$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/V5a37kLNjCddCfUDDcNcIKEevI0.roa File: V5a37kLNjCddCfUDDcNcIKEevI0.roa (raw, json) Hash identifier: ecs05StbQ6BMufJaxo9Yr3qqLHDhw9ruPCFD6ZVfSBk= Subject key identifier: 57:96:B7:EE:42:CD:8C:27:5D:09:F5:03:0D:C3:5C:20:A1:1E:BC:8D Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1420 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/V5a37kLNjCddCfUDDcNcIKEevI0.roa Signing time: Fri 22 Aug 2025 08:57:35 +0000 ROA not before: Fri 22 Aug 2025 08:57:35 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10085 IP address blocks: 150.117.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5152 (0x1420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5796B7EE42CD8C275D09F5030DC35C20A11EBC8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:80:6a:f1:80:b9:59:86:f2:21:d8:82:b5:ee: 38:87:08:70:ba:1b:48:9e:2c:8b:99:7f:7e:f5:e0: e3:04:1b:84:25:4e:4d:63:68:ff:df:80:b1:44:4b: 32:c3:a1:54:b9:b7:96:02:a2:dd:f8:aa:b0:f1:a7: 5e:f5:28:98:b5:59:40:24:e4:e9:b1:a8:f0:74:e3: ee:12:a6:39:58:57:53:a1:b7:d2:cb:78:1b:8b:a5: be:18:c7:44:bc:64:66:67:05:e7:31:38:ab:e3:ec: c7:b5:4d:c4:a4:0e:53:68:60:4a:e9:29:05:b2:a3: 0a:41:19:64:9c:73:89:3b:e0:c1:f1:9f:c0:09:73: 44:98:e9:13:b2:2a:78:dd:37:60:9c:b8:25:f4:63: 18:31:87:fb:6d:79:a6:cb:a2:f1:40:1c:56:0c:79: af:23:6c:26:10:1e:72:c5:e5:e6:ab:9e:52:40:d8: c7:63:67:13:bb:39:9d:f1:cd:d3:71:6f:cd:83:07: 89:7c:0f:7a:4d:53:ef:76:47:5e:93:18:3c:a9:37: 81:a3:2a:45:6f:b6:47:d8:15:3f:8b:75:cf:4b:23: 72:0c:d5:48:fe:2c:7d:69:a6:8d:2b:4b:1d:62:e1: 35:bf:fc:e9:24:25:dc:db:c1:21:cd:ab:88:1d:eb: d8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:96:B7:EE:42:CD:8C:27:5D:09:F5:03:0D:C3:5C:20:A1:1E:BC:8D X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/V5a37kLNjCddCfUDDcNcIKEevI0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.96.0/21 Signature Algorithm: sha256WithRSAEncryption 93:1d:4b:68:ff:03:61:78:49:98:dd:89:e3:a6:b6:1d:63:e9: 5c:89:bd:ff:c0:e1:22:36:77:4d:dc:3f:3a:24:1a:18:27:33: 35:bd:3d:91:fa:b2:3f:a9:3f:a8:dd:b9:f9:c4:eb:71:31:af: 9a:68:41:2e:f7:39:1a:78:c0:03:f2:0d:75:88:61:dd:68:b0: 56:a5:f5:6f:c3:57:5c:48:5b:ce:fd:e6:32:f3:bf:3f:80:0d: e4:aa:da:87:0d:08:cf:2f:b2:92:86:f5:3a:c1:97:e4:ef:99: 5f:e0:53:0f:1a:c8:63:8b:23:95:15:d9:d1:c7:cd:a6:7a:e0: 52:5c:fe:1e:0c:0d:f7:fb:5c:c4:26:a5:70:7a:9f:cd:6d:3f: a9:3c:31:e1:fb:8d:1b:50:2e:35:b1:57:bc:52:bd:7b:7e:50: f3:5e:81:60:f8:a3:90:ce:75:d8:5e:57:6e:56:39:a0:bb:86: c8:8c:ab:05:e0:0a:bc:25:93:3c:fd:44:5d:9a:bb:c1:f8:0d: ef:0b:3f:0f:64:a5:7b:48:31:45:31:13:87:65:51:09:d6:5d: da:85:ff:6b:55:fb:b8:f0:0c:38:58:d4:db:7e:3b:9d:38:49: 38:74:6f:ed:fd:6e:e3:97:0b:0d:f5:ca:8a:61:6d:d0:46:3a: 54:a1:d0:d6 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFCAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU3OTZCN0VFNDJDRDhD Mjc1RDA5RjUwMzBEQzM1QzIwQTExRUJDOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZgGrxgLlZhvIh2IK17jiHCHC6G0ieLIuZf3714OMEG4QlTk1j aP/fgLFESzLDoVS5t5YCot34qrDxp171KJi1WUAk5OmxqPB04+4SpjlYV1Oht9LL eBuLpb4Yx0S8ZGZnBecxOKvj7Me1TcSkDlNoYErpKQWyowpBGWScc4k74MHxn8AJ c0SY6ROyKnjdN2CcuCX0Yxgxh/tteabLovFAHFYMea8jbCYQHnLF5earnlJA2Mdj ZxO7OZ3xzdNxb82DB4l8D3pNU+92R16TGDypN4GjKkVvtkfYFT+Ldc9LI3IM1Uj+ LH1ppo0rSx1i4TW//OkkJdzbwSHNq4gd69ifAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUV5a37kLNjCddCfUDDcNcIKEevI0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9WNWEzN2tMTmpDZGRD ZlVERGNOY0lLRWV2STAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnVgMA0GCSqGSIb3DQEBCwUAA4IBAQCTHUto/wNheEmY3YnjprYdY+lcib3/ wOEiNndN3D86JBoYJzM1vT2R+rI/qT+o3bn5xOtxMa+aaEEu9zkaeMAD8g11iGHd aLBWpfVvw1dcSFvO/eYy878/gA3kqtqHDQjPL7KShvU6wZfk75lf4FMPGshjiyOV FdnRx82meuBSXP4eDA33+1zEJqVwep/NbT+pPDHh+40bUC41sVe8Ur17flDzXoFg +KOQznXYXlduVjmgu4bIjKsF4Aq8JZM8/URdmrvB+A3vCz8PZKV7SDFFMROHZVEJ 1l3ahf9rVfu48Aw4WNTbfjudOEk4dG/t/W7jlwsN9cqKYW3QRjpUodDW -----END CERTIFICATE-----Generated at Sun Sep 7 16:20:04 2025 by rpki-client