$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VzfPYyWgKCwenyIL6YhUhQ91BYk.roa File: VzfPYyWgKCwenyIL6YhUhQ91BYk.roa (raw, json) Hash identifier: WXZN/lWZmJ8UEdOUN2GNg8a/FMsGJQS1/c2qbi9XWO0= Subject key identifier: 57:37:CF:63:25:A0:28:2C:1E:9F:22:0B:E9:88:54:85:0F:75:05:89 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1409 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VzfPYyWgKCwenyIL6YhUhQ91BYk.roa Signing time: Fri 22 Aug 2025 08:57:30 +0000 ROA not before: Fri 22 Aug 2025 08:57:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63199 IP address blocks: 150.116.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 13:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5129 (0x1409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5737CF6325A0282C1E9F220BE98854850F750589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a5:45:b4:cd:d2:38:c4:25:fb:c6:ab:2f:93: 94:40:2a:20:ad:61:42:f9:a5:94:4c:ef:b9:f4:8f: 01:3a:16:6b:97:5e:14:ad:6e:e4:dd:49:70:52:06: 13:3c:94:51:f2:35:d8:74:e4:f6:5e:34:13:6f:8b: b5:e9:f6:ac:14:fa:05:92:71:fb:c7:1a:ac:83:8a: 7d:8e:93:69:4b:41:3b:bd:b2:29:5b:27:ea:b8:0e: 5a:3d:5b:c4:b4:4e:0b:84:ca:6f:90:7c:2f:60:27: 6b:6b:ac:4c:31:32:b5:a0:6b:57:a5:b1:39:b1:e1: f7:a9:6b:1e:f0:5e:13:31:5f:c6:79:bb:1b:66:52: 9e:e6:c0:81:d2:d1:ad:59:d2:6f:ab:d0:00:ae:84: 5f:97:79:bc:da:96:45:b5:5b:5f:ec:36:05:23:69: 98:0b:00:5b:19:bd:73:0f:b8:d2:27:b7:0c:40:29: 6b:f7:3f:11:f1:45:07:aa:1b:1a:6b:00:7a:d3:de: e5:c2:87:42:3a:64:e8:fa:05:71:2f:ee:6d:18:77: bf:3f:64:a4:c2:51:29:4d:13:3d:3e:4c:0f:cf:a1: 12:c9:e9:cc:a5:ed:0c:a1:33:a7:81:28:46:20:87: 8c:73:0a:b5:e2:c0:10:9c:20:64:79:e6:0f:14:de: 7e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:37:CF:63:25:A0:28:2C:1E:9F:22:0B:E9:88:54:85:0F:75:05:89 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VzfPYyWgKCwenyIL6YhUhQ91BYk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.1.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:b5:b0:a2:cd:22:87:0e:23:ae:24:6f:ae:bd:d1:15:5e:e0: 34:5c:24:7a:15:99:e9:23:d0:75:d4:28:37:16:09:15:b1:ae: f3:d9:2e:46:38:7d:f1:83:28:a5:84:89:4b:97:4e:c4:e3:e7: eb:2b:51:c7:e5:63:a4:01:13:46:e6:7c:f6:9b:25:a6:c2:62: e1:f8:cc:cf:8f:2b:7d:3d:be:ed:49:72:ea:4d:e1:08:a6:a7: cd:d6:ea:ca:e1:a2:42:6b:d7:9d:c5:af:cb:4a:fe:d4:82:41: b7:d4:ca:f2:dc:fb:27:e0:85:a6:38:5b:1c:64:ad:9d:cc:1f: 25:9d:9f:f8:22:23:7d:59:4a:71:cb:3b:c8:10:ee:4f:a9:35: 5d:2b:7c:11:a4:71:9b:d0:dd:53:65:3f:fd:77:fe:64:81:bc: f0:32:4e:a3:84:61:58:7f:b5:a7:96:5c:46:c4:58:99:68:76: 9d:a5:e1:6b:cf:19:55:4c:47:01:db:72:73:74:39:a1:dd:16: 4a:c0:e2:88:db:f0:22:60:90:da:46:f7:7a:02:e6:65:8d:a5: 4b:1f:4e:29:4e:48:53:e7:60:3e:25:18:e9:d3:99:73:bf:b3: 6a:88:6e:9d:c2:e2:27:cd:3e:26:a2:95:ac:5c:82:f8:96:9e: 05:57:0f:14 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFAkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU3MzdDRjYzMjVBMDI4 MkMxRTlGMjIwQkU5ODg1NDg1MEY3NTA1ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRpUW0zdI4xCX7xqsvk5RAKiCtYUL5pZRM77n0jwE6FmuXXhSt buTdSXBSBhM8lFHyNdh05PZeNBNvi7Xp9qwU+gWScfvHGqyDin2Ok2lLQTu9silb J+q4Dlo9W8S0TguEym+QfC9gJ2trrEwxMrWga1elsTmx4fepax7wXhMxX8Z5uxtm Up7mwIHS0a1Z0m+r0ACuhF+XebzalkW1W1/sNgUjaZgLAFsZvXMPuNIntwxAKWv3 PxHxRQeqGxprAHrT3uXCh0I6ZOj6BXEv7m0Yd78/ZKTCUSlNEz0+TA/PoRLJ6cyl 7QyhM6eBKEYgh4xzCrXiwBCcIGR55g8U3n6bAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUVzfPYyWgKCwenyIL6YhUhQ91BYkwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9WemZQWXlXZ0tDd2Vu eUlMNlloVWhROTFCWWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQBMA0GCSqGSIb3DQEBCwUAA4IBAQAetbCizSKHDiOuJG+uvdEVXuA0XCR6 FZnpI9B11Cg3FgkVsa7z2S5GOH3xgyilhIlLl07E4+frK1HH5WOkARNG5nz2myWm wmLh+MzPjyt9Pb7tSXLqTeEIpqfN1urK4aJCa9edxa/LSv7UgkG31Mry3Psn4IWm OFscZK2dzB8lnZ/4IiN9WUpxyzvIEO5PqTVdK3wRpHGb0N1TZT/9d/5kgbzwMk6j hGFYf7WnllxGxFiZaHadpeFrzxlVTEcB23JzdDmh3RZKwOKI2/AiYJDaRvd6AuZl jaVLH04pTkhT52A+JRjp05lzv7NqiG6dwuInzT4mopWsXIL4lp4FVw8U -----END CERTIFICATE-----Generated at Sun Sep 7 12:45:19 2025 by rpki-client