$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bbKFl64NLLl-tqPsTcThg01AxSU.roa File: bbKFl64NLLl-tqPsTcThg01AxSU.roa (raw, json) Hash identifier: y0vBTLfq5Wk5aI4prYWmtLRRlyoGQX5j7U0PaUlQ2m0= Subject key identifier: 6D:B2:85:97:AE:0D:2C:B9:7E:B6:A3:EC:4D:C4:E1:83:4D:40:C5:25 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13D3 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bbKFl64NLLl-tqPsTcThg01AxSU.roa Signing time: Fri 22 Aug 2025 08:57:18 +0000 ROA not before: Fri 22 Aug 2025 08:57:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5075 (0x13d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6DB28597AE0D2CB97EB6A3EC4DC4E1834D40C525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a2:e8:d7:a7:e4:fd:33:db:0a:27:75:f8:2b: 98:25:76:c3:3b:aa:93:bf:f8:18:f4:66:ba:f9:7a: f0:7a:e2:30:92:ac:2f:70:10:44:c0:3a:ee:9e:d4: 11:25:42:a8:56:4d:e1:b3:c0:62:d3:7e:c0:c7:90: 0b:42:e0:83:e2:6e:70:75:2b:7f:4c:fa:aa:a4:88: 13:fa:28:25:e1:11:53:8b:87:d6:61:6b:d6:51:58: ea:67:bb:76:4e:4f:e1:1c:cd:04:9c:b6:03:2e:c7: eb:b1:32:c4:59:6d:f6:4f:1c:75:86:0a:ae:0f:58: e1:d4:ce:0e:71:05:26:d1:9f:0f:92:55:49:29:06: 6d:64:3e:fe:72:e5:22:c1:dc:b9:f6:c5:47:b1:6a: be:09:af:8a:0f:b3:74:fe:e6:c7:30:ce:e0:f6:7f: b8:39:87:1f:db:1b:40:7e:5f:a7:cf:02:7b:93:4b: 81:be:f0:f3:1e:80:a8:3e:cd:d7:5f:93:7d:5b:ba: fc:9c:8a:a7:ab:7e:15:d1:eb:42:07:41:f8:96:12: 42:b9:41:98:65:85:1f:c4:49:56:3e:f5:0f:5b:55: 76:95:95:df:ef:59:7e:59:78:b0:e4:ee:8f:c8:7f: ec:9e:5b:be:56:1d:f9:1c:cc:85:e4:ed:c9:f6:d6: cf:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B2:85:97:AE:0D:2C:B9:7E:B6:A3:EC:4D:C4:E1:83:4D:40:C5:25 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bbKFl64NLLl-tqPsTcThg01AxSU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.104.0/21 Signature Algorithm: sha256WithRSAEncryption 27:b3:e2:e6:4a:bb:9a:7f:2b:9a:e0:6d:32:c8:e7:4e:31:a5: ea:c7:76:03:03:33:40:0a:63:23:e4:8f:b1:59:a2:2d:d3:a7: 5b:59:85:d8:12:1a:1c:12:0d:30:f6:40:0d:cf:3a:f8:8e:c9: ea:36:c6:7d:32:8e:6c:7e:c8:55:0f:63:88:d9:99:d2:da:c1: 07:33:aa:da:c2:ee:7a:07:2f:ec:e6:2a:98:ae:ac:c9:6b:ba: 93:1f:64:a4:e4:e6:4f:fb:07:5f:e7:63:b0:70:02:08:cb:5f: ee:fc:99:2e:01:44:49:5c:9d:67:df:f6:28:6e:fa:06:d9:23: d4:e8:ec:f6:3d:28:99:a2:48:24:fc:f0:ab:38:89:6a:d6:cb: 91:25:4d:2c:ae:08:6e:07:fd:29:4d:48:74:49:8c:82:5c:34: e7:4e:9b:f3:df:0c:f4:a1:79:fe:86:67:a0:e5:2e:f4:2b:e7: ec:40:e0:27:be:e6:12:33:16:1d:33:2f:2d:4f:5f:46:07:0a: fe:3c:1c:a8:e0:32:2a:61:bd:26:97:98:77:a5:6f:6d:19:b7: bd:2f:53:ab:56:6b:8b:02:53:32:dc:64:30:87:39:4f:46:62: d2:3e:19:9b:6e:d3:9e:83:d5:ce:39:ba:18:c6:de:47:70:9c: 76:7f:77:70 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE9MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZEQjI4NTk3QUUwRDJD Qjk3RUI2QTNFQzREQzRFMTgzNEQ0MEM1MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdoujXp+T9M9sKJ3X4K5gldsM7qpO/+Bj0Zrr5evB64jCSrC9w EETAOu6e1BElQqhWTeGzwGLTfsDHkAtC4IPibnB1K39M+qqkiBP6KCXhEVOLh9Zh a9ZRWOpnu3ZOT+EczQSctgMux+uxMsRZbfZPHHWGCq4PWOHUzg5xBSbRnw+SVUkp Bm1kPv5y5SLB3Ln2xUexar4Jr4oPs3T+5scwzuD2f7g5hx/bG0B+X6fPAnuTS4G+ 8PMegKg+zddfk31buvyciqerfhXR60IHQfiWEkK5QZhlhR/ESVY+9Q9bVXaVld/v WX5ZeLDk7o/If+yeW75WHfkczIXk7cn21s/dAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUbbKFl64NLLl+tqPsTcThg01AxSUwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9iYktGbDY0TkxMbC10 cVBzVGNUaGcwMUF4U1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnRoMA0GCSqGSIb3DQEBCwUAA4IBAQAns+LmSruafyua4G0yyOdOMaXqx3YD AzNACmMj5I+xWaIt06dbWYXYEhocEg0w9kANzzr4jsnqNsZ9Mo5sfshVD2OI2ZnS 2sEHM6rawu56By/s5iqYrqzJa7qTH2Sk5OZP+wdf52OwcAIIy1/u/JkuAURJXJ1n 3/YobvoG2SPU6Oz2PSiZokgk/PCrOIlq1suRJU0srghuB/0pTUh0SYyCXDTnTpvz 3wz0oXn+hmeg5S70K+fsQOAnvuYSMxYdMy8tT19GBwr+PByo4DIqYb0ml5h3pW9t Gbe9L1OrVmuLAlMy3GQwhzlPRmLSPhmbbtOeg9XOOboYxt5HcJx2f3dw -----END CERTIFICATE-----Generated at Sat Sep 6 13:48:15 2025 by rpki-client