$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YVap0qowvewF_YjQ3z5CkbjFgdc.roa File: YVap0qowvewF_YjQ3z5CkbjFgdc.roa (raw, json) Hash identifier: yTGnl6zBeJ46wBAMShczGKkkzcg8pGZhhkEu0v2I1dM= Subject key identifier: 61:56:A9:D2:AA:30:BD:EC:05:FD:88:D0:DF:3E:42:91:B8:C5:81:D7 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13C4 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YVap0qowvewF_YjQ3z5CkbjFgdc.roa Signing time: Fri 22 Aug 2025 08:57:15 +0000 ROA not before: Fri 22 Aug 2025 08:57:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5060 (0x13c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6156A9D2AA30BDEC05FD88D0DF3E4291B8C581D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e5:a0:ae:1d:20:71:1b:dc:59:84:f4:cc:86: 0d:43:63:0d:11:fe:20:22:1d:2f:0f:25:ea:50:91: c5:82:d4:a9:78:86:b6:0e:a5:c6:5f:b9:06:65:9d: d4:f3:a0:c8:ce:5a:b3:93:35:df:e2:1f:d8:98:b3: 8a:aa:9f:a7:02:89:45:3d:ba:56:d4:94:4d:63:33: f6:b9:46:55:f6:19:3d:97:3c:e6:4c:83:56:08:fc: 91:06:a9:9d:54:06:2b:42:3a:f4:d6:07:94:91:44: 7d:dd:ea:42:b5:06:f1:d6:92:c1:bb:77:01:15:f1: 97:a8:fa:a0:e7:91:6a:f2:06:e0:61:3a:12:70:fb: 65:ae:50:88:9b:52:c1:f8:45:e2:c4:98:5e:44:99: d3:9e:89:8e:fa:79:1b:cb:ab:8f:38:05:19:a8:1d: 3f:4b:3d:2f:9b:35:76:70:ce:42:51:b6:1c:22:69: 89:fa:45:9b:ee:98:c8:a5:81:7a:43:0a:6d:af:db: bf:b0:08:23:83:2c:57:6e:71:f8:46:12:5a:a0:d6: 20:54:35:2a:aa:cb:05:62:ff:7a:de:b1:7c:56:02: 44:c5:4b:4c:49:c0:b0:dc:00:71:99:28:11:55:eb: 47:f2:be:c6:96:1f:70:e2:c2:cd:e7:40:73:54:1c: b9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:56:A9:D2:AA:30:BD:EC:05:FD:88:D0:DF:3E:42:91:B8:C5:81:D7 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YVap0qowvewF_YjQ3z5CkbjFgdc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.140.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:06:28:10:3a:d1:7c:34:24:ed:26:74:3a:8e:42:91:08:e8: 39:d8:32:e8:43:43:a9:c6:79:6e:ea:2b:e1:cf:37:31:51:35: de:c5:6f:ba:72:11:39:60:29:f8:e0:39:ba:71:08:6d:fb:0b: 4b:a6:a0:6d:e6:a8:0d:7a:1a:24:02:22:a5:60:18:a6:a8:24: bb:a0:c0:af:bc:2b:fb:ce:30:20:97:25:d2:96:43:16:7e:76: 95:88:f1:e0:56:65:06:7e:9d:01:40:11:3b:19:e1:b2:d9:de: 64:f6:25:95:13:02:41:08:b6:28:85:e1:a9:8d:5c:15:41:d7: 6e:37:4b:a0:ef:53:a8:27:f0:97:a2:46:cc:32:35:2b:14:f3: 59:55:2d:c6:ef:77:94:ee:2b:3a:27:28:ff:f5:49:fb:42:da: b6:3b:0b:54:7a:7f:ca:a7:35:54:42:3d:7f:72:55:e3:43:65: 7d:a4:db:cc:e5:c4:db:f9:2c:ae:86:91:f4:59:ae:48:f8:72: 72:b7:f6:dd:29:a4:93:45:ab:05:b2:8e:20:e0:f5:54:24:18: e1:bd:5d:09:cd:5e:5c:a1:cb:bb:54:10:a3:1f:94:ad:fc:46: 05:22:85:d6:df:d0:71:50:60:59:60:b5:6b:c8:c5:c2:11:ad: 62:fa:8e:10 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYxNTZBOUQyQUEzMEJE RUMwNUZEODhEMERGM0U0MjkxQjhDNTgxRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC05aCuHSBxG9xZhPTMhg1DYw0R/iAiHS8PJepQkcWC1Kl4hrYO pcZfuQZlndTzoMjOWrOTNd/iH9iYs4qqn6cCiUU9ulbUlE1jM/a5RlX2GT2XPOZM g1YI/JEGqZ1UBitCOvTWB5SRRH3d6kK1BvHWksG7dwEV8Zeo+qDnkWryBuBhOhJw +2WuUIibUsH4ReLEmF5EmdOeiY76eRvLq484BRmoHT9LPS+bNXZwzkJRthwiaYn6 RZvumMilgXpDCm2v27+wCCODLFducfhGElqg1iBUNSqqywVi/3resXxWAkTFS0xJ wLDcAHGZKBFV60fyvsaWH3Diws3nQHNUHLlJAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUYVap0qowvewF/YjQ3z5CkbjFgdcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9ZVmFwMHFvd3Zld0Zf WWpRM3o1Q2tiakZnZGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnSMMA0GCSqGSIb3DQEBCwUAA4IBAQB6BigQOtF8NCTtJnQ6jkKRCOg52DLo Q0Opxnlu6ivhzzcxUTXexW+6chE5YCn44Dm6cQht+wtLpqBt5qgNehokAiKlYBim qCS7oMCvvCv7zjAglyXSlkMWfnaViPHgVmUGfp0BQBE7GeGy2d5k9iWVEwJBCLYo heGpjVwVQdduN0ug71OoJ/CXokbMMjUrFPNZVS3G73eU7is6Jyj/9Un7Qtq2OwtU en/KpzVUQj1/clXjQ2V9pNvM5cTb+SyuhpH0Wa5I+HJyt/bdKaSTRasFso4g4PVU JBjhvV0JzV5cocu7VBCjH5St/EYFIoXW39BxUGBZYLVryMXCEa1i+o4Q -----END CERTIFICATE-----Generated at Sat Sep 6 13:51:33 2025 by rpki-client