$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aKsl48etAyniAZFzowZ4lRW1cE4.roa File: aKsl48etAyniAZFzowZ4lRW1cE4.roa (raw, json) Hash identifier: /lMg3YHSRcawtuREYIdoCAP/wsdpCtAWLgVRr+ZpCWw= Subject key identifier: 68:AB:25:E3:C7:AD:03:29:E2:01:91:73:A3:06:78:95:15:B5:70:4E Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13D5 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aKsl48etAyniAZFzowZ4lRW1cE4.roa Signing time: Fri 22 Aug 2025 08:57:18 +0000 ROA not before: Fri 22 Aug 2025 08:57:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63199 IP address blocks: 150.116.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 13:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5077 (0x13d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=68AB25E3C7AD0329E2019173A306789515B5704E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:bc:da:e3:9e:39:bc:40:79:e5:73:31:bb:ff: 12:99:98:a2:1c:1a:d8:e8:db:b6:ff:2d:f1:7a:db: f4:dc:de:fe:b8:17:66:78:c0:df:34:6b:c2:6f:2c: 0b:67:3e:a4:9f:03:37:4c:84:78:6b:b8:04:e7:ed: 9f:5c:cd:83:96:cb:03:90:64:c0:72:5e:a5:4e:60: ed:cc:61:05:cd:54:a0:3f:d7:b4:10:fd:45:b8:21: 40:fb:25:a2:d3:c7:a1:da:bf:c3:62:08:4e:85:ac: d1:3b:2f:86:93:fc:8d:45:85:ab:f3:d4:7f:bd:24: 6e:7f:ce:bb:fd:ca:f3:78:53:43:bf:1f:e7:9b:f8: 02:79:f0:73:97:03:0a:55:ff:81:a0:e6:a7:a2:05: 9b:74:ee:1e:6b:83:17:e6:c5:ed:fd:86:1e:04:93: 6c:3c:f1:d7:18:ff:5e:9b:23:6d:58:57:10:c7:c0: 73:6e:3a:b1:fc:50:22:59:d3:d9:47:3f:9d:b8:3d: 1f:32:bb:97:91:1a:8a:d0:5e:b2:4e:44:7d:66:37: 3c:1a:76:ac:5e:f4:7b:14:c9:b5:15:db:11:b5:e5: bb:80:51:2b:43:dc:7e:02:f9:83:a1:c5:b0:ac:d2: 4f:d9:9a:97:0c:f0:d2:73:ca:59:07:c4:eb:26:44: 8d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AB:25:E3:C7:AD:03:29:E2:01:91:73:A3:06:78:95:15:B5:70:4E X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aKsl48etAyniAZFzowZ4lRW1cE4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.92.0/22 Signature Algorithm: sha256WithRSAEncryption a6:93:a6:ad:07:d7:aa:ba:4f:17:75:41:44:74:e5:bb:ce:a8: d3:d1:dc:72:ca:e7:4e:ba:4f:18:8f:4e:aa:38:bc:98:92:31: d6:0e:dc:5c:b7:25:4d:8a:5c:b9:93:ba:27:5b:0e:6c:f8:b2: 5b:d6:30:56:01:0c:81:e4:16:84:07:7d:47:3a:6f:e4:45:4f: 24:ed:42:d6:20:9a:45:3d:ad:40:5a:84:40:16:d4:8a:0c:ec: a1:b2:e6:e6:be:1e:2e:09:8b:85:61:e4:53:da:5a:99:5e:42: f8:73:fe:00:51:fd:35:2e:e0:ed:e3:50:b7:12:42:34:b6:40: c7:2f:33:29:2d:e8:28:74:58:af:25:74:8a:83:2b:a4:09:94: d2:e2:5f:77:d3:66:17:d3:4b:4f:bb:ec:69:08:ac:82:2e:b4: 7f:d0:9b:e6:68:7d:d4:13:2f:d7:fe:45:15:ea:36:51:0c:f0: 7c:74:31:df:e8:00:d2:aa:6a:49:46:f7:f3:3a:4d:15:a5:02: a3:8c:ab:2d:88:de:d6:ba:9d:ff:5e:4f:c5:c6:26:23:5f:23: 00:fd:84:a7:4d:3e:bc:b8:0c:9d:ce:aa:ff:86:39:58:84:8f: 8f:26:70:b0:f3:a6:55:7e:9a:09:00:59:f6:83:17:55:87:03: cc:d5:2a:b9 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE9UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY4QUIyNUUzQzdBRDAz MjlFMjAxOTE3M0EzMDY3ODk1MTVCNTcwNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgvNrjnjm8QHnlczG7/xKZmKIcGtjo27b/LfF62/Tc3v64F2Z4 wN80a8JvLAtnPqSfAzdMhHhruATn7Z9czYOWywOQZMByXqVOYO3MYQXNVKA/17QQ /UW4IUD7JaLTx6Hav8NiCE6FrNE7L4aT/I1Fhavz1H+9JG5/zrv9yvN4U0O/H+eb +AJ58HOXAwpV/4Gg5qeiBZt07h5rgxfmxe39hh4Ek2w88dcY/16bI21YVxDHwHNu OrH8UCJZ09lHP524PR8yu5eRGorQXrJORH1mNzwadqxe9HsUybUV2xG15buAUStD 3H4C+YOhxbCs0k/ZmpcM8NJzylkHxOsmRI1tAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUaKsl48etAyniAZFzowZ4lRW1cE4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9hS3NsNDhldEF5bmlB WkZ6b3daNGxSVzFjRTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnRcMA0GCSqGSIb3DQEBCwUAA4IBAQCmk6atB9equk8XdUFEdOW7zqjT0dxy yudOuk8Yj06qOLyYkjHWDtxctyVNily5k7onWw5s+LJb1jBWAQyB5BaEB31HOm/k RU8k7ULWIJpFPa1AWoRAFtSKDOyhsubmvh4uCYuFYeRT2lqZXkL4c/4AUf01LuDt 41C3EkI0tkDHLzMpLegodFivJXSKgyukCZTS4l9302YX00tPu+xpCKyCLrR/0Jvm aH3UEy/X/kUV6jZRDPB8dDHf6ADSqmpJRvfzOk0VpQKjjKstiN7Wup3/Xk/FxiYj XyMA/YSnTT68uAydzqr/hjlYhI+PJnCw86ZVfpoJAFn2gxdVhwPM1Sq5 -----END CERTIFICATE-----Generated at Sun Sep 7 12:45:22 2025 by rpki-client