$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IANW1Mkxvmr5Y8DMqhddivBdC00.roa File: IANW1Mkxvmr5Y8DMqhddivBdC00.roa (raw, json) Hash identifier: fS4C7Qytdmv3M4w0SXuE+TV/oRYvJOxMg285TPCodm0= Subject key identifier: 20:03:56:D4:C9:31:BE:6A:F9:63:C0:CC:AA:17:5D:8A:F0:5D:0B:4D Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1413 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IANW1Mkxvmr5Y8DMqhddivBdC00.roa Signing time: Fri 22 Aug 2025 08:57:32 +0000 ROA not before: Fri 22 Aug 2025 08:57:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.117.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5139 (0x1413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=200356D4C931BE6AF963C0CCAA175D8AF05D0B4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:42:5d:73:9c:7c:71:4b:b5:51:2e:51:47:f7: c5:9e:7b:b2:18:a7:04:d5:77:4a:36:33:70:20:50: f7:61:7f:b6:bf:04:f9:ff:44:6e:02:36:7e:b7:05: f8:d7:e7:bf:b9:83:5e:9f:d7:e8:4a:ac:1a:6b:32: 0a:c9:ee:44:af:a7:40:3d:88:25:b9:bf:a7:71:02: 35:63:65:23:2b:dd:62:2d:02:ab:a7:c4:9b:0b:46: 3c:44:7e:f6:0f:f1:ac:7f:db:55:0c:bb:56:53:af: 8a:8a:49:93:21:2f:f0:92:43:95:88:4c:6e:69:e0: ef:01:8a:f9:43:c2:a6:67:d3:92:c7:65:f8:d2:31: dd:9c:cd:75:e9:dc:38:a2:b6:85:6c:53:16:e3:63: a0:8c:54:94:04:ec:84:d2:71:27:49:6a:82:2f:7b: 45:b1:b9:8d:d7:ae:f1:89:d8:eb:9f:03:3f:14:0b: 19:bc:a2:72:96:c0:1c:b3:c4:ac:0e:99:57:2c:8b: b7:7e:af:1a:5c:0b:a8:a2:88:7a:42:33:f1:cd:a8: 8b:8a:76:38:30:8e:28:20:44:27:6b:34:b6:fe:b3: c9:2b:11:54:ab:b4:4e:e0:b0:4f:c5:db:cd:6d:87: d9:ff:17:24:eb:06:52:40:09:5a:3c:9a:52:d4:77: 9d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:03:56:D4:C9:31:BE:6A:F9:63:C0:CC:AA:17:5D:8A:F0:5D:0B:4D X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IANW1Mkxvmr5Y8DMqhddivBdC00.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.240.0/20 Signature Algorithm: sha256WithRSAEncryption 19:8e:8d:69:2c:6e:0c:c0:cd:e8:07:6b:15:cb:d3:ac:7b:fb: 12:6c:c0:87:be:ed:8c:dc:13:31:04:1a:24:15:90:3b:c9:16: b4:a0:5f:d2:86:d9:c1:81:26:3f:f7:fc:a7:37:05:8f:06:0a: d9:e5:12:40:11:15:a3:0e:5a:de:27:b0:3b:7f:78:b8:08:73: f7:f5:a5:3f:a8:02:e1:6b:52:fc:a5:46:93:58:ad:db:56:8c: 46:aa:17:ef:4f:da:33:85:20:82:9b:a3:e6:6a:58:b0:41:e4: 6c:5c:4a:70:d3:7b:d7:7d:94:59:ed:27:06:a9:8b:2e:35:ed: 5c:d0:b7:ef:f2:c3:7b:a4:5a:17:b1:9a:e7:f6:bd:0b:9c:68: 16:e8:1c:0a:5c:62:d8:99:e9:06:d1:46:2e:1d:a8:fb:c7:d1: 17:5c:18:3a:67:e0:33:6e:8e:c7:12:d2:d5:91:5e:94:72:c8: c1:44:38:1d:bc:59:70:cf:ed:cb:87:a9:38:f7:bf:16:b3:66: a6:df:f6:29:6d:0a:af:1c:ad:d6:be:ac:38:1b:e5:d7:f2:ab: 92:2f:1e:32:9e:1b:fb:89:06:cf:a2:36:29:8d:ac:c0:4a:67: c6:e9:49:07:dd:31:69:d1:44:58:2b:b8:ef:94:bf:52:9e:92: cc:1a:fe:71 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIwMDM1NkQ0QzkzMUJF NkFGOTYzQzBDQ0FBMTc1RDhBRjA1RDBCNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLQl1znHxxS7VRLlFH98Wee7IYpwTVd0o2M3AgUPdhf7a/BPn/ RG4CNn63BfjX57+5g16f1+hKrBprMgrJ7kSvp0A9iCW5v6dxAjVjZSMr3WItAqun xJsLRjxEfvYP8ax/21UMu1ZTr4qKSZMhL/CSQ5WITG5p4O8BivlDwqZn05LHZfjS Md2czXXp3DiitoVsUxbjY6CMVJQE7ITScSdJaoIve0WxuY3XrvGJ2OufAz8UCxm8 onKWwByzxKwOmVcsi7d+rxpcC6iiiHpCM/HNqIuKdjgwjiggRCdrNLb+s8krEVSr tE7gsE/F281th9n/FyTrBlJACVo8mlLUd50LAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUIANW1Mkxvmr5Y8DMqhddivBdC00wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9JQU5XMU1reHZtcjVZ OERNcWhkZGl2QmRDMDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnXwMA0GCSqGSIb3DQEBCwUAA4IBAQAZjo1pLG4MwM3oB2sVy9Ose/sSbMCH vu2M3BMxBBokFZA7yRa0oF/ShtnBgSY/9/ynNwWPBgrZ5RJAERWjDlreJ7A7f3i4 CHP39aU/qALha1L8pUaTWK3bVoxGqhfvT9ozhSCCm6PmaliwQeRsXEpw03vXfZRZ 7ScGqYsuNe1c0Lfv8sN7pFoXsZrn9r0LnGgW6BwKXGLYmekG0UYuHaj7x9EXXBg6 Z+Azbo7HEtLVkV6UcsjBRDgdvFlwz+3Lh6k4978Ws2am3/YpbQqvHK3Wvqw4G+XX 8quSLx4ynhv7iQbPojYpjazASmfG6UkH3TFp0URYK7jvlL9SnpLMGv5x -----END CERTIFICATE-----Generated at Sat Sep 6 13:51:32 2025 by rpki-client