$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/-rM84dFnltLzFCWPl4AGxt3d70o.roa File: -rM84dFnltLzFCWPl4AGxt3d70o.roa (raw, json) Hash identifier: OBYLVbSP/fiL5gNwYlwz1qku0qGFB8y4odJJJJFQvN8= Subject key identifier: FA:B3:3C:E1:D1:67:96:D2:F3:14:25:8F:97:80:06:C6:DD:DD:EF:4A Certificate issuer: /CN=4AC29EB919D071916D744665F29341B00A036297 Certificate serial: 1C Authority key identifier: 4A:C2:9E:B9:19:D0:71:91:6D:74:46:65:F2:93:41:B0:0A:03:62:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/-rM84dFnltLzFCWPl4AGxt3d70o.roa Signing time: Mon 15 Sep 2025 02:41:37 +0000 ROA not before: Mon 15 Sep 2025 02:41:37 +0000 ROA not after: Wed 09 Sep 2026 15:30:21 +0000 asID: 7536 IP address blocks: 122.50.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 13:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC29EB919D071916D744665F29341B00A036297 Validity Not Before: Sep 15 02:41:37 2025 GMT Not After : Sep 9 15:30:21 2026 GMT Subject: CN=FAB33CE1D16796D2F314258F978006C6DDDDEF4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1e:f8:82:64:30:c9:1c:c4:be:0c:e9:ec:26: 7e:67:bf:ff:cb:ac:b5:a1:23:07:cb:12:7c:7a:05: 7d:d2:40:f6:4c:21:01:c9:d9:9e:49:a9:2b:fe:fa: 88:ea:fa:ce:e8:8f:be:b2:f0:73:66:d7:e4:20:4c: b1:62:90:2c:cf:d5:48:6d:53:39:ac:da:6d:66:33: c2:6c:e3:e3:44:77:d5:5d:c5:ea:44:52:77:2a:77: a8:a1:7b:7b:58:d1:85:b4:e8:63:1b:c9:50:d0:1b: 2d:72:fb:7c:da:aa:34:d9:dc:d4:66:a8:2d:2d:4b: 79:ea:87:bf:12:ee:4b:0f:b2:e7:a0:f4:85:39:b8: ae:4c:dd:3d:9c:1d:55:1d:06:16:1b:89:bf:b9:3b: bb:7c:e0:a5:72:45:18:2e:11:eb:70:62:8c:f6:ae: 57:5b:a3:ef:35:70:d9:54:37:ec:0c:9d:a6:cc:51: ac:db:a4:a6:ef:82:7a:0e:97:db:1a:6f:c4:eb:10: bd:aa:a4:9e:c3:dd:94:50:70:ea:9d:37:b7:e0:72: 3d:65:da:c4:97:42:b2:93:c5:95:4a:88:7c:a0:0b: 40:3a:eb:11:b8:91:29:bd:cf:81:61:c5:71:ae:01: bf:88:fc:4b:33:ed:a1:28:13:71:32:a8:1e:6d:2a: fa:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B3:3C:E1:D1:67:96:D2:F3:14:25:8F:97:80:06:C6:DD:DD:EF:4A X509v3 Authority Key Identifier: keyid:4A:C2:9E:B9:19:D0:71:91:6D:74:46:65:F2:93:41:B0:0A:03:62:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/-rM84dFnltLzFCWPl4AGxt3d70o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.50.14.0/23 Signature Algorithm: sha256WithRSAEncryption 12:2d:ba:93:a4:60:0b:75:46:10:ba:f0:04:73:80:63:1a:6c: