$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LB-Ze3MzL0KCHG2ubg3IFkJ10mM.roa File: LB-Ze3MzL0KCHG2ubg3IFkJ10mM.roa (raw, json) Hash identifier: tlHB0wObrmLNPCq0Wk9vVON/xwnIPoQNxh8dBtcAq0A= Subject key identifier: 2C:1F:99:7B:73:33:2F:42:82:1C:6D:AE:6E:0D:C8:16:42:75:D2:63 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13F9 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LB-Ze3MzL0KCHG2ubg3IFkJ10mM.roa Signing time: Fri 22 Aug 2025 08:57:27 +0000 ROA not before: Fri 22 Aug 2025 08:57:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 137263 IP address blocks: 150.116.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 02:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5113 (0x13f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2C1F997B73332F42821C6DAE6E0DC8164275D263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:86:78:62:f7:9d:b0:39:6b:67:4e:b7:7c:a3: 76:a9:32:c6:93:2f:fa:33:e3:7b:d4:8d:66:77:6f: e7:01:61:ca:b1:7b:38:d7:ac:85:98:9c:9b:01:9c: a8:9f:33:e1:6d:c6:a9:b1:1f:f6:87:bf:b1:9d:a1: 03:4f:d0:f0:29:a1:cd:6c:af:5b:51:84:e4:97:35: 71:be:9d:21:48:21:51:8d:6e:07:a8:88:75:1c:ee: 8b:37:be:16:2c:28:3d:a8:9d:70:9c:e1:a0:5b:da: 04:f4:27:8b:2b:32:0c:1a:3e:11:fa:44:5d:d5:d9: 75:04:86:18:64:37:21:de:7c:1e:a5:d6:6c:26:26: 32:8c:c9:0f:a8:c5:a8:a5:fc:6d:94:a5:31:0b:bb: de:31:b5:73:1d:52:ca:4d:b6:be:f2:68:ec:dd:e8: 66:2e:a9:85:f6:66:f9:12:bd:d2:6e:91:76:c9:3e: 78:d5:21:02:22:f5:9b:4c:8a:da:10:a0:c0:80:bd: 90:33:9f:97:ca:58:de:89:8c:17:de:12:96:03:cc: b9:08:29:b4:fc:25:23:79:0a:b1:a0:87:03:bf:44: e2:90:bb:2f:b8:ae:1d:1c:c0:bf:a4:19:74:01:3a: 03:c8:6d:ff:ce:81:e2:44:7b:0f:51:61:18:30:2b: e0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1F:99:7B:73:33:2F:42:82:1C:6D:AE:6E:0D:C8:16:42:75:D2:63 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LB-Ze3MzL0KCHG2ubg3IFkJ10mM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.81.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:44:89:17:79:0b:11:96:f2:89:f4:56:30:42:d5:ab:fa:1c: 6e:5b:fe:ea:9a:c5:3f:6d:af:59:96:da:c8:a3:ef:4b:c5:fa: 4c:dc:32:b0:43:f1:2c:d0:b9:d7:b7:0d:06:bb:df:b6:4e:a6: e4:56:ce:ed:79:a9:3f:f5:f0:11:7f:9e:f7:02:30:9a:d6:5b: 47:5e:4f:7c:08:2b:a9:ca:4f:e8:89:ec:87:62:fa:fe:f2:f3: bd:de:c9:02:d6:77:d4:47:0d:4e:c7:cf:cc:5e:2e:01:69:81: 37:0a:02:8d:aa:8f:ed:14:65:00:b1:e0:f0:22:3d:5b:da:73: a2:cb:eb:d8:4e:55:ba:49:36:4e:07:31:95:52:ff:e1:54:58: c8:88:44:1a:52:94:5c:02:35:11:e4:35:c8:99:96:ae:2f:e0: 8d:73:62:e3:b6:09:52:12:a5:7f:a6:82:3b:23:05:15:1c:d6: b2:36:4b:82:88:0c:96:51:44:03:b1:89:f3:3f:2c:56:39:fe: 1b:1a:b4:dc:91:66:19:85:0e:f9:9f:0f:91:c2:37:c7:b4:c2: b5:88:27:d7:a4:31:f0:3b:b8:9b:b7:a6:4f:88:eb:68:dd:bf: 4f:1e:38:23:f0:0d:0b:9f:c3:62:5c:7b:ba:2e:6c:a3:d9:2e: 20:68:8e:e6 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJDMUY5OTdCNzMzMzJG NDI4MjFDNkRBRTZFMERDODE2NDI3NUQyNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCphnhi952wOWtnTrd8o3apMsaTL/oz43vUjWZ3b+cBYcqxezjX rIWYnJsBnKifM+FtxqmxH/aHv7GdoQNP0PApoc1sr1tRhOSXNXG+nSFIIVGNbgeo iHUc7os3vhYsKD2onXCc4aBb2gT0J4srMgwaPhH6RF3V2XUEhhhkNyHefB6l1mwm JjKMyQ+oxail/G2UpTELu94xtXMdUspNtr7yaOzd6GYuqYX2ZvkSvdJukXbJPnjV IQIi9ZtMitoQoMCAvZAzn5fKWN6JjBfeEpYDzLkIKbT8JSN5CrGghwO/ROKQuy+4 rh0cwL+kGXQBOgPIbf/OgeJEew9RYRgwK+BbAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQULB+Ze3MzL0KCHG2ubg3IFkJ10mMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9MQi1aZTNNekwwS0NI RzJ1YmczSUZrSjEwbU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnRRMA0GCSqGSIb3DQEBCwUAA4IBAQAKRIkXeQsRlvKJ9FYwQtWr+hxuW/7q msU/ba9ZltrIo+9LxfpM3DKwQ/Es0LnXtw0Gu9+2TqbkVs7teak/9fARf573AjCa 1ltHXk98CCupyk/oieyHYvr+8vO93skC1nfURw1Ox8/MXi4BaYE3CgKNqo/tFGUA seDwIj1b2nOiy+vYTlW6STZOBzGVUv/hVFjIiEQaUpRcAjUR5DXImZauL+CNc2Lj tglSEqV/poI7IwUVHNayNkuCiAyWUUQDsYnzPyxWOf4bGrTckWYZhQ75nw+RwjfH tMK1iCfXpDHwO7ibt6ZPiOto3b9PHjgj8A0Ln8NiXHu6Lmyj2S4gaI7m -----END CERTIFICATE-----Generated at Thu Sep 4 00:12:52 2025 by rpki-client