$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/W2GbnGu4_o0wwmST_qOwLiT5xyA.roa File: W2GbnGu4_o0wwmST_qOwLiT5xyA.roa (raw, json) Hash identifier: 1Z50e78Ykk2BQpDE4yc3V+5sT3Jf3bnCf2jUG0+W0G4= Subject key identifier: 5B:61:9B:9C:6B:B8:FE:8D:30:C2:64:93:FE:A3:B0:2E:24:F9:C7:20 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13DA Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/W2GbnGu4_o0wwmST_qOwLiT5xyA.roa Signing time: Fri 22 Aug 2025 08:57:20 +0000 ROA not before: Fri 22 Aug 2025 08:57:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10085 IP address blocks: 203.163.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5082 (0x13da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5B619B9C6BB8FE8D30C26493FEA3B02E24F9C720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:63:88:8e:86:9c:38:32:b2:c1:d7:39:55:0c: 7e:3f:e0:af:0b:5a:be:a5:25:2d:d5:b6:bb:34:54: d4:06:49:60:f2:b5:9e:49:2e:a6:0d:7e:6e:e0:50: e2:a1:37:19:0a:02:9b:ac:28:40:24:94:a6:03:a5: 6e:fa:1b:56:2f:3e:b9:66:5b:8f:ea:16:ba:a0:51: 93:ee:8e:0e:aa:7b:f1:dc:74:da:df:85:ac:7d:cd: 64:2d:71:8a:8a:e4:23:58:4b:01:f2:b1:32:a9:a2: fc:f1:73:bb:ec:58:b4:ea:6e:91:18:ad:50:ca:29: 6f:97:24:1d:14:4d:f3:f2:d5:8c:7b:cd:96:f5:1e: 07:8c:39:17:d0:0a:4e:5c:bd:27:ac:7f:df:46:61: d7:5b:f1:55:98:e5:d1:a1:50:e5:1c:ea:c3:ea:89: 34:e8:66:a2:3a:d4:4d:cb:f2:8b:11:f8:31:79:be: 59:4b:3e:91:dc:d7:a0:17:f0:30:a7:30:c3:16:c3: dd:13:57:7e:05:5a:16:7e:69:7e:bd:f9:ec:10:36: 87:09:38:42:32:39:c0:9a:45:a4:38:ea:b5:ae:46: 47:3d:89:40:24:a1:fe:d2:a1:3e:f2:80:91:9b:58: 1b:c3:bd:c4:7a:d1:cd:49:62:b4:2f:8a:83:0a:14: c2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:61:9B:9C:6B:B8:FE:8D:30:C2:64:93:FE:A3:B0:2E:24:F9:C7:20 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/W2GbnGu4_o0wwmST_qOwLiT5xyA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.194.0/23 Signature Algorithm: sha256WithRSAEncryption 62:1b:51:98:3c:16:eb:56:4e:85:31:b2:b9:84:84:db:1f:4d: 19:63:bc:d2:8e:ef:18:4a:e4:d8:7e:5d:49:5c:6b:53:76:ff: 60:a6:34:09:30:92:c4:d3:7a:f9:58:6e:bd:6a:69:20:94:91: be:f8:bf:38:b9:a4:e7:5c:8e:2e:84:19:74:90:61:70:57:6f: 50:87:7c:21:0f:7a:8f:39:28:e0:06:00:bf:ca:74:81:ce:0f: bc:2a:be:c5:d5:9d:bd:94:45:6e:5d:38:0c:2f:34:e1:fc:57: a0:e7:1f:74:f5:ff:b7:a3:eb:62:e2:49:f6:f3:04:2c:4e:3a: 08:7f:c2:93:9d:12:b4:46:7b:ad:2c:df:71:60:cb:e4:e3:46: 0c:8c:88:07:7a:d2:a3:7b:39:c8:5c:b6:65:db:dc:f1:63:8e: 87:f6:45:82:c7:fa:77:02:c3:8f:77:1d:f9:f5:71:b9:44:59: a0:c3:e9:36:62:46:44:40:23:22:8b:66:3f:be:48:45:93:15: 27:cc:69:30:ab:c4:96:c1:b7:e3:76:8d:63:35:5c:e5:21:2c: f8:0d:07:ee:68:10:77:5c:b1:89:4f:b5:5f:ea:3f:58:70:d8: d5:0b:b2:b1:0f:64:a3:06:22:fc:94:6f:19:04:81:e4:53:69: e4:4b:a3:97 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE9owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVCNjE5QjlDNkJCOEZF OEQzMEMyNjQ5M0ZFQTNCMDJFMjRGOUM3MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwY4iOhpw4MrLB1zlVDH4/4K8LWr6lJS3Vtrs0VNQGSWDytZ5J LqYNfm7gUOKhNxkKApusKEAklKYDpW76G1YvPrlmW4/qFrqgUZPujg6qe/HcdNrf hax9zWQtcYqK5CNYSwHysTKpovzxc7vsWLTqbpEYrVDKKW+XJB0UTfPy1Yx7zZb1 HgeMORfQCk5cvSesf99GYddb8VWY5dGhUOUc6sPqiTToZqI61E3L8osR+DF5vllL PpHc16AX8DCnMMMWw90TV34FWhZ+aX69+ewQNocJOEIyOcCaRaQ46rWuRkc9iUAk of7SoT7ygJGbWBvDvcR60c1JYrQvioMKFMIlAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUW2GbnGu4/o0wwmST/qOwLiT5xyAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9XMkdibkd1NF9vMHd3 bVNUX3FPd0xpVDV4eUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBy6PCMA0GCSqGSIb3DQEBCwUAA4IBAQBiG1GYPBbrVk6FMbK5hITbH00ZY7zS ju8YSuTYfl1JXGtTdv9gpjQJMJLE03r5WG69amkglJG++L84uaTnXI4uhBl0kGFw V29Qh3whD3qPOSjgBgC/ynSBzg+8Kr7F1Z29lEVuXTgMLzTh/Feg5x909f+3o+ti 4kn28wQsTjoIf8KTnRK0RnutLN9xYMvk40YMjIgHetKjeznIXLZl29zxY46H9kWC x/p3AsOPdx359XG5RFmgw+k2YkZEQCMii2Y/vkhFkxUnzGkwq8SWwbfjdo1jNVzl ISz4DQfuaBB3XLGJT7Vf6j9YcNjVC7KxD2SjBiL8lG8ZBIHkU2nkS6OX -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:45 2025 by rpki-client