$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AB7Q2zPWl-v_nMq69VD3krmwkAo.roa File: AB7Q2zPWl-v_nMq69VD3krmwkAo.roa (raw, json) Hash identifier: Cyg1U+RlzQeVwU1681rjPdnbn9Y2Uov3H1Ln4ozoMbs= Subject key identifier: 00:1E:D0:DB:33:D6:97:EB:FF:9C:CA:BA:F5:50:F7:92:B9:B0:90:0A Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13ED Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AB7Q2zPWl-v_nMq69VD3krmwkAo.roa Signing time: Fri 22 Aug 2025 08:57:24 +0000 ROA not before: Fri 22 Aug 2025 08:57:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63199 IP address blocks: 150.116.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 13:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5101 (0x13ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=001ED0DB33D697EBFF9CCABAF550F792B9B0900A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:78:49:84:fb:e3:a9:e8:e0:42:34:ea:7e:ad: e0:3a:17:7e:12:ab:6b:88:44:b9:9b:fc:ce:21:5e: c3:82:fb:1d:1b:bb:c2:7b:a6:98:95:d3:c9:a6:bf: 1e:a5:52:bc:2b:e6:6c:7d:71:b0:2c:a2:9c:64:43: ba:71:8d:a3:84:f4:74:c6:90:17:95:78:8a:89:e1: 00:ba:7c:dd:09:c8:47:84:80:67:b5:56:ec:4f:4f: 4d:c1:a4:8d:06:21:7b:43:14:a4:59:5a:5c:58:9f: 0f:29:f3:b6:a0:7d:ce:ea:33:51:64:f5:7e:59:1a: 6b:12:36:b5:d3:5b:28:35:21:85:4c:ed:98:7c:f8: bf:32:bf:bc:99:07:5f:b0:02:eb:ad:b4:2a:49:ee: bc:ae:45:24:1c:ee:c3:e3:b4:b0:4f:e3:1a:52:4b: df:ae:83:04:6c:17:a6:96:dd:7a:76:0b:e8:a8:96: 72:38:f1:ff:21:c2:b0:a8:08:06:94:97:34:7c:f0: 41:26:1c:ea:ff:1b:05:dc:3d:37:85:b3:80:49:a4: b1:d4:55:37:70:3a:97:1b:f0:b5:7f:6e:fa:96:48: 59:09:21:b4:13:be:3a:ac:3f:18:77:d7:f3:0d:a4: b6:98:49:e5:1e:73:60:2d:b7:2a:77:2f:2c:97:e1: b1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:1E:D0:DB:33:D6:97:EB:FF:9C:CA:BA:F5:50:F7:92:B9:B0:90:0A X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/AB7Q2zPWl-v_nMq69VD3krmwkAo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.0.0/24 Signature Algorithm: sha256WithRSAEncryption 89:11:69:9b:04:60:b9:a5:8a:69:55:38:3e:7b:f3:da:a7:2a: f1:eb:62:09:6d:ff:06:f5:e1:fe:1e:54:fa:a9:41:9d:74:1c: 0b:e8:82:7a:2d:93:f7:1c:a7:b4:80:0a:f3:94:35:7b:3f:6e: da:9c:e2:3a:7b:e9:ac:44:05:ac:70:4b:5b:41:b6:b0:d6:7b: ed:f8:74:40:55:a9:bb:b2:27:d1:d8:d7:37:9c:df:fd:82:4d: 84:6f:e2:58:a8:5e:96:3f:dd:c5:2c:95:da:c3:14:99:32:a5: b0:a4:da:22:a3:b2:fc:d0:51:31:23:bd:5a:bd:7a:b3:6c:6f: b3:c5:7e:1d:8e:49:7f:b9:14:16:17:fa:9d:be:b1:bc:71:c0: b5:07:f8:1b:4e:96:3f:66:7d:ea:15:bd:21:3d:6c:f1:24:b4: 51:64:21:cb:9d:6c:4d:d3:56:e2:95:e3:49:f2:3f:69:70:23: f3:4f:16:68:3c:1b:78:e3:ab:63:fb:8c:2b:b7:e3:1c:d3:42: 57:db:10:13:6c:a3:73:ea:04:52:73:d1:a1:a9:91:da:19:3d: f2:3e:a2:c5:67:3c:b1:57:49:9e:3e:5e:ff:bc:5f:7c:67:a5: 0b:67:d3:81:5e:91:96:e6:d6:2b:75:5f:eb:b6:87:32:87:8c: f6:db:6c:f8 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE+0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDAwMUVEMERCMzNENjk3 RUJGRjlDQ0FCQUY1NTBGNzkyQjlCMDkwMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCueEmE++Op6OBCNOp+reA6F34Sq2uIRLmb/M4hXsOC+x0bu8J7 ppiV08mmvx6lUrwr5mx9cbAsopxkQ7pxjaOE9HTGkBeVeIqJ4QC6fN0JyEeEgGe1 VuxPT03BpI0GIXtDFKRZWlxYnw8p87agfc7qM1Fk9X5ZGmsSNrXTWyg1IYVM7Zh8 +L8yv7yZB1+wAuuttCpJ7ryuRSQc7sPjtLBP4xpSS9+ugwRsF6aW3Xp2C+iolnI4 8f8hwrCoCAaUlzR88EEmHOr/GwXcPTeFs4BJpLHUVTdwOpcb8LV/bvqWSFkJIbQT vjqsPxh31/MNpLaYSeUec2Attyp3LyyX4bEDAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUAB7Q2zPWl+v/nMq69VD3krmwkAowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9BQjdRMnpQV2wtdl9u TXE2OVZEM2tybXdrQW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQAMA0GCSqGSIb3DQEBCwUAA4IBAQCJEWmbBGC5pYppVTg+e/Papyrx62IJ bf8G9eH+HlT6qUGddBwL6IJ6LZP3HKe0gArzlDV7P27anOI6e+msRAWscEtbQbaw 1nvt+HRAVam7sifR2Nc3nN/9gk2Eb+JYqF6WP93FLJXawxSZMqWwpNoio7L80FEx I71avXqzbG+zxX4djkl/uRQWF/qdvrG8ccC1B/gbTpY/Zn3qFb0hPWzxJLRRZCHL nWxN01bileNJ8j9pcCPzTxZoPBt446tj+4wrt+Mc00JX2xATbKNz6gRSc9GhqZHa GT3yPqLFZzyxV0mePl7/vF98Z6ULZ9OBXpGW5tYrdV/rtocyh4z222z4 -----END CERTIFICATE-----Generated at Sun Sep 7 12:45:11 2025 by rpki-client