$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XQDt-gutwIHKmpRRt9LnuVGVIuc.roa File: XQDt-gutwIHKmpRRt9LnuVGVIuc.roa (raw, json) Hash identifier: 7xae3aLmr/h+vKcBRRAZr7kZd4efnPhPTv+mZOypM68= Subject key identifier: 5D:00:ED:FA:0B:AD:C0:81:CA:9A:94:51:B7:D2:E7:B9:51:95:22:E7 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13E8 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XQDt-gutwIHKmpRRt9LnuVGVIuc.roa Signing time: Fri 22 Aug 2025 08:57:23 +0000 ROA not before: Fri 22 Aug 2025 08:57:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131607 IP address blocks: 150.117.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5096 (0x13e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5D00EDFA0BADC081CA9A9451B7D2E7B9519522E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:64:2d:a3:64:b2:27:c6:fd:77:97:6b:3a:0c: 49:ff:e4:f6:0b:27:2a:06:f8:38:43:90:da:b6:38: ce:44:e0:21:b0:54:88:33:d2:7a:33:5d:6e:05:19: fc:79:e6:70:62:50:c1:b6:6c:df:a2:75:93:14:04: 89:87:81:3a:c7:43:52:54:0d:9f:9a:7a:f8:a5:22: 2b:43:23:ef:01:3d:ca:a8:2c:10:6b:42:e7:2b:c4: 4c:c4:63:b3:b3:90:3f:c5:01:90:70:3f:db:18:a7: b4:8e:ef:46:56:8f:6d:a7:1e:88:02:4f:7d:f1:69: 69:db:3b:17:64:c0:f3:09:b8:47:7b:46:15:57:ea: f7:59:ec:d0:02:d9:5b:98:2a:f7:32:bd:44:a2:21: ae:26:2c:f5:64:e3:bf:24:f5:df:94:c0:97:22:34: e0:bc:ad:ea:2e:a9:08:d2:10:10:51:74:3b:b1:11: 56:64:88:5e:b0:86:30:2e:c1:fb:a4:62:8f:62:00: f6:21:d9:21:43:2d:4e:3c:d9:40:3c:93:6e:d4:71: 01:63:e1:23:30:c5:1e:2a:d9:80:22:04:fd:e6:b8: 96:7d:e7:fd:e6:af:64:85:5d:16:f2:ac:d5:86:a3: 62:7d:23:15:1e:c1:21:01:80:b0:54:f3:72:f5:b7: 6f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:00:ED:FA:0B:AD:C0:81:CA:9A:94:51:B7:D2:E7:B9:51:95:22:E7 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XQDt-gutwIHKmpRRt9LnuVGVIuc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.80.0/20 Signature Algorithm: sha256WithRSAEncryption 8e:a9:92:96:23:e5:4a:cc:b3:20:a8:c6:8d:03:c7:c8:e7:3d: b7:f4:4a:d0:b9:7f:d1:dd:1c:08:52:26:1f:86:45:82:65:8f: 9a:33:63:41:6b:59:51:38:4a:46:7c:24:d3:00:99:a9:31:cb: d6:ab:ff:27:91:c5:c5:38:d1:df:39:b1:10:92:5c:a8:95:3e: 5d:26:9f:49:17:3f:44:83:6b:32:f4:1b:8d:f8:3c:05:8c:dc: 7c:f1:8f:51:04:0e:5f:dc:56:ba:a3:a2:b4:b1:02:10:e6:46: d4:55:cf:90:e6:97:2e:13:97:98:28:c9:97:bb:2b:f6:3d:1b: b7:b5:35:4a:79:3e:ef:d1:b7:0c:63:a4:bd:a8:b5:df:43:2c: ef:62:3f:7d:24:62:e1:42:88:cb:5f:41:19:d4:e4:e5:53:97: 4c:e5:ed:71:01:24:7b:3c:cc:83:19:83:e2:2e:24:07:24:5b: 16:85:8c:00:20:93:5a:8c:bd:2d:8f:8f:e7:86:5e:95:fa:29: 60:db:fe:6e:49:66:8c:0a:50:1d:ce:60:db:44:4e:40:c3:35: 2d:df:7a:8e:be:78:37:e9:74:3d:7f:3b:47:0b:e3:8a:88:04: b4:fc:14:27:25:07:eb:10:0f:6f:27:94:75:5a:5d:ad:91:04: 62:0e:a0:0a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE+gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVEMDBFREZBMEJBREMw ODFDQTlBOTQ1MUI3RDJFN0I5NTE5NTIyRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsZC2jZLInxv13l2s6DEn/5PYLJyoG+DhDkNq2OM5E4CGwVIgz 0nozXW4FGfx55nBiUMG2bN+idZMUBImHgTrHQ1JUDZ+aevilIitDI+8BPcqoLBBr QucrxEzEY7OzkD/FAZBwP9sYp7SO70ZWj22nHogCT33xaWnbOxdkwPMJuEd7RhVX 6vdZ7NAC2VuYKvcyvUSiIa4mLPVk478k9d+UwJciNOC8reouqQjSEBBRdDuxEVZk iF6whjAuwfukYo9iAPYh2SFDLU482UA8k27UcQFj4SMwxR4q2YAiBP3muJZ95/3m r2SFXRbyrNWGo2J9IxUewSEBgLBU83L1t29LAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUXQDt+gutwIHKmpRRt9LnuVGVIucwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9YUUR0LWd1dHdJSEtt cFJSdDlMbnVWR1ZJdWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnVQMA0GCSqGSIb3DQEBCwUAA4IBAQCOqZKWI+VKzLMgqMaNA8fI5z239ErQ uX/R3RwIUiYfhkWCZY+aM2NBa1lROEpGfCTTAJmpMcvWq/8nkcXFONHfObEQklyo lT5dJp9JFz9Eg2sy9BuN+DwFjNx88Y9RBA5f3Fa6o6K0sQIQ5kbUVc+Q5pcuE5eY KMmXuyv2PRu3tTVKeT7v0bcMY6S9qLXfQyzvYj99JGLhQojLX0EZ1OTlU5dM5e1x ASR7PMyDGYPiLiQHJFsWhYwAIJNajL0tj4/nhl6V+ilg2/5uSWaMClAdzmDbRE5A wzUt33qOvng36XQ9fztHC+OKiAS0/BQnJQfrEA9vJ5R1Wl2tkQRiDqAK -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:41 2025 by rpki-client