$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OAe4mPwO0c9vshJOtPu2Eu6aA4I.roa File: OAe4mPwO0c9vshJOtPu2Eu6aA4I.roa (raw, json) Hash identifier: P8W8IvvG5j+aaoqdd8h0yTeTc5kbzFRiTaBZxAGUux0= Subject key identifier: 38:07:B8:98:FC:0E:D1:CF:6F:B2:12:4E:B4:FB:B6:12:EE:9A:03:82 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13F3 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OAe4mPwO0c9vshJOtPu2Eu6aA4I.roa Signing time: Fri 22 Aug 2025 08:57:25 +0000 ROA not before: Fri 22 Aug 2025 08:57:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17408 IP address blocks: 150.116.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5107 (0x13f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3807B898FC0ED1CF6FB2124EB4FBB612EE9A0382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:87:ef:50:6a:e5:eb:bd:76:3e:4b:6f:1c:aa: 15:f5:ed:bd:25:64:56:78:b6:5e:2c:ce:12:d3:53: 9e:aa:c8:3f:2c:d0:9e:37:0a:e7:3c:65:de:e1:f3: 82:d6:59:83:ce:1f:b7:d0:f9:78:2e:36:a2:16:7e: 9e:f1:a0:6c:e2:c9:b4:11:26:78:4e:68:ba:fa:13: 46:e6:f2:82:0d:19:b2:83:54:78:52:d3:44:3f:b6: a4:e8:de:6c:90:b1:50:50:0b:5a:77:93:5e:aa:ba: e2:2c:09:43:cb:b6:3d:9b:26:eb:e1:c4:84:73:3e: 74:a9:30:dc:9f:b5:96:62:81:db:7a:c4:24:aa:0b: 69:bb:3c:ae:7c:df:fd:bc:76:e4:44:b8:72:5e:c6: fe:4c:d3:c2:d0:58:87:15:ae:d4:0a:bc:0b:65:0f: dc:ea:ed:9c:13:33:61:1a:d1:73:79:b7:b9:56:71: d3:be:d1:a4:fb:ad:aa:a7:d5:42:64:0d:66:37:d7: 7e:06:59:d4:a8:ea:91:ed:57:5b:19:5c:0e:7e:f5: 39:46:df:9b:4a:17:d8:e7:d0:3c:b1:53:64:df:6b: 9a:97:b7:48:4f:0f:b7:30:59:4d:c1:02:d6:00:c4: f4:92:6d:b1:a4:60:13:c3:3e:03:9d:cd:52:62:21: 27:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:07:B8:98:FC:0E:D1:CF:6F:B2:12:4E:B4:FB:B6:12:EE:9A:03:82 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/OAe4mPwO0c9vshJOtPu2Eu6aA4I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.112.0/22 Signature Algorithm: sha256WithRSAEncryption 59:a5:d8:e5:42:f1:0d:46:8a:4b:d7:f7:07:e6:06:cd:02:b3: b2:6a:a6:12:63:47:ef:92:a9:64:31:ae:9c:d3:c1:7c:ba:01: 11:e7:4a:11:b8:46:2f:b4:33:c3:40:74:40:63:d9:f4:90:18: 31:ba:71:c2:7b:81:26:ae:c3:57:26:49:c5:04:13:d4:be:3d: f9:68:73:cc:81:c7:cf:48:da:36:65:0c:a4:b7:41:af:a0:09: ae:aa:ee:93:a0:9c:81:3d:cf:81:e5:9a:da:e8:4d:3d:40:86: b2:3d:b6:7d:cb:07:18:12:51:6a:80:79:f8:1e:fa:0c:bc:36: 44:19:e7:54:c7:6d:e4:bd:b9:52:fc:ec:5e:d5:e8:df:90:bb: 84:a7:37:78:b2:bf:eb:eb:b3:ce:c0:94:7e:1d:78:22:2b:93: ee:16:35:09:b8:73:96:04:10:f6:79:5d:a3:7d:5c:70:d3:d0: 22:d5:56:9f:44:a2:91:4b:e9:07:f3:4d:f1:6e:d7:3d:f0:cb: b3:0b:c3:60:82:a2:76:c6:64:12:37:7e:7e:d9:79:44:ff:23: a3:77:86:c0:2e:b5:33:ea:a6:c3:76:2c:0d:81:44:e9:a2:14: a1:d8:1c:78:0e:98:72:18:b1:05:7c:71:fc:18:0d:66:74:1d: 54:49:e0:25 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE/MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM4MDdCODk4RkMwRUQx Q0Y2RkIyMTI0RUI0RkJCNjEyRUU5QTAzODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgh+9QauXrvXY+S28cqhX17b0lZFZ4tl4szhLTU56qyD8s0J43 Cuc8Zd7h84LWWYPOH7fQ+XguNqIWfp7xoGziybQRJnhOaLr6E0bm8oINGbKDVHhS 00Q/tqTo3myQsVBQC1p3k16quuIsCUPLtj2bJuvhxIRzPnSpMNyftZZigdt6xCSq C2m7PK583/28duREuHJexv5M08LQWIcVrtQKvAtlD9zq7ZwTM2Ea0XN5t7lWcdO+ 0aT7raqn1UJkDWY3134GWdSo6pHtV1sZXA5+9TlG35tKF9jn0DyxU2Tfa5qXt0hP D7cwWU3BAtYAxPSSbbGkYBPDPgOdzVJiISeBAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUOAe4mPwO0c9vshJOtPu2Eu6aA4IwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9PQWU0bVB3TzBjOXZz aEpPdFB1MkV1NmFBNEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnRwMA0GCSqGSIb3DQEBCwUAA4IBAQBZpdjlQvENRopL1/cH5gbNArOyaqYS Y0fvkqlkMa6c08F8ugER50oRuEYvtDPDQHRAY9n0kBgxunHCe4EmrsNXJknFBBPU vj35aHPMgcfPSNo2ZQykt0GvoAmuqu6ToJyBPc+B5Zra6E09QIayPbZ9ywcYElFq gHn4HvoMvDZEGedUx23kvblS/Oxe1ejfkLuEpzd4sr/r67POwJR+HXgiK5PuFjUJ uHOWBBD2eV2jfVxw09Ai1VafRKKRS+kH803xbtc98MuzC8NggqJ2xmQSN35+2XlE /yOjd4bALrUz6qbDdiwNgUTpohSh2Bx4DphyGLEFfHH8GA1mdB1USeAl -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:39 2025 by rpki-client