$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/w4gXoD7rnPW-Mf4RgDtQLgY_i7E.roa File: w4gXoD7rnPW-Mf4RgDtQLgY_i7E.roa (raw, json) Hash identifier: spJXBkjzB4a06LbQ/gt+Z2MrPpG+EiPfwvxd586pA2c= Subject key identifier: C3:88:17:A0:3E:EB:9C:F5:BE:31:FE:11:80:3B:50:2E:06:3F:8B:B1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2691 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/w4gXoD7rnPW-Mf4RgDtQLgY_i7E.roa Signing time: Fri 22 Aug 2025 08:43:03 +0000 ROA not before: Fri 22 Aug 2025 08:43:03 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 114.198.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9873 (0x2691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C38817A03EEB9CF5BE31FE11803B502E063F8BB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b9:61:74:3e:4e:b6:4e:5f:89:46:26:c8:bb: 75:db:53:60:c7:67:f7:2a:bb:34:39:10:7b:96:04: f6:0e:49:6e:88:84:fa:4b:b1:7f:87:35:6f:5b:74: 2c:1f:5d:37:8e:59:ae:09:d4:72:92:a2:27:0c:53: 54:cd:95:28:1c:e8:e3:ff:6e:0a:e4:6c:d1:60:a6: 1a:29:bf:c5:fa:6e:cd:a0:bd:38:fe:4d:24:c2:de: 2e:0d:ac:90:28:62:a4:66:7d:4a:b7:7e:58:f4:3f: 62:25:23:47:16:e5:2c:7e:10:49:3e:62:e5:69:dd: 4f:89:ed:40:7d:0c:00:55:5b:2c:f5:da:bd:00:d4: 23:0c:4d:0b:b4:e9:0e:30:47:45:2c:7a:b8:3b:30: fc:88:9d:6b:15:2a:7d:d8:68:3f:65:dd:9e:53:67: b4:b1:e4:80:81:f6:4a:c1:29:4a:22:6a:e9:35:31: 82:99:9f:c2:a2:e6:4a:a0:7d:ea:b4:6d:1a:07:57: 70:c6:c4:39:94:a6:43:ee:25:57:ec:87:57:a3:7d: 73:ee:18:96:f0:7c:69:b1:4a:34:52:21:fa:b3:01: 5c:e0:1f:2a:f8:ec:9d:f2:b8:03:80:a5:48:b1:8a: b4:53:d8:fd:48:7f:06:53:00:2b:fc:26:eb:03:39: 16:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:88:17:A0:3E:EB:9C:F5:BE:31:FE:11:80:3B:50:2E:06:3F:8B:B1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/w4gXoD7rnPW-Mf4RgDtQLgY_i7E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.164.0/24 Signature Algorithm: sha256WithRSAEncryption 97:32:33:09:25:ba:cc:a1:a3:6b:57:cc:a6:0f:a9:41:eb:ec: 58:45:e5:33:08:76:ae:bc:96:66:a0:f6:d5:0e:72:33:8b:42: 62:5c:b1:40:a5:70:3a:43:da:fb:65:db:e5:8d:ec:19:58:4d: 1f:63:66:93:1e:22:5b:84:b2:f0:fd:3c:e2:b3:22:32:72:cb: 34:ce:34:49:6a:e8:ac:cd:74:d2:bc:6d:d0:90:6c:52:b3:8e: 54:33:bf:ac:b2:e1:09:2a:eb:2e:db:37:2c:ad:dd:cf:99:2b: 2d:85:c2:b0:bf:5d:00:ca:21:90:17:ee:28:67:23:67:96:9a: ad:be:e2:9b:d2:00:ad:68:12:8d:39:b5:4d:e2:a6:f6:83:ed: 3e:23:b7:68:56:66:13:95:e9:87:6a:31:dd:42:a1:f9:78:43: 0c:90:19:9c:fc:f1:f6:b4:3b:48:e2:80:ac:08:22:72:2b:27: 40:bd:ef:63:88:2a:b3:a3:22:b3:8b:74:16:89:cc:1e:4d:81: 90:a8:5f:3b:f4:c7:8a:ec:86:98:d6:ea:e9:d0:38:df:92:c2: 22:40:e6:63:41:ee:f7:63:ee:6b:a2:12:e5:80:c6:ec:29:67: 13:39:da:33:c3:fa:3e:1e:c7:71:f2:4a:54:a3:67:24:03:8e: 6a:36:05:ee -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJpEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEMzODgxN0EwM0VFQjlD RjVCRTMxRkUxMTgwM0I1MDJFMDYzRjhCQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbuWF0Pk62Tl+JRibIu3XbU2DHZ/cquzQ5EHuWBPYOSW6IhPpL sX+HNW9bdCwfXTeOWa4J1HKSoicMU1TNlSgc6OP/bgrkbNFgphopv8X6bs2gvTj+ TSTC3i4NrJAoYqRmfUq3flj0P2IlI0cW5Sx+EEk+YuVp3U+J7UB9DABVWyz12r0A 1CMMTQu06Q4wR0Userg7MPyInWsVKn3YaD9l3Z5TZ7Sx5ICB9krBKUoiauk1MYKZ n8Ki5kqgfeq0bRoHV3DGxDmUpkPuJVfsh1ejfXPuGJbwfGmxSjRSIfqzAVzgHyr4 7J3yuAOApUixirRT2P1IfwZTACv8JusDORZfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUw4gXoD7rnPW+Mf4RgDtQLgY/i7EwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3c0Z1hvRDdyblBXLU1mNFJn RHRRTGdZX2k3RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABy xqQwDQYJKoZIhvcNAQELBQADggEBAJcyMwklusyho2tXzKYPqUHr7FhF5TMIdq68 lmag9tUOcjOLQmJcsUClcDpD2vtl2+WN7BlYTR9jZpMeIluEsvD9POKzIjJyyzTO NElq6KzNdNK8bdCQbFKzjlQzv6yy4Qkq6y7bNyyt3c+ZKy2FwrC/XQDKIZAX7ihn I2eWmq2+4pvSAK1oEo05tU3ipvaD7T4jt2hWZhOV6YdqMd1Cofl4QwyQGZz88fa0 O0jigKwIInIrJ0C972OIKrOjIrOLdBaJzB5NgZCoXzv0x4rshpjW6unQON+SwiJA 5mNB7vdj7muiEuWAxuwpZxM52jPD+j4ex3HySlSjZyQDjmo2Be4= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:33 2025 by rpki-client