$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/Nqa0Qhn4yvrq5vNhQmcCw7hAdSE.roa File: Nqa0Qhn4yvrq5vNhQmcCw7hAdSE.roa (raw, json) Hash identifier: Y5nBa0ULJqBAX+uCNVgjgWDOtFmo25XLO+BS2Ijf5+0= Subject key identifier: 36:A6:B4:42:19:F8:CA:FA:EA:E6:F3:61:42:67:02:C3:B8:40:75:21 Certificate issuer: /CN=4AC29EB919D071916D744665F29341B00A036297 Certificate serial: 1E Authority key identifier: 4A:C2:9E:B9:19:D0:71:91:6D:74:46:65:F2:93:41:B0:0A:03:62:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/Nqa0Qhn4yvrq5vNhQmcCw7hAdSE.roa Signing time: Mon 15 Sep 2025 02:41:49 +0000 ROA not before: Mon 15 Sep 2025 02:41:49 +0000 ROA not after: Wed 09 Sep 2026 15:30:21 +0000 asID: 21859 IP address blocks: 122.50.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 17:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC29EB919D071916D744665F29341B00A036297 Validity Not Before: Sep 15 02:41:49 2025 GMT Not After : Sep 9 15:30:21 2026 GMT Subject: CN=36A6B44219F8CAFAEAE6F361426702C3B8407521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:c3:6d:59:31:92:72:7a:d1:f4:89:98:1c: 76:ee:98:88:97:42:a7:1d:e8:bd:e4:9b:15:bd:1f: 29:64:53:4e:cd:a0:e0:c2:72:7d:9b:9c:38:bb:77: db:83:02:7f:97:3c:d2:c2:94:e4:bf:4b:4d:dd:66: d0:5e:24:ec:ac:ac:f3:0b:4d:5f:9a:33:b6:6f:aa: b9:7d:28:2d:d1:3a:93:e2:7d:e0:39:fe:50:fd:98: e3:5d:32:80:e7:28:d3:d0:de:d6:1b:17:79:e2:11: c1:7d:24:cc:2c:78:15:0d:15:6c:8d:8b:e7:c2:f4: 8f:f1:4c:1a:85:1f:6d:52:5f:ef:17:3b:b0:53:84: 97:91:62:ac:de:df:c8:cb:0f:fa:5b:88:36:ff:dd: 56:68:73:90:31:55:5f:a9:9b:a8:db:79:14:42:d8: 83:36:34:ef:b2:58:85:d6:0f:07:a8:40:c4:30:02: 41:c5:49:66:e2:5d:2d:b2:c6:3d:77:ed:00:e1:d5: f2:b4:1f:89:a2:98:7b:f9:2d:77:73:d0:6f:39:86: 30:a2:2b:06:24:fa:f5:62:36:38:c0:b4:e2:87:89: 30:9e:be:e3:d4:01:ae:ae:83:9f:44:e3:ee:9f:96: 79:5e:40:24:e4:56:78:ad:c0:1b:65:18:c5:e8:56: ae:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A6:B4:42:19:F8:CA:FA:EA:E6:F3:61:42:67:02:C3:B8:40:75:21 X509v3 Authority Key Identifier: keyid:4A:C2:9E:B9:19:D0:71:91:6D:74:46:65:F2:93:41:B0:0A:03:62:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/SsKeuRnQcZFtdEZl8pNBsAoDYpc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SsKeuRnQcZFtdEZl8pNBsAoDYpc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCORP/Nqa0Qhn4yvrq5vNhQmcCw7hAdSE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.50.14.0/23 Signature