$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3v4uKfRfUB4dqqSHL57xgiDqyh8.roa File: 3v4uKfRfUB4dqqSHL57xgiDqyh8.roa (raw, json) Hash identifier: +8foj7k4oFlaNefMVceYMv5mbuZTbtY1smHjawxYLFM= Subject key identifier: DE:FE:2E:29:F4:5F:50:1E:1D:AA:A4:87:2F:9E:F1:82:20:EA:CA:1F Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13C3 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3v4uKfRfUB4dqqSHL57xgiDqyh8.roa Signing time: Fri 22 Aug 2025 08:57:15 +0000 ROA not before: Fri 22 Aug 2025 08:57:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5059 (0x13c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DEFE2E29F45F501E1DAAA4872F9EF18220EACA1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ec:69:85:86:61:eb:98:00:94:41:cb:1b:93: 58:43:d2:76:55:d7:e4:c6:c4:38:25:92:52:3d:88: 2a:24:11:6b:0c:ae:65:1c:fa:e9:0e:b7:81:b5:97: 25:85:64:7e:1f:ac:32:a1:0c:12:22:ba:ac:c7:0d: 8c:eb:fb:a9:87:50:d5:bc:e2:13:a5:cd:23:f4:bf: 23:cb:87:0e:b1:73:83:23:28:55:71:c3:68:c5:a9: fb:6f:01:3b:05:3c:18:6f:11:53:dc:f9:74:7a:f5: 52:b0:28:7c:f0:01:81:d7:94:aa:b8:5b:db:35:e5: f4:ae:a2:cd:5d:dd:94:d4:fe:89:9c:69:e9:45:8f: 15:31:73:d8:ee:04:be:c2:3c:77:dd:37:3a:9f:9a: ea:ab:bf:ea:10:df:93:c0:21:2a:6d:e5:ea:41:60: 01:39:02:63:d8:40:f3:86:68:72:0c:47:d3:e3:bc: 03:5c:2d:f9:ae:74:f2:0b:17:14:e8:4b:d6:6d:b8: a9:57:80:5b:d3:d0:f0:c4:aa:dc:1c:b0:59:e1:d1: 10:30:78:48:a7:fc:cf:34:f1:53:f5:07:3f:ad:17: 93:b6:4f:47:ae:e8:1f:32:76:f6:12:f2:87:a9:84: fb:bd:44:05:4b:b3:5c:5c:5a:bb:08:9b:1a:ad:74: 9c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FE:2E:29:F4:5F:50:1E:1D:AA:A4:87:2F:9E:F1:82:20:EA:CA:1F X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3v4uKfRfUB4dqqSHL57xgiDqyh8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.160.0/21 Signature Algorithm: sha256WithRSAEncryption 12:f0:d3:9b:dc:1f:e9:d3:19:98:3a:a5:79:52:ce:72:c8:c4: a7:61:93:e1:ab:c1:87:18:06:06:19:92:15:ab:d5:4c:7c:ac: ab:ba:48:5d:69:6b:78:fc:cf:b6:7a:f7:6e:f2:69:47:fe:4d: f0:fa:32:61:2b:1f:9a:92:a2:c0:3f:b8:91:53:34:80:7d:df: d4:62:2a:3d:77:08:0a:ba:9b:9d:74:8d:63:b1:19:59:27:60: bf:d0:1e:a3:1f:ff:07:2a:04:35:cf:10:07:30:83:e8:27:d5: 2e:de:a8:26:bc:16:a2:0d:8a:ee:81:0d:8c:89:43:e2:31:a5: bd:f5:a1:94:52:8c:da:de:41:cc:53:6c:b9:09:87:cb:dd:40: 28:8e:3b:19:0e:3f:0c:32:e5:8d:42:43:d9:88:ca:e3:cf:bb: 6c:05:7f:23:d5:b3:41:18:1f:29:0f:47:f1:54:8e:48:e3:7d: a9:10:2e:44:a0:b1:3f:4e:b4:9e:46:95:3c:c3:b8:6e:2c:92: f2:10:69:d7:d9:08:34:4b:a2:ee:18:85:58:91:43:a6:a2:1a: a8:94:32:c6:5c:56:9b:8f:41:f2:19:2b:85:f0:13:35:d7:44: 9d:d9:d7:a5:76:d7:a5:aa:24:a1:7d:9c:55:67:8f:d8:e8:ad: 42:bc:09:f0 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE8MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERFRkUyRTI5RjQ1RjUw MUUxREFBQTQ4NzJGOUVGMTgyMjBFQUNBMUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC07GmFhmHrmACUQcsbk1hD0nZV1+TGxDglklI9iCokEWsMrmUc +ukOt4G1lyWFZH4frDKhDBIiuqzHDYzr+6mHUNW84hOlzSP0vyPLhw6xc4MjKFVx w2jFqftvATsFPBhvEVPc+XR69VKwKHzwAYHXlKq4W9s15fSuos1d3ZTU/omcaelF jxUxc9juBL7CPHfdNzqfmuqrv+oQ35PAISpt5epBYAE5AmPYQPOGaHIMR9PjvANc LfmudPILFxToS9ZtuKlXgFvT0PDEqtwcsFnh0RAweEin/M808VP1Bz+tF5O2T0eu 6B8ydvYS8oephPu9RAVLs1xcWrsImxqtdJyVAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU3v4uKfRfUB4dqqSHL57xgiDqyh8wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8zdjR1S2ZSZlVCNGRx cVNITDU3eGdpRHF5aDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnSgMA0GCSqGSIb3DQEBCwUAA4IBAQAS8NOb3B/p0xmYOqV5Us5yyMSnYZPh q8GHGAYGGZIVq9VMfKyrukhdaWt4/M+2evdu8mlH/k3w+jJhKx+akqLAP7iRUzSA fd/UYio9dwgKupuddI1jsRlZJ2C/0B6jH/8HKgQ1zxAHMIPoJ9Uu3qgmvBaiDYru gQ2MiUPiMaW99aGUUoza3kHMU2y5CYfL3UAojjsZDj8MMuWNQkPZiMrjz7tsBX8j 1bNBGB8pD0fxVI5I432pEC5EoLE/TrSeRpU8w7huLJLyEGnX2Qg0S6LuGIVYkUOm ohqolDLGXFabj0HyGSuF8BM110Sd2deldtelqiShfZxVZ4/Y6K1CvAnw -----END CERTIFICATE-----Generated at Sat Sep 6 13:50:55 2025 by rpki-client