$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5Sroa2NOnlpr21wRqgBRev4jSrg.roa File: 5Sroa2NOnlpr21wRqgBRev4jSrg.roa (raw, json) Hash identifier: hKnJ7z7e6dbAS00RKrBNgcITLsu2mFdRecGcmboyGfE= Subject key identifier: E5:2A:E8:6B:63:4E:9E:5A:6B:DB:5C:11:AA:00:51:7A:FE:23:4A:B8 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13EA Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5Sroa2NOnlpr21wRqgBRev4jSrg.roa Signing time: Fri 22 Aug 2025 08:57:24 +0000 ROA not before: Fri 22 Aug 2025 08:57:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5098 (0x13ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E52AE86B634E9E5A6BDB5C11AA00517AFE234AB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f1:3a:8d:44:e0:39:c7:d6:13:41:9a:83:69: a8:47:2f:27:61:65:5f:9a:05:33:dd:45:4e:ab:95: 94:4b:db:32:42:e3:e2:c4:e4:78:3b:be:32:fc:0e: 97:f1:04:96:7b:1c:92:56:66:31:93:d4:f0:a2:ae: 2c:b4:83:b3:fe:29:21:43:a9:11:63:87:fb:ae:81: 41:92:1a:37:7b:35:a3:45:6c:89:ad:b5:09:8d:bc: 3d:1c:89:48:26:00:09:74:16:22:cb:49:3a:ea:87: 61:c3:d1:0a:d8:58:5e:2f:ef:1b:7f:37:7e:a9:3e: e3:89:6f:d0:36:7a:65:3f:68:ec:87:c8:92:59:48: 7d:7d:a3:ef:09:87:a3:f4:3a:74:b8:5b:9e:75:fb: c7:50:04:7c:82:d3:68:39:d5:2e:e0:e1:ea:d8:b7: 66:ec:9b:92:f1:7a:8c:b3:bf:87:87:ec:a0:9b:70: 9b:a0:65:db:72:8c:ca:be:4d:c7:56:cb:b5:5d:dc: 62:ca:d5:fd:fd:a7:cd:8b:b4:80:53:1b:2b:9c:31: 6d:05:0d:9c:ef:c2:af:34:7c:06:19:18:2b:77:5c: 15:51:e1:b8:c3:1a:11:91:14:e7:fc:ab:cc:ce:4f: 78:9a:cb:e4:f7:b4:1b:d8:a1:5f:93:f7:67:e5:eb: 61:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:2A:E8:6B:63:4E:9E:5A:6B:DB:5C:11:AA:00:51:7A:FE:23:4A:B8 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5Sroa2NOnlpr21wRqgBRev4jSrg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.64.0/20 Signature Algorithm: sha256WithRSAEncryption 7d:14:3e:98:81:67:c3:05:b5:38:a2:7e:e4:22:86:52:d9:d1: 7a:f4:4f:5e:33:07:46:ab:f1:f6:21:d2:69:50:2e:fe:8c:c3: 6e:8f:de:83:b4:1e:3b:f3:db:b4:a9:1d:6f:76:4d:3d:a7:c1: 09:c2:86:19:8e:6b:57:ba:83:90:7d:21:2c:75:76:8a:c7:0c: 14:1c:8b:19:e4:93:ba:da:c8:56:d0:ad:a0:42:4f:e5:1b:a4: 2e:b2:f7:9d:a9:c4:e6:ab:94:df:3c:a1:e9:c6:af:ee:7d:40: 2f:96:f5:14:cd:bc:05:14:85:3a:f6:fd:f3:41:8c:2e:d9:b9: f2:74:a9:dd:49:05:6c:30:98:5c:85:69:66:e8:c3:73:39:ab: 12:fc:89:24:5c:2a:34:ab:46:20:d9:a8:69:f4:43:37:cc:18: fe:c5:1c:f4:05:b9:3b:77:77:b5:6f:15:61:d3:f4:f9:8f:af: af:f0:16:5d:24:af:11:fc:c7:cd:22:b8:8b:02:b9:0f:e2:97: 10:4f:ed:34:af:55:b0:ed:fd:30:7a:6c:7e:c1:2e:f8:03:5c: 49:48:6f:6c:e1:46:a3:9d:19:47:38:de:6d:5b:51:2d:55:a9: 85:e4:43:5b:c9:e2:15:7c:49:b8:35:6d:fb:9e:b2:99:d2:1b: ae:b5:22:38 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE+owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU1MkFFODZCNjM0RTlF NUE2QkRCNUMxMUFBMDA1MTdBRkUyMzRBQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb8TqNROA5x9YTQZqDaahHLydhZV+aBTPdRU6rlZRL2zJC4+LE 5Hg7vjL8DpfxBJZ7HJJWZjGT1PCiriy0g7P+KSFDqRFjh/uugUGSGjd7NaNFbImt tQmNvD0ciUgmAAl0FiLLSTrqh2HD0QrYWF4v7xt/N36pPuOJb9A2emU/aOyHyJJZ SH19o+8Jh6P0OnS4W551+8dQBHyC02g51S7g4erYt2bsm5Lxeoyzv4eH7KCbcJug ZdtyjMq+TcdWy7Vd3GLK1f39p82LtIBTGyucMW0FDZzvwq80fAYZGCt3XBVR4bjD GhGRFOf8q8zOT3iay+T3tBvYoV+T92fl62FnAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU5Sroa2NOnlpr21wRqgBRev4jSrgwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy81U3JvYTJOT25scHIy MXdScWdCUmV2NGpTcmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnRAMA0GCSqGSIb3DQEBCwUAA4IBAQB9FD6YgWfDBbU4on7kIoZS2dF69E9e MwdGq/H2IdJpUC7+jMNuj96DtB4789u0qR1vdk09p8EJwoYZjmtXuoOQfSEsdXaK xwwUHIsZ5JO62shW0K2gQk/lG6QusvedqcTmq5TfPKHpxq/ufUAvlvUUzbwFFIU6 9v3zQYwu2bnydKndSQVsMJhchWlm6MNzOasS/IkkXCo0q0Yg2ahp9EM3zBj+xRz0 Bbk7d3e1bxVh0/T5j6+v8BZdJK8R/MfNIriLArkP4pcQT+00r1Ww7f0wemx+wS74 A1xJSG9s4UajnRlHON5tW1EtVamF5ENbyeIVfEm4NW37nrKZ0huutSI4 -----END CERTIFICATE-----Generated at Sat Sep 6 13:48:18 2025 by rpki-client