:a1:fe:2e:26:43:ef:8c:62:9f:9f:cf:bb:c0:1d:bb:67: 8e:38:a3:39:2a:b4:af:8c:5b:1f:03:9d:38:3d:0b:d4:5a:d8: d4:6d:2a:72:25:db:f3:41:52:60:73:d0:17:93:d0:d0:e7:f3: 0a:7a:95:a0:fb:2b:94:8a:16:c7:3a:3b:b6:7b:60:51:b7:5f: 47:67:16:06:45:25:07:4f:88:52:5c:f4:4a:0d:f5:3e:e7:9d: 19:d1:ae:4a:aa:95:81:bc:e8:87:57:f1:07:71:d6:d2:42:71: e7:f3:59:9b:e5:a5:28:d7:50:84:ca:0b:24:f4:8d:bb:57:4f: 58:17:27:21:b1:b2:08:ea:b0:ee:e1:5e:ea:db:a4:02:93:59: 5c:81:6c:bb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJxIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI4RDBBRDg0ODlDNUVC NUJDMDk1RjczQjM4MDU5NTI3OTcxMEZBNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTI5M2hO7mOJdE6ktglRR0yzM0Z3nWx/qGdK5vEfs88eEQGVf1 5EA4lDc1oLNVkJIaZMtyMoJm3r4vbU4A3WSK+V0PD2JZZb5OkpHmPQy+qax3LFfi 6oRL5UAKQW0/ZuIV6zngxQbQrMFmCuaTRO/2v41mUeFCpwu2GBjkQOGF0fNalel7 +yd+5HDZuYiI+LWwgcsjaf4U/+Pnw/KHrfpANtnhlIRyyVoaKCgLRwLNlj2Hh4R3 CJr08iB6A7J5KNdXp/wZkS9GDb1Gzwn49UUxxj2PWbXN3+wyLtM6b1CtNrOPCBua vKSOC8Zh/6mAIlUC5W2Bx3yWuzHWlki7+86FAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUuNCthInF61vAlfc7OAWVJ5cQ+mUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3VOQ3RoSW5GNjF2QWxmYzdP QVdWSjVjUS1tVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAx npAwDQYJKoZIhvcNAQELBQADggEBACWYniZqWfGOh7OXyorhjaGjyL0jT8ncMg0Z ap3/wAq41Th28hlsqsNiLBNYRjJVQqJhXPAcmoPHhxg5g9MlE++BpilhttnVweZv LoXx6enQcQw7SpcDjQtdo4UDC6Ya3TOmP7Xt+v/eF0bNI10Xof4uJkPvjGKfn8+7 wB27Z444ozkqtK+MWx8DnTg9C9Ra2NRtKnIl2/NBUmBz0BeT0NDn8wp6laD7K5SK Fsc6O7Z7YFG3X0dnFgZFJQdPiFJc9EoN9T7nnRnRrkqqlYG86IdX8Qdx1tJCcefz WZvlpSjXUITKCyT0jbtXT1gXJyGxsgjqsO7hXurbpAKTWVyBbLs= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:32 2025 by rpki-client