$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/duioBPuFwaw3R9xDgLn0WVx3SIY.roa File: duioBPuFwaw3R9xDgLn0WVx3SIY.roa (raw, json) Hash identifier: PQQSKWvi1KMSZj7znVRSkl9dp9roR5GB3RMy0MmsSvE= Subject key identifier: 76:E8:A8:04:FB:85:C1:AC:37:47:DC:43:80:B9:F4:59:5C:77:48:86 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13CD Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/duioBPuFwaw3R9xDgLn0WVx3SIY.roa Signing time: Fri 22 Aug 2025 08:57:17 +0000 ROA not before: Fri 22 Aug 2025 08:57:17 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 63199 IP address blocks: 150.116.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 13:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5069 (0x13cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:17 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=76E8A804FB85C1AC3747DC4380B9F4595C774886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a4:0c:8c:5b:96:a8:02:6a:97:98:e5:88:af: 26:fd:6b:86:10:4d:22:47:33:63:55:8d:15:16:ce: 41:fd:48:76:6a:73:c2:07:bd:0f:18:44:90:ad:4c: 6b:aa:84:a0:53:84:74:86:37:04:7e:d0:50:ca:0d: 8e:14:aa:3f:68:f3:c4:fa:9f:c5:20:60:e7:37:ec: 04:ec:e1:2f:89:de:49:29:70:83:77:fb:da:87:77: 9e:33:fc:7e:74:50:87:a2:63:e4:db:e5:72:c6:af: cd:31:54:61:29:59:42:ea:3e:b9:81:13:5d:e6:b2: e8:fb:33:ad:2e:73:6c:1a:5e:32:1e:b2:98:ad:62: 29:e8:cd:4f:f5:e6:fd:f0:08:99:5b:c6:e5:a6:80: 91:8d:48:5a:f1:7a:71:c3:84:84:ba:e0:1b:60:bd: 58:9b:58:85:e6:02:f3:8e:c9:08:0c:39:c3:03:dd: 0e:b7:45:83:ca:b9:39:90:7d:64:d6:91:e2:c5:58: 43:0b:33:60:98:c8:62:bf:48:b9:0f:94:da:f9:8b: cc:a9:8e:0c:72:d8:2c:1f:0d:b1:bf:0b:dd:8b:9f: 01:e9:65:a4:03:37:c1:70:c3:a1:6e:a2:2d:1b:c8: f5:ea:9e:13:fe:29:4d:7c:0f:a1:3a:7f:0b:d4:42: 8a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E8:A8:04:FB:85:C1:AC:37:47:DC:43:80:B9:F4:59:5C:77:48:86 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/duioBPuFwaw3R9xDgLn0WVx3SIY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.3.0/24 Signature Algorithm: sha256WithRSAEncryption 20:70:37:76:89:06:78:fd:a9:32:f2:d0:f1:2a:df:a4:9d:ee: ad:99:96:87:86:c2:a1:31:a3:5a:c9:2f:cd:85:b1:7d:04:f6: d9:c0:25:fe:8f:67:44:ad:65:5d:02:c9:b4:9a:34:2e:6d:df: e8:33:2f:be:50:0a:1c:9b:51:cc:c9:22:9c:d5:18:f8:99:21: 96:fd:04:22:a6:d2:e0:55:a7:37:40:87:30:bf:1b:5d:ab:dd: 3a:54:fe:52:f1:c3:ed:26:13:29:c9:dd:06:a7:e7:5c:0b:5e: 20:82:87:7b:66:46:ac:b9:95:ee:db:7f:16:de:be:1a:3f:a0: 42:d2:9b:99:05:d7:1f:3c:ff:45:a8:4c:08:ae:ac:31:2f:20: dc:a5:83:88:89:9d:39:aa:46:7d:cc:0b:03:f6:b9:89:b7:97: 98:fc:69:b1:c5:47:98:c1:47:56:ac:32:47:6c:b7:9f:ec:ae: d0:1b:5a:2f:df:f7:73:93:e2:22:53:aa:fe:dd:c5:b0:50:a6: 78:49:93:aa:bb:96:3b:b4:45:4d:25:9f:e9:32:e8:84:f0:ed: 10:af:2b:0f:ec:7e:38:58:68:c0:9a:d3:a0:70:b0:61:e6:cb: 5f:44:b4:71:85:1f:ae:6b:3f:f4:68:9c:0b:64:f7:85:64:b6: 05:81:cc:4a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE80wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc2RThBODA0RkI4NUMx QUMzNzQ3REM0MzgwQjlGNDU5NUM3NzQ4ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMpAyMW5aoAmqXmOWIryb9a4YQTSJHM2NVjRUWzkH9SHZqc8IH vQ8YRJCtTGuqhKBThHSGNwR+0FDKDY4Uqj9o88T6n8UgYOc37ATs4S+J3kkpcIN3 +9qHd54z/H50UIeiY+Tb5XLGr80xVGEpWULqPrmBE13msuj7M60uc2waXjIespit YinozU/15v3wCJlbxuWmgJGNSFrxenHDhIS64BtgvVibWIXmAvOOyQgMOcMD3Q63 RYPKuTmQfWTWkeLFWEMLM2CYyGK/SLkPlNr5i8ypjgxy2CwfDbG/C92LnwHpZaQD N8Fww6Fuoi0byPXqnhP+KU18D6E6fwvUQoopAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUduioBPuFwaw3R9xDgLn0WVx3SIYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9kdWlvQlB1RndhdzNS OXhEZ0xuMFdWeDNTSVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQDMA0GCSqGSIb3DQEBCwUAA4IBAQAgcDd2iQZ4/aky8tDxKt+kne6tmZaH hsKhMaNayS/NhbF9BPbZwCX+j2dErWVdAsm0mjQubd/oMy++UAocm1HMySKc1Rj4 mSGW/QQiptLgVac3QIcwvxtdq906VP5S8cPtJhMpyd0Gp+dcC14ggod7ZkasuZXu 238W3r4aP6BC0puZBdcfPP9FqEwIrqwxLyDcpYOIiZ05qkZ9zAsD9rmJt5eY/Gmx xUeYwUdWrDJHbLef7K7QG1ov3/dzk+IiU6r+3cWwUKZ4SZOqu5Y7tEVNJZ/pMuiE 8O0QrysP7H44WGjAmtOgcLBh5stfRLRxhR+uaz/0aJwLZPeFZLYFgcxK -----END CERTIFICATE-----Generated at Sun Sep 7 12:45:01 2025 by rpki-client