$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/c_i4P6DgOvKuS_cm9Z8Im6mBz0o.roa File: c_i4P6DgOvKuS_cm9Z8Im6mBz0o.roa (raw, json) Hash identifier: fOqAOQ7tjXyJbCKf7HQMDjtfxrufLkoQJvHPnTD+Qe4= Subject key identifier: 73:F8:B8:3F:A0:E0:3A:F2:AE:4B:F7:26:F5:9F:08:9B:A9:81:CF:4A Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13D8 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/c_i4P6DgOvKuS_cm9Z8Im6mBz0o.roa Signing time: Fri 22 Aug 2025 08:57:20 +0000 ROA not before: Fri 22 Aug 2025 08:57:20 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17408 IP address blocks: 203.163.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5080 (0x13d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=73F8B83FA0E03AF2AE4BF726F59F089BA981CF4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:91:7c:1f:82:2a:9b:70:a1:71:da:0e:0e:01: 74:d1:49:20:80:65:2f:cf:ac:43:ba:69:bb:02:71: 5a:51:44:9e:7c:f7:50:d1:f2:58:cb:0e:06:2b:36: 6f:5b:98:1f:54:82:41:20:f3:26:12:03:86:48:15: 77:0b:65:4f:49:d3:1a:f4:2c:b7:3f:2a:dd:b6:08: 0d:12:c8:74:16:ff:44:5b:e8:cd:6b:6c:14:b3:27: 07:0b:0e:71:27:4d:20:2f:2e:11:e2:9f:ee:f3:03: ab:dc:cd:5f:15:46:20:8b:d2:d7:9e:81:91:a8:fc: 26:84:18:7e:61:68:48:f3:35:2b:a6:fd:49:0d:29: 1c:f9:7c:27:7b:f6:f5:9d:8f:b0:2e:1c:d0:af:01: 59:0d:2a:5a:50:e0:07:6d:e5:5d:17:52:ea:19:1b: a2:73:77:00:84:ce:c0:ea:8d:cd:3f:9c:bc:ef:c4: 1a:7e:ba:42:ff:34:90:80:7c:c3:65:f8:2e:04:7f: f2:72:47:8d:7c:cf:86:57:96:f2:da:9b:24:84:3d: 89:46:f7:79:6b:de:aa:7f:3b:da:12:99:92:82:99: f7:c1:24:06:70:d1:fc:c8:e1:3b:9a:6b:b9:20:47: e2:75:20:ce:3f:d4:5e:c2:c3:9f:a0:80:95:89:e5: 54:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F8:B8:3F:A0:E0:3A:F2:AE:4B:F7:26:F5:9F:08:9B:A9:81:CF:4A X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/c_i4P6DgOvKuS_cm9Z8Im6mBz0o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.192.0/23 Signature Algorithm: sha256WithRSAEncryption 81:55:00:47:6b:2d:01:10:bc:33:db:59:1b:f2:fa:29:2a:10: 13:98:92:c1:5f:81:1d:82:28:a2:77:b0:41:f1:d9:93:02:ac: 70:28:30:fa:2b:52:de:6c:56:8b:ea:e0:94:96:1f:ee:72:8c: b9:85:4a:f7:8b:98:11:6a:85:e0:a1:0b:54:81:1d:a6:25:3d: 11:9f:e5:ae:16:ef:3c:b5:30:81:cf:f9:ff:12:a8:33:f5:7c: 28:ee:41:37:63:68:27:3f:74:70:eb:61:3c:e0:f9:25:61:ec: 52:ed:86:91:c0:02:fd:0a:93:cc:94:46:5c:78:e0:4e:f3:3a: da:bd:88:4a:04:36:0a:2e:35:b3:06:4d:8b:6e:eb:ed:b0:c7: 4d:2e:3e:f4:59:3a:b5:a9:17:07:65:35:b6:2c:d4:c5:e1:76: a0:d3:4a:56:03:fb:a2:1c:96:d0:9b:90:6c:e3:b9:e6:dc:ba: 66:05:4f:92:9c:65:ee:c7:0b:a7:4c:d1:31:54:74:c5:96:e7: 34:67:99:db:cc:4b:66:14:a6:20:c1:6c:f5:af:5a:29:f5:76: c9:6a:aa:66:36:cf:a4:a7:00:6d:93:39:dc:98:3d:da:c8:02: c3:08:4f:32:68:e8:4a:df:2a:8d:2f:8c:5b:cd:72:35:82:52: 16:f0:dc:3a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDczRjhCODNGQTBFMDNB RjJBRTRCRjcyNkY1OUYwODlCQTk4MUNGNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCykXwfgiqbcKFx2g4OAXTRSSCAZS/PrEO6absCcVpRRJ5891DR 8ljLDgYrNm9bmB9UgkEg8yYSA4ZIFXcLZU9J0xr0LLc/Kt22CA0SyHQW/0Rb6M1r bBSzJwcLDnEnTSAvLhHin+7zA6vczV8VRiCL0teegZGo/CaEGH5haEjzNSum/UkN KRz5fCd79vWdj7AuHNCvAVkNKlpQ4Adt5V0XUuoZG6JzdwCEzsDqjc0/nLzvxBp+ ukL/NJCAfMNl+C4Ef/JyR418z4ZXlvLamySEPYlG93lr3qp/O9oSmZKCmffBJAZw 0fzI4Tuaa7kgR+J1IM4/1F7Cw5+ggJWJ5VTPAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUc/i4P6DgOvKuS/cm9Z8Im6mBz0owHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9jX2k0UDZEZ092S3VT X2NtOVo4SW02bUJ6MG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBy6PAMA0GCSqGSIb3DQEBCwUAA4IBAQCBVQBHay0BELwz21kb8vopKhATmJLB X4Edgiiid7BB8dmTAqxwKDD6K1LebFaL6uCUlh/ucoy5hUr3i5gRaoXgoQtUgR2m JT0Rn+WuFu88tTCBz/n/Eqgz9Xwo7kE3Y2gnP3Rw62E84PklYexS7YaRwAL9CpPM lEZceOBO8zravYhKBDYKLjWzBk2LbuvtsMdNLj70WTq1qRcHZTW2LNTF4Xag00pW A/uiHJbQm5Bs47nm3LpmBU+SnGXuxwunTNExVHTFluc0Z5nbzEtmFKYgwWz1r1op 9XbJaqpmNs+kpwBtkzncmD3ayALDCE8yaOhK3yqNL4xbzXI1glIW8Nw6 -----END CERTIFICATE-----Generated at Sun Sep 7 16:20:07 2025 by rpki-client