$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/USix6dB3wEu-umER2Smd6g2FbsE.roa File: USix6dB3wEu-umER2Smd6g2FbsE.roa (raw, json) Hash identifier: ToLDX+nxyVycIo6j5rESIrPv+eVEMNRs6bSIYUh06Qc= Subject key identifier: 51:28:B1:E9:D0:77:C0:4B:BE:BA:61:11:D9:29:9D:EA:0D:85:6E:C1 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1257 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/USix6dB3wEu-umER2Smd6g2FbsE.roa Signing time: Mon 10 Feb 2025 14:14:44 +0000 ROA not before: Mon 10 Feb 2025 14:14:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 203.163.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4695 (0x1257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:44 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5128B1E9D077C04BBEBA6111D9299DEA0D856EC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5f:96:0d:e9:b6:07:b1:f9:17:bc:76:5d:da: 55:b5:37:27:93:b1:78:d5:28:bb:f9:0e:e4:31:7d: 0a:e1:ea:44:d1:22:a1:6e:ea:87:7b:5f:f7:30:fa: fd:92:88:b3:38:fc:e4:0c:9d:e7:ba:6e:6d:15:0e: bd:f4:42:97:9b:d3:62:07:5b:f5:c6:e6:4e:0b:73: af:91:3c:4a:77:16:c7:40:6f:93:6e:a1:9a:89:0b: f3:46:f2:d0:af:b3:1a:c7:67:00:1f:ae:6c:f4:95: 60:d5:71:3d:2f:ef:8f:47:e1:cb:48:14:d3:1a:b5: d1:fd:6a:e4:57:91:85:44:22:be:12:8a:2b:fe:b3: 55:21:c3:66:ae:47:e4:ab:52:c4:58:ed:88:0e:70: 71:5e:31:0d:c8:01:cb:9b:6c:ae:2e:18:53:d6:68: da:18:3f:02:61:31:4e:89:66:52:bd:8e:05:49:37: 19:15:02:e5:80:40:85:53:56:2d:d5:29:e9:ef:91: a6:35:d8:03:3a:b3:ff:8b:88:38:b2:9f:c5:6f:2d: 53:79:4d:cd:9b:a7:9c:0d:a8:d8:f5:93:67:e2:58: bd:0d:c5:e6:9b:6c:1e:9f:d9:38:d8:10:74:f9:0c: 78:d1:22:c2:39:a2:1d:7f:15:76:fe:48:da:9b:77: e2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:28:B1:E9:D0:77:C0:4B:BE:BA:61:11:D9:29:9D:EA:0D:85:6E:C1 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/USix6dB3wEu-umER2Smd6g2FbsE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.220.0/23 Signature Algorithm: sha256WithRSAEncryption ab:4e:63:59:8d:4a:ef:8f:78:89:55:63:54:a3:c1:b3:50:6e: 73:d5:b7:43:56:62:82:ef:c2:1a:dd:c3:70:8b:40:70:7d:65: eb:d4:da:5d:8f:16:cf:51:32:b5:0f:66:b8:3a:fc:d9:a5:a0: 14:b9:80:50:a3:f9:d9:49:5e:74:75:53:44:d0:4d:98:f4:6b: 7e:90:da:7c:75:d9:7d:32:09:a7:4b:21:4b:39:33:96:94:e8: 7b:e1:bb:3c:e5:4b:99:8b:97:83:43:d4:bb:4c:d2:f3:8b:f4: 73:da:d9:fa:8f:65:64:3b:39:73:a0:2d:c3:93:5d:ac:ab:91: 28:f6:0f:de:0b:75:ff:61:eb:75:62:72:20:53:1a:c5:8c:9d: 9e:07:75:37:e8:a6:79:ae:aa:b6:ef:99:24:74:7b:9a:5d:48: 80:25:53:91:06:98:50:1e:90:68:a8:35:40:be:66:50:f4:9a: cc:31:72:c7:1f:34:ec:19:9a:77:38:fd:bc:21:31:29:ac:74: 3a:7d:63:6f:d6:bc:ea:04:6d:24:93:8b:30:9a:63:11:38:48: 50:14:ac:f7:af:d9:89:44:c3:c5:79:4a:dd:ce:a4:55:18:a0: 59:6c:ac:c6:ef:6f:81:a0:7e:9d:f1:27:f1:38:29:d4:29:b8: da:09:46:59 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICElcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxMjhCMUU5RDA3N0Mw NEJCRUJBNjExMUQ5Mjk5REVBMEQ4NTZFQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcX5YN6bYHsfkXvHZd2lW1NyeTsXjVKLv5DuQxfQrh6kTRIqFu 6od7X/cw+v2SiLM4/OQMnee6bm0VDr30Qpeb02IHW/XG5k4Lc6+RPEp3FsdAb5Nu oZqJC/NG8tCvsxrHZwAfrmz0lWDVcT0v749H4ctIFNMatdH9auRXkYVEIr4Siiv+ s1Uhw2auR+SrUsRY7YgOcHFeMQ3IAcubbK4uGFPWaNoYPwJhMU6JZlK9jgVJNxkV AuWAQIVTVi3VKenvkaY12AM6s/+LiDiyn8VvLVN5Tc2bp5wNqNj1k2fiWL0Nxeab bB6f2TjYEHT5DHjRIsI5oh1/FXb+SNqbd+LTAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUUSix6dB3wEu+umER2Smd6g2FbsEwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9VU2l4NmRCM3dFdS11 bUVSMlNtZDZnMkZic0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBy6PcMA0GCSqGSIb3DQEBCwUAA4IBAQCrTmNZjUrvj3iJVWNUo8GzUG5z1bdD VmKC78Ia3cNwi0BwfWXr1NpdjxbPUTK1D2a4OvzZpaAUuYBQo/nZSV50dVNE0E2Y 9Gt+kNp8ddl9MgmnSyFLOTOWlOh74bs85UuZi5eDQ9S7TNLzi/Rz2tn6j2VkOzlz oC3Dk12sq5Eo9g/eC3X/Yet1YnIgUxrFjJ2eB3U36KZ5rqq275kkdHuaXUiAJVOR BphQHpBoqDVAvmZQ9JrMMXLHHzTsGZp3OP28ITEprHQ6fWNv1rzqBG0kk4swmmMR OEhQFKz3r9mJRMPFeUrdzqRVGKBZbKzG72+BoH6d8SfxOCnUKbjaCUZZ -----END CERTIFICATE-----Generated at Wed Jun 4 00:52:44 2025 by rpki-client