$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zaixvY6u1xuiJbyxuHxg0VVsGHE.roa File: zaixvY6u1xuiJbyxuHxg0VVsGHE.roa (raw, json) Hash identifier: cDW32PZXm0PbT5LTKL0oCHk36Vsq3Zw1yCaWoVFeVkY= Subject key identifier: CD:A8:B1:BD:8E:AE:D7:1B:A2:25:BC:B1:B8:7C:60:D1:55:6C:18:71 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26DF Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zaixvY6u1xuiJbyxuHxg0VVsGHE.roa Signing time: Fri 22 Aug 2025 08:43:20 +0000 ROA not before: Fri 22 Aug 2025 08:43:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24163 IP address blocks: 49.158.192.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9951 (0x26df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CDA8B1BD8EAED71BA225BCB1B87C60D1556C1871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a7:36:f9:29:1f:72:10:24:6f:00:e3:47:d7: 01:30:39:a9:2f:2e:e1:40:d3:e3:65:23:81:15:9f: 8c:23:19:51:3b:e4:10:97:a7:1d:9b:5f:17:7c:ef: c5:18:94:c1:70:2f:b2:b0:cf:07:9a:4e:2e:ac:1f: f0:d2:92:03:32:52:82:ea:03:84:b4:9e:2e:c2:51: 39:66:2b:b3:26:4f:77:e4:3e:10:c4:37:1a:4f:e9: 91:cd:2e:ce:27:cf:b4:8c:79:74:72:2e:eb:1a:e4: 5b:e6:ef:b8:c0:ca:4c:f8:85:65:c3:3c:f7:b6:80: 2f:8e:1b:48:2d:76:21:a8:fb:82:fa:0e:cb:32:93: c3:42:a9:12:34:d2:8d:c4:27:c7:a4:5a:c5:09:d9: 4b:60:48:62:d2:71:59:37:e8:f4:20:a5:82:e9:61: 9f:ac:e7:04:cf:b4:d6:0d:05:b6:c0:35:ad:6d:c6: bb:8a:66:25:d9:10:73:79:b3:b0:06:b5:50:8e:67: e8:fd:72:f2:01:e5:e9:5a:55:2c:de:61:77:cc:73: e4:5d:a0:7b:a0:6e:35:b8:41:a7:6c:ca:4a:9d:21: d8:73:32:8a:da:f3:4e:44:2a:5a:cc:60:63:ed:6a: 6e:02:53:3b:27:46:3d:65:31:61:fe:81:55:44:73: 38:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A8:B1:BD:8E:AE:D7:1B:A2:25:BC:B1:B8:7C:60:D1:55:6C:18:71 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zaixvY6u1xuiJbyxuHxg0VVsGHE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.192.0/21 Signature Algorithm: sha256WithRSAEncryption 94:48:be:4a:7e:7b:af:61:71:4c:a8:8b:04:a7:6e:f3:fb:69: e3:a0:2b:58:a3:d3:a0:0f:8d:88:06:92:d7:c5:31:54:29:9c: 79:ef:33:a7:4b:81:e5:7d:93:57:d4:37:b0:92:62:3d:4d:3a: 0b:f5:dc:62:f2:90:bf:9e:55:87:f0:aa:2a:a5:22:bd:ec:95: d5:59:11:90:2d:ea:51:b1:5f:ff:29:e4:7f:af:4c:ad:3b:03: d9:29:a2:41:5a:61:46:91:6f:ff:f0:a2:aa:c6:16:21:80:43: e8:a8:95:ea:2a:ec:b3:68:9b:ea:96:c5:88:90:d3:b2:53:e8: e8:bd:aa:84:36:fa:3e:16:94:63:c3:fa:1f:76:b3:d2:82:e1: a4:6c:38:d2:a2:0b:20:a9:a6:6c:e9:3f:a8:7a:c7:ad:be:6f: fa:47:70:6b:70:5b:18:40:32:c6:cc:2e:98:af:59:93:f0:7b: 1c:ad:1b:9a:33:0f:da:47:b7:3e:23:c0:86:ae:f7:72:09:20: 93:2a:1b:39:c7:e9:c1:09:6f:56:3d:79:a6:51:39:14:d7:8b: aa:54:94:a0:c6:50:4d:c8:ab:93:81:79:ba:92:c2:36:ac:15: 02:ad:6c:d8:b3:9f:15:3e:ce:38:7c:cb:69:8d:95:97:ef:0e: f4:b1:b3:0c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJt8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENEQThCMUJEOEVBRUQ3 MUJBMjI1QkNCMUI4N0M2MEQxNTU2QzE4NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDpzb5KR9yECRvAONH1wEwOakvLuFA0+NlI4EVn4wjGVE75BCX px2bXxd878UYlMFwL7KwzweaTi6sH/DSkgMyUoLqA4S0ni7CUTlmK7MmT3fkPhDE NxpP6ZHNLs4nz7SMeXRyLusa5Fvm77jAykz4hWXDPPe2gC+OG0gtdiGo+4L6Dssy k8NCqRI00o3EJ8ekWsUJ2UtgSGLScVk36PQgpYLpYZ+s5wTPtNYNBbbANa1txruK ZiXZEHN5s7AGtVCOZ+j9cvIB5elaVSzeYXfMc+RdoHugbjW4QadsykqdIdhzMora 805EKlrMYGPtam4CUzsnRj1lMWH+gVVEczgrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUzaixvY6u1xuiJbyxuHxg0VVsGHEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3phaXh2WTZ1MXh1aUpieXh1 SHhnMFZWc0dIRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nsAwDQYJKoZIhvcNAQELBQADggEBAJRIvkp+e69hcUyoiwSnbvP7aeOgK1ij06AP jYgGktfFMVQpnHnvM6dLgeV9k1fUN7CSYj1NOgv13GLykL+eVYfwqiqlIr3sldVZ EZAt6lGxX/8p5H+vTK07A9kpokFaYUaRb//woqrGFiGAQ+ioleoq7LNom+qWxYiQ 07JT6Oi9qoQ2+j4WlGPD+h92s9KC4aRsONKiCyCppmzpP6h6x62+b/pHcGtwWxhA MsbMLpivWZPwexytG5ozD9pHtz4jwIau93IJIJMqGznH6cEJb1Y9eaZRORTXi6pU lKDGUE3Iq5OBebqSwjasFQKtbNiznxU+zjh8y2mNlZfvDvSxsww= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:30 2025 by rpki-client