$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UPBltKpjemi6CK9LeKgGMZOM-00.roa File: UPBltKpjemi6CK9LeKgGMZOM-00.roa (raw, json) Hash identifier: 27UR7Wh3M4Jh/VcKQA7Y3w2CNvWVDcSsl3ZyA+lw4xY= Subject key identifier: 50:F0:65:B4:AA:63:7A:68:BA:08:AF:4B:78:A8:06:31:93:8C:FB:4D Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13CC Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UPBltKpjemi6CK9LeKgGMZOM-00.roa Signing time: Fri 22 Aug 2025 08:57:17 +0000 ROA not before: Fri 22 Aug 2025 08:57:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5068 (0x13cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=50F065B4AA637A68BA08AF4B78A80631938CFB4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:51:cc:69:0a:e8:71:8a:9c:ac:64:74:49:71: f8:78:90:23:40:1d:5d:33:0f:e5:42:0b:5c:33:fe: 47:ac:12:9a:7c:4e:b3:4f:2b:c0:52:81:76:bb:90: 34:b6:ec:8b:47:4a:d0:d5:66:48:45:56:46:ff:bc: bf:79:e1:e8:52:70:98:11:9b:72:ae:b6:39:11:83: 68:30:f4:53:c4:95:44:44:dd:25:74:d5:09:05:bd: 9c:1c:89:83:66:85:43:67:c1:8b:26:36:ff:e4:35: c9:f1:87:1e:8f:ed:b1:38:ea:40:27:9e:76:ef:e3: 92:4f:1b:3f:a4:e4:fc:ec:e2:09:73:1a:29:cc:49: ed:0f:af:70:e6:46:e8:cd:50:98:e5:40:26:de:66: 26:02:d1:48:9b:d1:d8:02:07:81:9c:be:1d:b9:32: 1e:ec:be:91:63:b0:34:1a:91:12:2e:01:c3:e1:e6: 00:a0:9c:19:1b:a2:17:f2:ab:db:ec:61:dc:61:9c: 8c:41:bc:e9:51:db:47:35:a3:a6:93:1a:2b:4a:25: 59:32:9b:39:33:dc:f4:23:c8:2a:02:5a:b6:63:54: 55:03:b7:3a:7a:83:31:f8:d5:28:74:b2:70:ff:fa: b0:56:fe:f2:28:97:bd:cd:b7:b1:aa:39:53:83:a8: 63:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:F0:65:B4:AA:63:7A:68:BA:08:AF:4B:78:A8:06:31:93:8C:FB:4D X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UPBltKpjemi6CK9LeKgGMZOM-00.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.88.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:16:62:73:da:88:50:74:5e:e1:13:40:8a:a2:e2:db:38:79: 42:3d:87:db:85:a2:d4:01:48:88:95:59:0e:fa:c5:fe:e7:4d: eb:cd:a3:e0:47:ed:34:eb:4f:6d:b9:70:fe:b2:7c:6a:6e:51: c3:39:53:b1:91:eb:19:db:2d:90:4d:9c:7d:ba:7a:e8:b9:11: 60:e4:fd:d8:8f:f6:26:c1:2b:e1:e9:62:e2:44:76:aa:06:17: 23:04:95:27:6c:0d:20:3c:a8:32:75:26:1b:7d:fd:89:f7:ed: 6e:f4:b6:9b:37:ee:5c:b2:ab:18:31:d6:df:f7:5f:86:b1:23: dc:26:f7:01:49:79:e2:20:be:29:8f:1e:78:3b:80:1d:55:aa: 14:a7:f1:b7:5b:b9:7d:01:de:65:c2:60:03:37:63:a0:fb:b5: 27:18:2e:f5:7b:ca:42:5d:64:2a:f8:79:da:6c:ad:1f:dd:3c: cd:62:68:28:0d:d5:55:c6:39:a6:0d:13:87:80:c3:0e:66:a1: 6c:50:ba:51:7c:9e:20:99:55:6f:39:3f:65:4d:9b:45:e3:df: 57:1a:b7:1f:89:94:10:08:80:d2:db:56:6e:79:f6:c4:ae:fd: c5:d6:f8:2b:4b:48:71:4b:64:0f:af:7a:ac:59:1c:6b:94:37: 86:72:45:a3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE8wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUwRjA2NUI0QUE2MzdB NjhCQTA4QUY0Qjc4QTgwNjMxOTM4Q0ZCNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtUcxpCuhxipysZHRJcfh4kCNAHV0zD+VCC1wz/kesEpp8TrNP K8BSgXa7kDS27ItHStDVZkhFVkb/vL954ehScJgRm3KutjkRg2gw9FPElURE3SV0 1QkFvZwciYNmhUNnwYsmNv/kNcnxhx6P7bE46kAnnnbv45JPGz+k5Pzs4glzGinM Se0Pr3DmRujNUJjlQCbeZiYC0Uib0dgCB4Gcvh25Mh7svpFjsDQakRIuAcPh5gCg nBkbohfyq9vsYdxhnIxBvOlR20c1o6aTGitKJVkymzkz3PQjyCoCWrZjVFUDtzp6 gzH41Sh0snD/+rBW/vIol73Nt7GqOVODqGNnAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUUPBltKpjemi6CK9LeKgGMZOM+00wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9VUEJsdEtwamVtaTZD SzlMZUtnR01aT00tMDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnRYMA0GCSqGSIb3DQEBCwUAA4IBAQAKFmJz2ohQdF7hE0CKouLbOHlCPYfb haLUAUiIlVkO+sX+503rzaPgR+00609tuXD+snxqblHDOVOxkesZ2y2QTZx9unro uRFg5P3Yj/YmwSvh6WLiRHaqBhcjBJUnbA0gPKgydSYbff2J9+1u9LabN+5csqsY Mdbf91+GsSPcJvcBSXniIL4pjx54O4AdVaoUp/G3W7l9Ad5lwmADN2Og+7UnGC71 e8pCXWQq+HnabK0f3TzNYmgoDdVVxjmmDROHgMMOZqFsULpRfJ4gmVVvOT9lTZtF 499XGrcfiZQQCIDS21ZuefbErv3F1vgrS0hxS2QPr3qsWRxrlDeGckWj -----END CERTIFICATE-----Generated at Sat Sep 6 13:55:13 2025 by rpki-client