$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/A2X1dmhZwEnFr5nC0LHpOgmUwqU.roa File: A2X1dmhZwEnFr5nC0LHpOgmUwqU.roa (raw, json) Hash identifier: 6y6gggI1Iik/uuEPBMLAZ8giQQ5Rt1DXGt1itLWgDJg= Subject key identifier: 03:65:F5:76:68:59:C0:49:C5:AF:99:C2:D0:B1:E9:3A:09:94:C2:A5 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13DB Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/A2X1dmhZwEnFr5nC0LHpOgmUwqU.roa Signing time: Fri 22 Aug 2025 08:57:20 +0000 ROA not before: Fri 22 Aug 2025 08:57:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 21859 IP address blocks: 223.26.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5083 (0x13db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0365F5766859C049C5AF99C2D0B1E93A0994C2A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:90:97:cb:51:47:a3:ad:03:13:12:d1:1c:8b: 46:98:6c:0e:6b:f0:a9:ea:30:39:db:bd:ad:ba:58: cc:e9:b9:1e:9a:37:7d:8b:c6:76:d5:87:97:21:00: 24:9e:47:c8:46:00:bc:27:a7:c5:a8:da:ad:88:a6: a0:d1:cb:c8:f7:99:70:be:33:6a:d3:a8:8d:62:17: b7:0e:a8:be:12:7b:76:8c:c3:35:41:fc:f5:d4:cf: 4a:7e:48:3f:6c:1b:4e:d8:19:6e:51:54:ad:26:9d: a9:cc:ca:bf:97:d7:55:b0:b3:ac:53:e9:03:0f:f2: 79:8c:8c:4d:5e:38:47:94:a7:79:a6:c4:44:4a:6c: 7c:c4:f3:32:6d:92:f4:08:78:8c:ca:97:34:ec:b9: 8e:1d:9b:63:bf:b4:dd:af:16:eb:00:01:af:d4:51: 65:b4:77:7c:3d:56:8c:c5:f1:26:7c:46:04:00:a4: 19:99:e8:fe:8e:27:39:df:c2:bf:88:8e:d2:db:82: 31:e6:25:42:89:47:e7:c4:d8:a9:10:ea:09:36:2e: 6b:3c:ea:79:e8:a5:7a:26:ec:d3:e5:1f:01:58:e7: bb:93:28:d7:9c:60:23:00:db:65:e0:7a:dd:9f:ea: f9:42:b8:a1:32:ef:ed:e4:23:96:1d:76:3c:dd:2d: e8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:65:F5:76:68:59:C0:49:C5:AF:99:C2:D0:B1:E9:3A:09:94:C2:A5 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/A2X1dmhZwEnFr5nC0LHpOgmUwqU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.72.0/22 Signature Algorithm: sha256WithRSAEncryption 40:8e:6c:15:31:ee:f6:17:ed:20:44:7f:94:1c:05:fe:5a:a8: d3:1c:47:f6:ea:c3:59:93:3b:c2:82:c9:cc:5c:1c:be:ae:a2: 57:67:73:ec:50:8e:ce:46:79:d4:4e:f5:2e:bf:2b:b8:8a:4f: 0c:68:2d:5f:8a:13:f8:a7:44:16:ea:d1:36:63:e1:10:0e:de: ab:2d:1c:93:10:78:0a:6f:e8:be:74:c0:0b:75:05:21:e0:24: 2f:c5:39:59:be:68:99:60:a0:fd:35:e5:7f:c9:da:81:9a:6e: 36:cb:6e:be:74:24:02:e6:92:da:da:f7:62:ef:3c:46:dd:64: 95:ad:e6:07:9a:ed:0d:e4:4c:4f:20:1f:ce:86:a4:ad:2d:fa: 1f:32:cc:2f:2a:6f:a0:c1:d6:76:94:79:21:15:92:d9:43:43: 4f:92:77:aa:a7:d8:4f:43:b6:d2:1d:23:1a:eb:93:0c:43:7a: 3b:70:c6:8f:58:c8:58:aa:4b:99:21:d5:d6:43:fd:75:a6:7d: 3c:42:7f:44:68:38:b5:89:2d:26:7f:4c:7b:3b:c1:45:68:ac: d1:9b:95:60:44:93:c0:3b:12:78:12:29:3b:af:ab:71:d9:11: 72:a5:36:b5:9a:58:3f:23:69:b0:d9:3d:5e:72:28:32:cf:a4: 20:6a:69:98 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE9swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAzNjVGNTc2Njg1OUMw NDlDNUFGOTlDMkQwQjFFOTNBMDk5NEMyQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCakJfLUUejrQMTEtEci0aYbA5r8KnqMDnbva26WMzpuR6aN32L xnbVh5chACSeR8hGALwnp8Wo2q2IpqDRy8j3mXC+M2rTqI1iF7cOqL4Se3aMwzVB /PXUz0p+SD9sG07YGW5RVK0mnanMyr+X11Wws6xT6QMP8nmMjE1eOEeUp3mmxERK bHzE8zJtkvQIeIzKlzTsuY4dm2O/tN2vFusAAa/UUWW0d3w9VozF8SZ8RgQApBmZ 6P6OJznfwr+IjtLbgjHmJUKJR+fE2KkQ6gk2Lms86nnopXom7NPlHwFY57uTKNec YCMA22Xget2f6vlCuKEy7+3kI5YddjzdLej1AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUA2X1dmhZwEnFr5nC0LHpOgmUwqUwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9BMlgxZG1oWndFbkZy NW5DMExIcE9nbVV3cVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQC3xpIMA0GCSqGSIb3DQEBCwUAA4IBAQBAjmwVMe72F+0gRH+UHAX+WqjTHEf2 6sNZkzvCgsnMXBy+rqJXZ3PsUI7ORnnUTvUuvyu4ik8MaC1fihP4p0QW6tE2Y+EQ Dt6rLRyTEHgKb+i+dMALdQUh4CQvxTlZvmiZYKD9NeV/ydqBmm42y26+dCQC5pLa 2vdi7zxG3WSVreYHmu0N5ExPIB/OhqStLfofMswvKm+gwdZ2lHkhFZLZQ0NPkneq p9hPQ7bSHSMa65MMQ3o7cMaPWMhYqkuZIdXWQ/11pn08Qn9EaDi1iS0mf0x7O8FF aKzRm5VgRJPAOxJ4Eik7r6tx2RFypTa1mlg/I2mw2T1ecigyz6QgammY -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:42 2025 by rpki-client