$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZVWK4dXmZ-SOtJmKJR55B4PaYFY.roa File: ZVWK4dXmZ-SOtJmKJR55B4PaYFY.roa (raw, json) Hash identifier: C2Zw9WCaHTwyK/JJB6kW7AanYea2Y2slC/t6tMUe/VQ= Subject key identifier: 65:55:8A:E1:D5:E6:67:E4:8E:B4:99:8A:25:1E:79:07:83:DA:60:56 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13E3 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZVWK4dXmZ-SOtJmKJR55B4PaYFY.roa Signing time: Fri 22 Aug 2025 08:57:22 +0000 ROA not before: Fri 22 Aug 2025 08:57:22 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 138915 IP address blocks: 150.116.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Sep 2025 10:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5091 (0x13e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=65558AE1D5E667E48EB4998A251E790783DA6056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bf:e2:67:49:69:57:89:37:da:b7:23:ea:59: da:3c:9b:b6:14:c9:da:af:3e:f7:2d:92:07:62:71: 22:0a:9e:0e:63:8b:df:c4:51:1a:05:80:73:11:25: 38:e0:3b:e5:f3:1a:5c:8b:86:d8:57:f4:68:17:6e: bc:3d:56:be:d2:7a:64:e6:9b:99:41:49:42:6b:58: 3e:79:3d:4a:be:63:ca:30:2c:29:46:cf:12:ef:02: 1a:bf:a6:e7:81:18:fd:43:ae:9b:23:78:b2:e8:6d: 00:5b:a9:79:eb:14:04:1a:71:72:ea:e9:11:0d:95: 6b:49:a4:2f:ed:91:e8:d6:ff:24:59:73:5f:82:b3: 85:53:18:91:d0:8e:83:46:ba:ab:40:c5:73:9f:65: ec:bd:8e:eb:67:bb:1d:6d:5b:6a:f0:7c:d3:c6:3b: a6:1e:7c:2b:7a:f4:0f:be:f3:e8:c9:a1:fd:bd:e2: a7:60:6d:64:b8:40:88:3a:4a:74:05:fc:2b:0e:5c: ab:52:4d:31:a9:b3:4b:cb:bd:7e:39:74:66:35:61: fc:ce:b8:3d:e1:14:2d:47:ed:d5:cb:d8:3f:7d:ae: 45:83:67:e3:cb:a5:9d:5b:4c:31:99:77:9f:0b:48: b7:de:9a:18:68:19:f4:b8:d5:3f:8d:ec:35:78:5a: 25:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:55:8A:E1:D5:E6:67:E4:8E:B4:99:8A:25:1E:79:07:83:DA:60:56 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZVWK4dXmZ-SOtJmKJR55B4PaYFY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.117.0/24 Signature Algorithm: sha256WithRSAEncryption 62:62:e3:14:74:42:36:fa:d9:5a:8c:93:15:57:9e:d3:80:79: ef:82:5e:b9:0b:0c:fc:d6:a5:d1:3c:83:71:90:79:3d:29:04: b8:6a:18:15:d6:69:97:74:f7:65:81:71:ff:b2:5b:06:a5:54: 67:93:90:04:83:6d:ba:58:7b:90:ec:9f:0b:48:75:ff:7e:f9: 88:00:3f:e3:ef:7d:a9:cb:e4:ad:bc:11:2a:ca:89:62:b7:bf: 79:31:ce:f4:8b:1a:ae:eb:91:28:f9:b6:ea:8c:d5:c2:f8:8e: 09:0f:cc:62:ac:b5:dc:19:a5:9b:dd:d7:6e:a3:88:20:75:d0: 24:2d:ca:dd:35:a1:cb:1c:63:0c:be:9c:3f:87:30:61:ba:44: fd:24:04:1e:26:fb:3e:bc:4d:21:43:68:5f:52:57:fc:51:2a: 90:8d:52:ec:46:e7:8a:3e:a9:7f:aa:5d:d6:68:94:de:60:c4: fc:5c:06:1e:2f:ec:49:db:1b:9d:77:d2:2f:dd:65:72:10:ef: 04:73:52:60:dd:24:a8:ab:4a:ae:2a:09:15:90:6c:f5:3b:90: b1:bc:2d:31:db:48:00:53:54:5c:da:31:3d:2a:87:5c:99:e5: 5c:cf:94:b8:4f:9d:af:d8:e2:75:8e:eb:bb:48:15:9f:2c:5d: 14:44:78:7d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE+MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY1NTU4QUUxRDVFNjY3 RTQ4RUI0OTk4QTI1MUU3OTA3ODNEQTYwNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDev+JnSWlXiTfatyPqWdo8m7YUydqvPvctkgdicSIKng5ji9/E URoFgHMRJTjgO+XzGlyLhthX9GgXbrw9Vr7SemTmm5lBSUJrWD55PUq+Y8owLClG zxLvAhq/pueBGP1DrpsjeLLobQBbqXnrFAQacXLq6RENlWtJpC/tkejW/yRZc1+C s4VTGJHQjoNGuqtAxXOfZey9jutnux1tW2rwfNPGO6YefCt69A++8+jJof294qdg bWS4QIg6SnQF/CsOXKtSTTGps0vLvX45dGY1YfzOuD3hFC1H7dXL2D99rkWDZ+PL pZ1bTDGZd58LSLfemhhoGfS41T+N7DV4WiUtAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZVWK4dXmZ+SOtJmKJR55B4PaYFYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9aVldLNGRYbVotU090 Sm1LSlI1NUI0UGFZRlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnR1MA0GCSqGSIb3DQEBCwUAA4IBAQBiYuMUdEI2+tlajJMVV57TgHnvgl65 Cwz81qXRPINxkHk9KQS4ahgV1mmXdPdlgXH/slsGpVRnk5AEg226WHuQ7J8LSHX/ fvmIAD/j732py+StvBEqyolit795Mc70ixqu65Eo+bbqjNXC+I4JD8xirLXcGaWb 3dduo4ggddAkLcrdNaHLHGMMvpw/hzBhukT9JAQeJvs+vE0hQ2hfUlf8USqQjVLs RueKPql/ql3WaJTeYMT8XAYeL+xJ2xudd9Iv3WVyEO8Ec1Jg3SSoq0quKgkVkGz1 O5CxvC0x20gAU1Rc2jE9KodcmeVcz5S4T52v2OJ1juu7SBWfLF0URHh9 -----END CERTIFICATE-----Generated at Fri Sep 5 09:00:21 2025 by rpki-client