$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QvzVuYjG47ABrTj1JmwXRM0GlOM.roa File: QvzVuYjG47ABrTj1JmwXRM0GlOM.roa (raw, json) Hash identifier: A5drKhTzXyY72fPWgVF7FEdXHDDEfHLJIcXHkbhu5M0= Subject key identifier: 42:FC:D5:B9:88:C6:E3:B0:01:AD:38:F5:26:6C:17:44:CD:06:94:E3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2695 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QvzVuYjG47ABrTj1JmwXRM0GlOM.roa Signing time: Fri 22 Aug 2025 08:43:05 +0000 ROA not before: Fri 22 Aug 2025 08:43:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24164 IP address blocks: 49.159.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 07:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9877 (0x2695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=42FCD5B988C6E3B001AD38F5266C1744CD0694E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:07:3b:e6:66:48:38:f5:e2:41:05:d1:35:33: 0d:3e:d3:bc:c5:b4:c7:90:b7:b5:1f:2d:a4:7f:bd: 7b:59:c2:2d:37:9f:a1:25:dc:0c:be:cf:cc:22:eb: a9:25:9b:85:bf:f3:f0:2f:4a:78:e1:1d:bf:c1:3a: f9:09:8a:4a:8f:d4:8e:fd:0b:57:b2:7e:49:16:53: 03:4b:a6:a9:06:4d:e0:f3:1e:bb:73:3a:bb:61:50: 8c:dd:57:3f:0d:85:1d:6b:e9:39:b8:81:b9:e2:ba: 59:44:59:17:f2:26:61:bd:2d:85:41:e9:9d:d9:05: 5d:f2:10:81:0d:2e:bf:bd:b7:91:83:1a:42:22:3f: ac:70:84:9b:60:25:89:bb:0c:90:17:2b:77:f5:99: 62:7f:3f:f4:e7:c7:98:f5:5b:0e:e8:b1:3c:c5:33: 92:29:15:4b:d4:a9:0a:f6:d7:ce:0f:d1:61:ea:e1: 23:41:cb:0b:b1:2e:f3:05:1e:a5:6a:d9:6c:02:c1: a2:48:ac:31:ce:1d:cf:a0:d2:f1:fd:75:38:f4:17: 49:be:55:76:2d:29:04:49:a9:c9:a5:df:17:db:dc: fc:ab:1b:dd:af:9b:c0:dd:30:30:5c:b7:f7:fb:de: ee:f3:26:ea:4d:b0:01:54:02:9c:3b:5d:a6:90:62: 7d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:FC:D5:B9:88:C6:E3:B0:01:AD:38:F5:26:6C:17:44:CD:06:94:E3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QvzVuYjG47ABrTj1JmwXRM0GlOM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.48.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:69:86:70:0f:60:19:e5:d3:72:18:99:d8:f4:c3:df:dc:bd: 6b:01:d0:97:46:23:3c:50:55:1a:86:ea:37:fa:2d:a9:56:5a: 99:9e:9f:78:40:05:32:ee:ee:3e:b8:e4:d7:e8:4e:62:c0:f9: 8e:20:d5:f6:fc:3b:bb:16:07:2b:05:f8:11:c0:2f:ca:0f:c0: 32:14:c6:c7:82:17:39:3f:f7:6d:08:c0:6b:42:94:01:57:94: 78:08:aa:1b:4f:41:4a:8d:b7:be:38:85:21:60:20:38:f3:9b: d7:41:10:30:1a:32:4a:de:d4:10:16:d0:8a:9c:85:18:7b:1f: 49:71:54:b8:ce:8d:29:68:44:1e:91:8b:8b:49:fd:7f:b3:d3: 21:e3:9d:86:03:f5:6d:91:11:b4:d7:c9:51:39:38:b6:f0:3b: 2d:b8:48:a7:42:2f:6f:5e:9e:14:ca:f6:fb:e2:15:ce:47:60: d1:db:0a:8c:da:95:c6:8f:24:55:e5:2c:a1:10:41:b2:42:f8: fa:5c:80:b6:3c:cb:53:c0:35:3f:78:e7:a7:35:8e:0f:b3:87: 6a:b7:78:f3:5f:9c:0d:e0:e3:27:38:2b:e8:63:3c:69:92:8b: 6b:47:5a:46:dd:a4:1b:9e:ee:44:e9:31:92:62:b7:3e:56:77: 75:e0:f0:2b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJpUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQyRkNENUI5ODhDNkUz QjAwMUFEMzhGNTI2NkMxNzQ0Q0QwNjk0RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9BzvmZkg49eJBBdE1Mw0+07zFtMeQt7UfLaR/vXtZwi03n6El 3Ay+z8wi66klm4W/8/AvSnjhHb/BOvkJikqP1I79C1eyfkkWUwNLpqkGTeDzHrtz OrthUIzdVz8NhR1r6Tm4gbniullEWRfyJmG9LYVB6Z3ZBV3yEIENLr+9t5GDGkIi P6xwhJtgJYm7DJAXK3f1mWJ/P/Tnx5j1Ww7osTzFM5IpFUvUqQr2184P0WHq4SNB ywuxLvMFHqVq2WwCwaJIrDHOHc+g0vH9dTj0F0m+VXYtKQRJqcml3xfb3PyrG92v m8DdMDBct/f73u7zJupNsAFUApw7XaaQYn0XAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQvzVuYjG47ABrTj1JmwXRM0GlOMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1F2elZ1WWpHNDdBQnJUajFK bXdYUk0wR2xPTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nzAwDQYJKoZIhvcNAQELBQADggEBAE5phnAPYBnl03IYmdj0w9/cvWsB0JdGIzxQ VRqG6jf6LalWWpmen3hABTLu7j645NfoTmLA+Y4g1fb8O7sWBysF+BHAL8oPwDIU xseCFzk/920IwGtClAFXlHgIqhtPQUqNt744hSFgIDjzm9dBEDAaMkre1BAW0Iqc hRh7H0lxVLjOjSloRB6Ri4tJ/X+z0yHjnYYD9W2REbTXyVE5OLbwOy24SKdCL29e nhTK9vviFc5HYNHbCozalcaPJFXlLKEQQbJC+PpcgLY8y1PANT9456c1jg+zh2q3 ePNfnA3g4yc4K+hjPGmSi2tHWkbdpBue7kTpMZJitz5Wd3Xg8Cs= -----END CERTIFICATE-----Generated at Sat Oct 25 06:49:12 2025 by rpki-client