$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/I9IufmozCI13x9bm3lc2_OL1WSg.roa File: I9IufmozCI13x9bm3lc2_OL1WSg.roa (raw, json) Hash identifier: icRHU0oLYyHAUvw2E7xtCtLea59ZHnph+JtMXirj5O0= Subject key identifier: 23:D2:2E:7E:6A:33:08:8D:77:C7:D6:E6:DE:57:36:FC:E2:F5:59:28 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 142C Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/I9IufmozCI13x9bm3lc2_OL1WSg.roa Signing time: Fri 22 Aug 2025 08:57:37 +0000 ROA not before: Fri 22 Aug 2025 08:57:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5164 (0x142c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=23D22E7E6A33088D77C7D6E6DE5736FCE2F55928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:30:e5:59:89:3f:f9:db:41:8d:09:72:ee:0f: 61:75:ca:b4:52:32:f8:cc:14:94:8a:86:a3:c2:28: e1:55:d0:74:37:77:25:24:bb:41:26:5d:e4:5b:c7: 44:eb:30:48:a5:cf:b6:fe:df:ca:31:24:9f:f4:bf: 96:84:18:49:46:6c:86:01:a1:00:ee:dc:ec:40:55: d1:c3:ed:20:bb:0f:61:60:34:bd:a7:49:fe:3e:4c: de:07:95:3b:84:0d:41:77:82:d6:26:c3:22:6b:c8: 9c:92:62:0a:8e:65:fa:32:2d:d1:18:78:33:e9:5e: 25:ce:f4:84:fc:96:aa:af:d5:41:7b:00:85:58:40: 7d:89:7a:8e:e0:ac:ca:a8:29:53:2d:75:2d:d6:a8: df:0a:0c:db:c9:12:96:2e:a2:17:cd:a5:d2:1f:a1: b8:ee:97:4a:be:b0:d1:1f:d7:90:64:61:95:2e:07: 5b:5b:79:0a:97:10:4c:c1:3e:6c:83:0c:5c:1c:43: 98:93:fa:cd:76:fd:ef:a4:6d:3e:66:04:c3:40:ff: ca:c0:a4:71:fe:e8:2e:a1:b4:ff:51:a9:87:3c:4f: dd:31:ea:20:bb:fd:67:b9:e0:1d:ac:0f:cd:74:9f: 92:47:fd:90:5f:aa:8a:92:d5:e7:e9:5f:b5:10:e7: 47:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D2:2E:7E:6A:33:08:8D:77:C7:D6:E6:DE:57:36:FC:E2:F5:59:28 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/I9IufmozCI13x9bm3lc2_OL1WSg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.236.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:03:2b:46:bb:f6:5a:d9:2c:42:f8:0c:d2:33:ec:c5:28:7b: 91:ae:f4:bb:b6:3e:5b:b2:fe:a0:a4:fc:e1:6d:ff:72:1c:aa: 76:4a:c5:74:64:74:d6:0a:ce:3a:35:a2:b5:36:64:71:2e:f7: 3e:0c:0c:c0:98:aa:ec:71:13:a6:ac:6b:9d:6e:0d:64:46:8e: 0b:f2:a8:fe:8b:3f:1d:ba:50:00:b2:1e:34:53:2d:71:ff:90: 03:f3:b2:42:f9:79:3c:a9:47:a2:98:1c:88:91:4c:70:62:04: ac:ea:42:bf:ff:f7:85:a1:f1:0a:46:1b:fd:5a:36:df:a0:94: 9e:d5:b0:ce:ad:84:a5:eb:67:1f:df:9a:a6:1b:5b:1e:99:88: 55:48:c7:7c:64:54:75:56:5e:78:13:6e:3b:81:4c:d9:8e:dc: 2e:6f:2c:ae:23:80:7b:c1:df:1e:d3:47:5f:60:b1:0f:4f:99: aa:8e:dc:32:b4:47:b3:23:5d:6a:f6:3c:d0:f7:83:8d:41:28: e6:3a:28:a2:3d:59:ad:d6:c9:f9:f8:f3:20:e9:dd:1a:54:7c: a0:a4:a2:2a:d6:05:9f:d8:ec:ab:74:5d:52:d2:7b:83:2c:da: 8b:f0:9f:80:97:e8:05:64:6b:36:56:f4:12:57:0e:2e:90:e1: e8:ce:ff:a0 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFCwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIzRDIyRTdFNkEzMzA4 OEQ3N0M3RDZFNkRFNTczNkZDRTJGNTU5MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNMOVZiT/520GNCXLuD2F1yrRSMvjMFJSKhqPCKOFV0HQ3dyUk u0EmXeRbx0TrMEilz7b+38oxJJ/0v5aEGElGbIYBoQDu3OxAVdHD7SC7D2FgNL2n Sf4+TN4HlTuEDUF3gtYmwyJryJySYgqOZfoyLdEYeDPpXiXO9IT8lqqv1UF7AIVY QH2Jeo7grMqoKVMtdS3WqN8KDNvJEpYuohfNpdIfobjul0q+sNEf15BkYZUuB1tb eQqXEEzBPmyDDFwcQ5iT+s12/e+kbT5mBMNA/8rApHH+6C6htP9RqYc8T90x6iC7 /We54B2sD810n5JH/ZBfqoqS1efpX7UQ50cnAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUI9IufmozCI13x9bm3lc2/OL1WSgwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9JOUl1Zm1vekNJMTN4 OWJtM2xjMl9PTDFXU2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnTsMA0GCSqGSIb3DQEBCwUAA4IBAQCbAytGu/Za2SxC+AzSM+zFKHuRrvS7 tj5bsv6gpPzhbf9yHKp2SsV0ZHTWCs46NaK1NmRxLvc+DAzAmKrscROmrGudbg1k Ro4L8qj+iz8dulAAsh40Uy1x/5AD87JC+Xk8qUeimByIkUxwYgSs6kK///eFofEK Rhv9WjbfoJSe1bDOrYSl62cf35qmG1semYhVSMd8ZFR1Vl54E247gUzZjtwubyyu I4B7wd8e00dfYLEPT5mqjtwytEezI11q9jzQ94ONQSjmOiiiPVmt1sn5+PMg6d0a VHygpKIq1gWf2OyrdF1S0nuDLNqL8J+Al+gFZGs2VvQSVw4ukOHozv+g -----END CERTIFICATE-----Generated at Sat Sep 6 13:50:37 2025 by rpki-client