$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5gFZ6ApMjq2auS814-D7sE1PZdI.roa File: 5gFZ6ApMjq2auS814-D7sE1PZdI.roa (raw, json) Hash identifier: Zgc8c5mmplOvN4M5JKT7XBH8/bGU/s4ThF+KzaSUQ7k= Subject key identifier: E6:01:59:E8:0A:4C:8E:AD:9A:B9:2F:35:E3:E0:FB:B0:4D:4F:65:D2 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13D7 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5gFZ6ApMjq2auS814-D7sE1PZdI.roa Signing time: Fri 22 Aug 2025 08:57:19 +0000 ROA not before: Fri 22 Aug 2025 08:57:19 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17408 IP address blocks: 150.116.0.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5079 (0x13d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E60159E80A4C8EAD9AB92F35E3E0FBB04D4F65D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e9:59:3c:60:b0:ad:78:5e:a8:db:51:ee:ad: 0f:a3:5b:3f:72:26:97:f0:50:a9:97:31:d7:d8:54: 49:be:eb:ce:88:ce:7a:9b:f9:75:c0:8f:17:98:c7: 97:09:d0:21:8a:6f:21:ed:b0:ab:03:26:a8:f4:42: 14:21:2f:6f:68:2e:8a:b6:a3:1f:e8:db:b2:b6:71: 29:60:1d:b1:14:58:99:82:8c:41:9c:f4:f4:d1:97: 12:e2:54:9f:88:49:4b:f4:f4:fc:8c:4d:01:fd:e2: d9:a4:12:95:a5:59:1f:b1:dc:65:03:c3:0e:e0:e2: 45:ce:f0:98:00:4a:34:f2:a2:02:9a:1d:ae:dd:fb: 4c:ba:4c:a3:3f:32:22:77:4e:e9:58:e8:e6:49:93: cb:35:0e:f9:4d:b6:5e:12:0a:5a:75:c6:02:78:f9: a1:89:77:dc:1b:ea:9b:26:7b:bd:29:e2:d0:78:f2: 14:78:2e:f1:38:a1:5d:81:12:eb:88:d9:78:71:e2: f8:83:61:b3:e5:a6:18:e5:5e:ca:6b:f6:d6:e2:c8: ed:cc:99:d7:b5:af:e4:68:45:63:09:47:b6:af:e4: f3:34:e6:f1:c6:ec:8b:ee:51:b2:2c:9a:f9:c8:52: 13:e6:9a:b2:dd:5e:7a:dd:d7:cc:7f:8a:0c:21:d9: d5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:01:59:E8:0A:4C:8E:AD:9A:B9:2F:35:E3:E0:FB:B0:4D:4F:65:D2 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5gFZ6ApMjq2auS814-D7sE1PZdI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.0.0/21 Signature Algorithm: sha256WithRSAEncryption 57:b8:8e:c3:c6:23:fa:35:bd:31:2e:d4:0c:ef:a4:74:82:4d: 7b:cc:01:3a:f1:92:5d:0f:53:8b:7a:7f:86:4c:77:8e:ce:7d: b6:06:dc:9f:1c:f6:f9:17:e6:ff:8a:c8:e7:fa:e3:43:c5:9e: 7a:f1:3c:55:42:66:1d:fa:63:14:c4:cf:c3:8f:fb:5c:06:13: 57:46:31:aa:b8:cc:7f:3f:27:9d:8d:49:a0:54:13:d3:50:3a: 74:49:c7:90:50:56:37:b9:1b:97:66:f6:53:49:bc:a4:82:a7: 78:82:70:ca:bd:33:be:8a:8a:c5:33:54:82:ce:5f:13:d5:7a: 59:8e:73:c0:30:17:62:6b:10:94:76:44:c0:01:0a:35:7c:ba: fc:12:70:91:d6:2e:14:9a:43:0a:c7:eb:29:a4:d2:c3:8a:d8: 47:9e:23:55:a6:e3:77:e2:bf:3c:df:99:d1:f3:e5:c3:2b:f1: d3:d5:ca:72:f7:e1:8c:01:dc:36:1a:12:02:df:56:79:91:d7: a2:1d:3d:e1:e8:c2:3d:a1:aa:d2:68:60:59:ee:64:3c:a3:72: 54:03:db:56:55:6c:f4:8b:a4:ea:27:84:ad:35:c2:22:a8:82: fd:33:b6:22:1b:96:a4:97:55:1c:c5:e1:ee:d9:97:bc:1a:d7: c5:87:68:83 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE9cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU2MDE1OUU4MEE0QzhF QUQ5QUI5MkYzNUUzRTBGQkIwNEQ0RjY1RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa6Vk8YLCteF6o21HurQ+jWz9yJpfwUKmXMdfYVEm+686Iznqb +XXAjxeYx5cJ0CGKbyHtsKsDJqj0QhQhL29oLoq2ox/o27K2cSlgHbEUWJmCjEGc 9PTRlxLiVJ+ISUv09PyMTQH94tmkEpWlWR+x3GUDww7g4kXO8JgASjTyogKaHa7d +0y6TKM/MiJ3TulY6OZJk8s1DvlNtl4SClp1xgJ4+aGJd9wb6psme70p4tB48hR4 LvE4oV2BEuuI2Xhx4viDYbPlphjlXspr9tbiyO3Mmde1r+RoRWMJR7av5PM05vHG 7IvuUbIsmvnIUhPmmrLdXnrd18x/igwh2dVPAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU5gFZ6ApMjq2auS814+D7sE1PZdIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy81Z0ZaNkFwTWpxMmF1 UzgxNC1EN3NFMVBaZEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnQAMA0GCSqGSIb3DQEBCwUAA4IBAQBXuI7DxiP6Nb0xLtQM76R0gk17zAE6 8ZJdD1OLen+GTHeOzn22BtyfHPb5F+b/isjn+uNDxZ568TxVQmYd+mMUxM/Dj/tc BhNXRjGquMx/PyedjUmgVBPTUDp0SceQUFY3uRuXZvZTSbykgqd4gnDKvTO+iorF M1SCzl8T1XpZjnPAMBdiaxCUdkTAAQo1fLr8EnCR1i4UmkMKx+sppNLDithHniNV puN34r8835nR8+XDK/HT1cpy9+GMAdw2GhIC31Z5kdeiHT3h6MI9oarSaGBZ7mQ8 o3JUA9tWVWz0i6TqJ4StNcIiqIL9M7YiG5akl1UcxeHu2Ze8GtfFh2iD -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:42 2025 by rpki-client