$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZNv9tjI_3xcrAK1dbDEw9a6XtbM.roa File: ZNv9tjI_3xcrAK1dbDEw9a6XtbM.roa (raw, json) Hash identifier: ke5ttSSADfObG0m6h0/41XcfeokChHZdvfMlozswD4k= Subject key identifier: 64:DB:FD:B6:32:3F:DF:17:2B:00:AD:5D:6C:31:30:F5:AE:97:B5:B3 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13DF Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZNv9tjI_3xcrAK1dbDEw9a6XtbM.roa Signing time: Fri 22 Aug 2025 08:57:21 +0000 ROA not before: Fri 22 Aug 2025 08:57:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17408 IP address blocks: 223.26.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5087 (0x13df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=64DBFDB6323FDF172B00AD5D6C3130F5AE97B5B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:26:b2:cc:7f:9a:00:79:2b:c0:0c:66:8e:32: 86:fa:24:6e:af:c6:ae:0e:b1:ce:52:5e:f7:c2:9a: 32:4e:da:cd:6b:22:d4:e8:91:18:05:d7:45:e7:11: b9:13:80:58:f1:ef:af:df:67:25:87:ee:4a:51:40: be:eb:a2:86:23:de:ba:5f:1d:8c:4b:75:16:cb:2a: f6:f5:ac:5e:7f:07:62:b0:8d:b2:ac:5b:02:ef:00: f0:21:16:37:e8:02:b9:8f:b6:4b:38:eb:c1:3c:20: a7:51:1e:72:e3:e2:96:2b:ef:a3:dd:22:98:df:37: ba:9d:20:ca:af:c0:1a:1e:1e:f6:ad:39:86:0c:6f: de:ca:5b:7a:02:e0:32:9d:9d:c9:d1:d3:0e:91:5c: 47:f1:b8:f7:60:98:93:52:6e:59:b4:91:20:20:7e: 47:d9:b9:8a:2e:c0:9d:8f:d4:60:a1:84:c1:4a:9d: f3:38:b3:34:c7:54:3f:d5:28:5a:1a:c4:a1:d5:ab: b5:32:d9:22:d8:1d:76:e2:f5:b6:90:f0:1f:11:a2: 11:30:2f:ef:c7:86:a1:fc:30:f5:b1:bd:21:03:6b: 0f:d4:43:29:dc:0c:45:5a:ca:8d:3e:74:f9:cd:65: e9:66:92:67:af:ab:b5:7a:4a:d2:52:87:a1:ea:46: 66:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:DB:FD:B6:32:3F:DF:17:2B:00:AD:5D:6C:31:30:F5:AE:97:B5:B3 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZNv9tjI_3xcrAK1dbDEw9a6XtbM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.70.0/24 Signature Algorithm: sha256WithRSAEncryption 34:80:08:33:60:69:4c:09:38:ac:66:08:38:8b:65:5d:19:b2: 7f:87:8b:31:b6:e9:e8:0c:52:17:a4:6b:a3:4f:4c:0d:9b:82: 8e:dd:e4:3b:8e:77:55:7a:94:81:b3:f2:e8:53:8b:eb:0c:de: 46:c5:90:0e:c9:b7:48:ec:19:22:ee:22:f5:34:23:d5:f2:ca: fa:cc:4b:d0:83:82:30:af:26:cb:fe:f5:02:47:6a:03:52:4f: 09:67:fd:ee:52:f7:73:2f:54:f0:5b:9d:e0:ca:e8:7b:51:33: b8:99:e6:46:3e:05:fa:5d:5c:1c:ff:fa:9a:e7:cf:05:9a:c2: d2:7c:be:17:36:5f:72:c4:ba:2c:2e:b4:12:f3:30:a3:66:63: 47:2f:ad:a9:be:28:f6:b5:79:93:b8:50:73:4a:96:ea:4e:b5: bb:f0:dd:77:91:65:03:f4:ec:6c:1a:3a:51:26:0a:ac:50:2c: 9a:58:dc:1a:15:15:9e:bb:5b:61:90:4e:38:44:dd:09:b6:03: 55:ec:25:5d:4f:24:14:20:2c:df:15:95:ac:0c:05:4e:f5:67: fe:4c:3f:f9:ec:ef:bf:6a:d8:5f:f8:16:93:9a:4d:16:41:53: 20:31:d7:3b:28:6c:11:18:7c:e7:49:fd:28:f8:65:c9:d4:d1: 5b:aa:ca:63 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE98wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY0REJGREI2MzIzRkRG MTcyQjAwQUQ1RDZDMzEzMEY1QUU5N0I1QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPJrLMf5oAeSvADGaOMob6JG6vxq4Osc5SXvfCmjJO2s1rItTo kRgF10XnEbkTgFjx76/fZyWH7kpRQL7rooYj3rpfHYxLdRbLKvb1rF5/B2KwjbKs WwLvAPAhFjfoArmPtks468E8IKdRHnLj4pYr76PdIpjfN7qdIMqvwBoeHvatOYYM b97KW3oC4DKdncnR0w6RXEfxuPdgmJNSblm0kSAgfkfZuYouwJ2P1GChhMFKnfM4 szTHVD/VKFoaxKHVq7Uy2SLYHXbi9baQ8B8RohEwL+/HhqH8MPWxvSEDaw/UQync DEVayo0+dPnNZelmkmevq7V6StJSh6HqRmbvAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZNv9tjI/3xcrAK1dbDEw9a6XtbMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9aTnY5dGpJXzN4Y3JB SzFkYkRFdzlhNlh0Yk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQA3xpGMA0GCSqGSIb3DQEBCwUAA4IBAQA0gAgzYGlMCTisZgg4i2VdGbJ/h4sx tunoDFIXpGujT0wNm4KO3eQ7jndVepSBs/LoU4vrDN5GxZAOybdI7Bki7iL1NCPV 8sr6zEvQg4IwrybL/vUCR2oDUk8JZ/3uUvdzL1TwW53gyuh7UTO4meZGPgX6XVwc //qa588FmsLSfL4XNl9yxLosLrQS8zCjZmNHL62pvij2tXmTuFBzSpbqTrW78N13 kWUD9OxsGjpRJgqsUCyaWNwaFRWeu1thkE44RN0JtgNV7CVdTyQUICzfFZWsDAVO 9Wf+TD/57O+/athf+BaTmk0WQVMgMdc7KGwRGHznSf0o+GXJ1NFbqspj -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:37 2025 by rpki-client