d4:f5:90:6f:50:c7:31:93:55:b3:3f:16:ce:e2:b5:5a:df:66: 65:34:8e:75:d4:21:d9:65:32:85:5e:81:bc:36:7d:f4:a1:30: d7:d3:0c:96:07:b8:bd:22:a6:0a:d4:ed:79:2c:79:c1:a4:f6: 7b:13:cc:47:52:31:9b:d2:c0:4e:5d:15:bd:5a:d3:fe:cc:09: b6:6f:f9:dc:7f:5c:65:c9:38:6a:12:8b:4d:89:34:19:37:2d: 65:f5:c5:3b:ca:1c:58:55:ff:cf:13:43:e5:70:7e:8c:d0:49: 31:4b:44:a6:ac:13:26:fe:a6:d3:c8:34:1e:25:9a:bc:4c:57: a3:ed:5b:51:b0:d5:57:c4:b6:02:b9:6e:55:00:bf:77:d1:44: a2:d1:08:f1:3a:da:2e:92:42:18:04:13:3b:fe:8a:87:50:fe: 9a:da:52:fb:ff:0f:ea:f6:9b:17:69:d9:5d:66:3f:7b:5f:06: 17:51:05:14:68:bf:53:dc:ac:03:24:7b:47:cd:85:d9:51:9c: 69:36:fc:05:d8:b0:c0:7b:aa:20:2e:5d:65:38:aa:aa:8f:f9: fb:a1:c6:11:a4:b2:48:fa:b5:55:0d:25:db:9c:dd:63:18:d0: b1:f4:7c:da -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0QUMy OUVCOTE5RDA3MTkxNkQ3NDQ2NjVGMjkzNDFCMDBBMDM2Mjk3MB4XDTI1MDkxNTAy NDEzN1oXDTI2MDkwOTE1MzAyMVowMzExMC8GA1UEAxMoRkFCMzNDRTFEMTY3OTZE MkYzMTQyNThGOTc4MDA2QzZERERERUY0QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL8e+IJkMMkcxL4M6ewmfme//8ustaEjB8sSfHoFfdJA9kwhAcnZ nkmpK/76iOr6zuiPvrLwc2bX5CBMsWKQLM/VSG1TOazabWYzwmzj40R31V3F6kRS dyp3qKF7e1jRhbToYxvJUNAbLXL7fNqqNNnc1GaoLS1LeeqHvxLuSw+y56D0hTm4 rkzdPZwdVR0GFhuJv7k7u3zgpXJFGC4R63BijPauV1uj7zVw2VQ37AydpsxRrNuk pu+Ceg6X2xpvxOsQvaqknsPdlFBw6p03t+ByPWXaxJdCspPFlUqIfKALQDrrEbiR Kb3PgWHFca4Bv4j8SzPtoSgTcTKoHm0q+k0CAwEAAaOCAfQwggHwMB0GA1UdDgQW BBT6szzh0WeW0vMUJY+XgAbG3d3vSjAfBgNVHSMEGDAWgBRKwp65GdBxkW10RmXy k0GwCgNilzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElBT0NP UlAvU3NLZXVSblFjWkZ0ZEVabDhwTkJzQW9EWXBjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9Tc0tldVJuUWNaRnRkRVpsOHBOQnNBb0RZcGMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElBT0NPUlAvLXJNODRkRm5sdEx6 RkNXUGw0QUd4dDNkNzBvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAXoyDjANBgkqhkiG9w0BAQsFAAOCAQEAEi26k6RgC3VGELrwBHOAYxps1PWQ b1DHMZNVsz8WzuK1Wt9mZTSOddQh2WUyhV6BvDZ99KEw19MMlge4vSKmCtTteSx5 waT2exPMR1Ixm9LATl0VvVrT/swJtm/53H9cZck4ahKLTYk0GTctZfXFO8ocWFX/ zxND5XB+jNBJMUtEpqwTJv6m08g0HiWavExXo+1bUbDVV8S2ArluVQC/d9FEotEI 8TraLpJCGAQTO/6Kh1D+mtpS+/8P6vabF2nZXWY/e18GF1EFFGi/U9ysAyR7R82F 2VGcaTb8BdiwwHuqIC5dZTiqqo/5+6HGEaSySPq1VQ0l25zdYxjQsfR82g== -----END CERTIFICATE-----Generated at Thu Sep 18 09:28:55 2025 by rpki-client