$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RbSWSkgsKhxkeRin1AnwW1YUm4o.roa File: RbSWSkgsKhxkeRin1AnwW1YUm4o.roa (raw, json) Hash identifier: zCQWzV8uomXW4Hgt++DOIOxOynuP0OFnzbSbwcsFzgw= Subject key identifier: 45:B4:96:4A:48:2C:2A:1C:64:79:18:A7:D4:09:F0:5B:56:14:9B:8A Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1414 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RbSWSkgsKhxkeRin1AnwW1YUm4o.roa Signing time: Fri 22 Aug 2025 08:57:32 +0000 ROA not before: Fri 22 Aug 2025 08:57:32 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5140 (0x1414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:32 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=45B4964A482C2A1C647918A7D409F05B56149B8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8b:1a:e8:1f:17:97:23:15:e6:c9:83:db:56: 50:e2:28:ad:93:f0:b0:f2:88:02:4d:ca:a1:fa:9b: 8d:57:d1:20:26:3e:53:77:3e:62:4a:e0:d8:2d:2e: bd:dc:b9:48:ee:83:26:0e:73:cd:b6:37:1e:63:2e: b5:d0:13:09:ec:bc:d7:c2:fe:03:ac:8d:59:3b:d5: f5:0e:6b:cd:7c:88:e4:b9:6e:e9:28:26:00:d2:90: 1a:28:1f:4d:61:bc:17:fe:39:d9:16:f8:47:8d:d2: 66:8d:5e:e6:ee:3e:83:93:84:65:f7:5f:62:c7:e4: 76:86:47:98:59:d9:70:9f:b9:c5:b4:fd:66:34:da: 86:53:b8:8a:16:f6:4f:dc:5f:4c:0b:b4:76:c5:f0: c8:58:d1:ed:fb:14:2b:b0:1f:86:34:e1:37:cc:8a: 48:a5:17:2e:1c:f3:0e:8b:bb:39:4c:02:b8:fc:e6: db:6e:39:42:c4:93:95:31:4e:e9:8b:7b:a1:5b:c7: a8:8d:70:95:e2:04:9f:d9:fe:aa:1d:26:78:e4:1c: 5b:eb:17:f1:bd:45:07:64:92:82:df:e5:59:88:5e: ac:b2:86:6b:12:b6:9b:39:31:85:eb:14:8b:32:cf: ef:d1:11:12:5e:e2:e4:d8:68:25:c3:a4:2d:59:80: 08:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B4:96:4A:48:2C:2A:1C:64:79:18:A7:D4:09:F0:5B:56:14:9B:8A X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RbSWSkgsKhxkeRin1AnwW1YUm4o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.232.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:3f:f1:5f:43:99:74:62:19:36:10:be:ee:c6:97:ce:73:13: 05:ed:8f:e5:ac:e9:11:bd:f0:4a:f8:64:11:6f:a4:4d:9b:db: 06:ca:f3:a6:a6:42:60:a7:e3:07:4f:d6:f8:b6:9e:8f:3a:50: c7:44:14:e9:30:2f:f1:0d:d5:59:99:47:c2:de:8a:f5:d6:3e: fc:d7:87:ba:68:a4:7d:de:db:1b:d0:ba:19:c2:aa:00:0a:cd: 6d:5d:4c:da:fc:e1:97:10:9d:a6:9c:62:1f:04:fa:37:33:0a: ad:f7:0b:45:48:fb:c4:67:87:e1:5b:f5:ca:a3:6b:f6:e2:eb: a0:ee:7f:cf:b0:65:5f:0d:f2:76:5d:d2:2e:86:03:45:e7:4d: 82:b6:30:37:9f:0e:b1:83:c2:72:77:93:43:a9:36:91:01:86: 31:f9:70:3a:1d:29:2a:31:39:4d:0f:aa:db:eb:b8:96:58:15: 64:37:a8:c0:4d:5c:96:63:de:44:ea:37:73:dd:93:b8:80:1f: 11:44:cb:47:5a:6b:c7:12:fe:58:ac:e0:b1:c9:e8:8a:81:c9: 39:c7:0f:41:b8:f4:74:47:f6:fe:72:38:72:ca:c9:c5:1f:5a: b8:47:fb:1c:a0:51:e1:95:f5:f7:93:b5:72:5c:8f:46:f5:ef: 0b:dc:e0:37 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ1QjQ5NjRBNDgyQzJB MUM2NDc5MThBN0Q0MDlGMDVCNTYxNDlCOEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAixroHxeXIxXmyYPbVlDiKK2T8LDyiAJNyqH6m41X0SAmPlN3 PmJK4NgtLr3cuUjugyYOc822Nx5jLrXQEwnsvNfC/gOsjVk71fUOa818iOS5buko JgDSkBooH01hvBf+OdkW+EeN0maNXubuPoOThGX3X2LH5HaGR5hZ2XCfucW0/WY0 2oZTuIoW9k/cX0wLtHbF8MhY0e37FCuwH4Y04TfMikilFy4c8w6LuzlMArj85ttu OULEk5UxTumLe6Fbx6iNcJXiBJ/Z/qodJnjkHFvrF/G9RQdkkoLf5VmIXqyyhmsS tps5MYXrFIsyz+/RERJe4uTYaCXDpC1ZgAgDAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQURbSWSkgsKhxkeRin1AnwW1YUm4owHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9SYlNXU2tnc0toeGtl UmluMUFud1cxWVVtNG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnToMA0GCSqGSIb3DQEBCwUAA4IBAQB8P/FfQ5l0Yhk2EL7uxpfOcxMF7Y/l rOkRvfBK+GQRb6RNm9sGyvOmpkJgp+MHT9b4tp6POlDHRBTpMC/xDdVZmUfC3or1 1j7814e6aKR93tsb0LoZwqoACs1tXUza/OGXEJ2mnGIfBPo3Mwqt9wtFSPvEZ4fh W/XKo2v24uug7n/PsGVfDfJ2XdIuhgNF502CtjA3nw6xg8Jyd5NDqTaRAYYx+XA6 HSkqMTlND6rb67iWWBVkN6jATVyWY95E6jdz3ZO4gB8RRMtHWmvHEv5YrOCxyeiK gck5xw9BuPR0R/b+cjhyysnFH1q4R/scoFHhlfX3k7VyXI9G9e8L3OA3 -----END CERTIFICATE-----Generated at Sat Sep 6 13:55:12 2025 by rpki-client