Algorithm: sha256WithRSAEncryption a6:08:20:7a:cb:59:32:30:23:23:b0:58:8a:f4:fb:b2:db:9b: 1b:a7:ae:5d:48:f2:b4:05:05:d0:ff:cf:23:44:1c:1a:52:a7: a1:39:73:19:95:a9:1c:db:67:0e:ee:14:4b:35:67:3c:72:3b: ae:d6:f6:7b:3e:5c:ec:6f:c9:90:9b:43:ce:72:91:5f:93:b4: 7f:64:7d:2a:33:d9:54:70:12:bf:20:a0:37:68:fb:5c:14:41: 05:63:ad:d3:06:20:16:36:28:86:b3:bd:3a:c9:ba:a1:99:1e: 7b:65:4e:49:ae:40:1a:4e:a7:5f:7e:79:0c:5f:e5:47:93:19: ff:4b:37:d1:0f:0d:2e:7c:d5:27:7b:22:9b:45:04:fd:73:c0: eb:ac:ca:f4:f4:46:e8:f0:f5:73:ca:ad:98:f7:1e:6e:b2:33: b5:e0:7d:2c:b4:86:c4:02:06:06:39:34:1e:ff:a3:c4:33:e3: e6:ba:83:d1:7e:0d:85:f1:9c:5e:e6:02:3a:85:6d:44:70:c5: b2:ca:e5:70:3b:fb:a3:46:53:2c:bf:1f:3c:24:f2:7e:85:7d: fb:e4:1b:03:19:0b:d8:e7:f1:0c:88:10:7e:62:6b:5f:61:a2: ad:b3:4c:ad:c3:7b:16:d3:38:ac:cc:7f:2a:ff:24:2f:1c:51: a0:d2:14:0e -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0QUMy OUVCOTE5RDA3MTkxNkQ3NDQ2NjVGMjkzNDFCMDBBMDM2Mjk3MB4XDTI1MDkxNTAy NDE0OVoXDTI2MDkwOTE1MzAyMVowMzExMC8GA1UEAxMoMzZBNkI0NDIxOUY4Q0FG QUVBRTZGMzYxNDI2NzAyQzNCODQwNzUyMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL23w21ZMZJyetH0iZgcdu6YiJdCpx3oveSbFb0fKWRTTs2g4MJy fZucOLt324MCf5c80sKU5L9LTd1m0F4k7Kys8wtNX5oztm+quX0oLdE6k+J94Dn+ UP2Y410ygOco09De1hsXeeIRwX0kzCx4FQ0VbI2L58L0j/FMGoUfbVJf7xc7sFOE l5FirN7fyMsP+luINv/dVmhzkDFVX6mbqNt5FELYgzY077JYhdYPB6hAxDACQcVJ ZuJdLbLGPXftAOHV8rQfiaKYe/ktd3PQbzmGMKIrBiT69WI2OMC04oeJMJ6+49QB rq6Dn0Tj7p+WeV5AJORWeK3AG2UYxehWrl8CAwEAAaOCAfQwggHwMB0GA1UdDgQW BBQ2prRCGfjK+urm82FCZwLDuEB1ITAfBgNVHSMEGDAWgBRKwp65GdBxkW10RmXy k0GwCgNilzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElBT0NP UlAvU3NLZXVSblFjWkZ0ZEVabDhwTkJzQW9EWXBjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9Tc0tldVJuUWNaRnRkRVpsOHBOQnNBb0RZcGMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElBT0NPUlAvTnFhMFFobjR5dnJx NXZOaFFtY0N3N2hBZFNFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAXoyDjANBgkqhkiG9w0BAQsFAAOCAQEApgggestZMjAjI7BYivT7stubG6eu XUjytAUF0P/PI0QcGlKnoTlzGZWpHNtnDu4USzVnPHI7rtb2ez5c7G/JkJtDznKR X5O0f2R9KjPZVHASvyCgN2j7XBRBBWOt0wYgFjYohrO9Osm6oZkee2VOSa5AGk6n X355DF/lR5MZ/0s30Q8NLnzVJ3sim0UE/XPA66zK9PRG6PD1c8qtmPcebrIzteB9 LLSGxAIGBjk0Hv+jxDPj5rqD0X4NhfGcXuYCOoVtRHDFssrlcDv7o0ZTLL8fPCTy foV9++QbAxkL2OfxDIgQfmJrX2GirbNMrcN7FtM4rMx/Kv8kLxxRoNIUDg== -----END CERTIFICATE-----Generated at Thu Sep 18 15:17:27 2025 by rpki-client