$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SXvn5VzVfQuEIKQXviV704-W1m4.roa File: SXvn5VzVfQuEIKQXviV704-W1m4.roa (raw, json) Hash identifier: TxsqthAxiqZHb41JOkkIj05QB8nCxSULaDzTM7yAzGA= Subject key identifier: 49:7B:E7:E5:5C:D5:7D:0B:84:20:A4:17:BE:25:7B:D3:8F:96:D6:6E Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 142B Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SXvn5VzVfQuEIKQXviV704-W1m4.roa Signing time: Fri 22 Aug 2025 08:57:37 +0000 ROA not before: Fri 22 Aug 2025 08:57:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5163 (0x142b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=497BE7E55CD57D0B8420A417BE257BD38F96D66E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:eb:c6:e9:bb:85:f6:af:8f:39:d1:9f:ba:58: 12:0f:88:25:48:42:7e:1b:32:cf:5a:82:d9:84:15: 30:de:5a:cf:0a:cc:11:72:8c:7f:37:0f:53:51:7b: 41:61:24:c0:97:b7:09:8d:46:df:fa:8a:bb:31:78: 83:35:03:84:91:da:2f:a6:3e:0b:17:04:a9:19:85: 78:b2:2d:36:91:d6:c0:c1:9d:69:b0:3e:1b:41:94: a1:8e:ee:4a:fa:fe:2b:44:c5:0e:5b:e5:3f:83:c2: 7f:98:f5:ea:ef:1f:b9:4e:c5:a2:c0:53:9e:38:b1: 69:7e:08:f7:0a:23:27:e3:ec:be:22:73:12:df:9e: 36:2b:aa:54:9a:eb:fe:3a:55:13:73:42:b2:f5:21: af:64:9f:40:3a:fe:cc:d5:37:eb:8a:b6:b5:e5:7f: b0:23:86:8c:e0:a1:9c:7a:be:e4:32:9b:5c:59:29: f1:08:a4:a2:f9:b9:70:4e:c3:54:a1:72:91:33:18: 70:ac:e2:bc:c3:1b:ff:30:f2:ef:bc:2a:21:d4:29: ae:1d:89:2e:6a:82:a5:d3:ea:fb:51:3a:67:8f:41: 14:e5:cc:a1:af:18:af:ab:85:73:53:1b:c4:df:1c: a4:63:73:80:0e:3b:9b:47:2f:62:6a:7b:50:89:2a: 6b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:7B:E7:E5:5C:D5:7D:0B:84:20:A4:17:BE:25:7B:D3:8F:96:D6:6E X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/SXvn5VzVfQuEIKQXviV704-W1m4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.48.0/22 Signature Algorithm: sha256WithRSAEncryption ab:29:e5:05:33:62:7b:65:5b:a5:30:e7:a2:72:f6:3f:05:a9: c4:69:5a:b7:9e:59:26:c7:e0:42:e4:8d:d4:34:fe:b2:9c:16: 1a:aa:31:da:9d:21:84:64:29:53:d5:78:45:88:df:9f:8b:c8: 18:fa:ea:12:6c:c4:ee:3c:a6:17:de:da:57:e9:d5:b5:1d:c3: b9:7f:94:53:95:60:5c:0a:8f:63:d0:88:9f:77:dd:e3:04:22: 73:c9:e7:0d:4a:e8:15:57:d6:4d:d6:d0:55:54:29:4e:6a:29: 09:ff:24:01:c6:d0:47:6b:fc:82:05:52:3f:4f:b4:f3:93:c6: 34:a6:51:59:23:d0:7d:a4:2a:e1:a5:55:ff:96:46:a4:cc:96: 00:79:49:29:ff:56:1b:8d:cc:26:d4:b1:6d:4c:24:71:a9:5a: cd:e9:c5:af:9e:18:a6:a6:5c:2e:67:b3:02:64:8b:2b:19:d4: 4d:a9:89:64:88:b7:79:49:e7:6c:fd:8f:a2:fc:76:5c:00:55: c2:d4:48:61:f3:43:34:91:1f:a5:86:cc:de:34:98:d7:28:08: d3:1f:6d:d0:3c:46:72:6f:f9:0c:e6:56:ff:34:71:60:4f:c7: b5:98:df:26:ab:76:3b:9f:87:21:24:c6:c0:b6:a9:a6:1a:13: 8b:f9:a7:bc -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFCswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ5N0JFN0U1NUNENTdE MEI4NDIwQTQxN0JFMjU3QkQzOEY5NkQ2NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS68bpu4X2r4850Z+6WBIPiCVIQn4bMs9agtmEFTDeWs8KzBFy jH83D1NRe0FhJMCXtwmNRt/6irsxeIM1A4SR2i+mPgsXBKkZhXiyLTaR1sDBnWmw PhtBlKGO7kr6/itExQ5b5T+Dwn+Y9ervH7lOxaLAU544sWl+CPcKIyfj7L4icxLf njYrqlSa6/46VRNzQrL1Ia9kn0A6/szVN+uKtrXlf7AjhozgoZx6vuQym1xZKfEI pKL5uXBOw1ShcpEzGHCs4rzDG/8w8u+8KiHUKa4diS5qgqXT6vtROmePQRTlzKGv GK+rhXNTG8TfHKRjc4AOO5tHL2Jqe1CJKmsZAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUSXvn5VzVfQuEIKQXviV704+W1m4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9TWHZuNVZ6VmZRdUVJ S1FYdmlWNzA0LVcxbTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnQwMA0GCSqGSIb3DQEBCwUAA4IBAQCrKeUFM2J7ZVulMOeicvY/BanEaVq3 nlkmx+BC5I3UNP6ynBYaqjHanSGEZClT1XhFiN+fi8gY+uoSbMTuPKYX3tpX6dW1 HcO5f5RTlWBcCo9j0Iifd93jBCJzyecNSugVV9ZN1tBVVClOaikJ/yQBxtBHa/yC BVI/T7Tzk8Y0plFZI9B9pCrhpVX/lkakzJYAeUkp/1Ybjcwm1LFtTCRxqVrN6cWv nhimplwuZ7MCZIsrGdRNqYlkiLd5Seds/Y+i/HZcAFXC1Ehh80M0kR+lhszeNJjX KAjTH23QPEZyb/kM5lb/NHFgT8e1mN8mq3Y7n4chJMbAtqmmGhOL+ae8 -----END CERTIFICATE-----Generated at Sat Sep 6 13:51:31 2025 by rpki-client