$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k-RNeRob3T0yLw8Xk0aqY9FBsRI.roa File: k-RNeRob3T0yLw8Xk0aqY9FBsRI.roa (raw, json) Hash identifier: 9uZkGTzGVoFPduLnPcN8kDzbzQuu14heuKSz01Ub93A= Subject key identifier: 93:E4:4D:79:1A:1B:DD:3D:32:2F:0F:17:93:46:AA:63:D1:41:B1:12 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13EC Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k-RNeRob3T0yLw8Xk0aqY9FBsRI.roa Signing time: Fri 22 Aug 2025 08:57:24 +0000 ROA not before: Fri 22 Aug 2025 08:57:24 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17408 IP address blocks: 113.21.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5100 (0x13ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=93E44D791A1BDD3D322F0F179346AA63D141B112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e3:85:7a:ac:99:4a:d3:5d:8d:eb:bf:4a:d3: 8e:3e:f3:93:c7:70:f8:46:73:9f:58:03:38:55:5e: 25:1b:72:8e:1a:d5:46:d8:63:1a:23:af:7d:11:28: 09:3d:8e:8d:da:9e:e8:ec:90:df:54:db:cd:41:cb: ee:85:df:c9:fc:99:cf:3e:7b:3a:4e:19:5e:ae:72: 2f:14:e6:cf:50:5a:49:05:64:67:25:f5:1d:57:23: 31:f9:97:b0:23:f3:70:d3:65:0d:5f:5b:c3:06:17: 64:b9:39:10:c2:5d:2a:e5:e4:86:5d:c5:41:7a:81: 8e:03:ef:b4:96:4b:17:a4:95:03:a6:04:3b:7c:2e: 54:d1:61:e4:90:b3:3b:66:81:bb:28:47:f7:6e:d9: 2f:e1:82:98:9a:fe:16:0f:d9:f6:3f:0e:94:03:48: 53:19:28:bf:e4:bb:a1:6d:2b:62:dc:74:95:d6:69: 0f:8c:a3:e3:29:1a:8c:36:3a:46:57:29:bb:82:74: 11:d9:8b:26:de:55:35:f7:69:c5:ec:4d:af:de:36: e4:9b:5c:75:0f:52:8b:a9:48:75:21:b5:4e:ae:a8: 75:4a:66:dc:0b:96:f3:fb:f5:d9:6f:97:7e:79:f1: 0a:0b:17:7f:f8:08:3e:e1:03:e0:9e:59:bc:7c:c9: 0e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E4:4D:79:1A:1B:DD:3D:32:2F:0F:17:93:46:AA:63:D1:41:B1:12 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k-RNeRob3T0yLw8Xk0aqY9FBsRI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.88.0/21 Signature Algorithm: sha256WithRSAEncryption 97:04:7e:03:23:49:14:c7:44:4d:d9:d5:07:1a:eb:13:b7:03: 20:7d:ac:57:74:57:3a:29:2e:5f:03:f9:60:83:40:d6:5c:12: 09:ec:56:9e:f2:a8:fb:93:b8:f9:b9:a5:dc:05:0e:ed:70:42: 83:50:18:64:f5:41:03:56:32:35:25:08:d5:b7:27:e1:ef:e5: fe:ed:3a:2d:ef:29:b0:72:2c:35:a9:79:d0:93:24:d6:df:bd: 3d:e3:38:4d:ac:44:ce:aa:28:90:e4:50:6f:19:88:9e:55:38: f6:e4:96:ee:a3:df:be:5f:01:3e:2a:6a:a0:0c:13:29:e3:94: d3:21:f3:ca:41:8b:58:34:8e:2c:02:cb:1b:e5:1e:8a:26:7a: 78:ed:72:1a:6e:86:88:fc:45:a4:93:9e:3b:ac:bc:01:1e:28: a2:0f:f2:9a:0f:20:5e:0c:89:c6:12:6e:b6:80:4c:b8:ca:31: b0:ea:ff:2b:ae:41:37:20:81:5b:25:07:c6:78:fe:bb:4a:f2: ef:c0:82:58:63:0d:a2:33:21:9a:b0:70:37:b3:a8:26:14:39: 08:fb:fc:79:9d:b3:95:d1:c2:dd:7c:98:ff:1d:41:a7:54:8c: 3e:30:51:1d:cc:bd:63:ef:8c:ee:94:d9:41:d2:35:fe:90:0c: 5e:95:33:76 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE+wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkzRTQ0RDc5MUExQkRE M0QzMjJGMEYxNzkzNDZBQTYzRDE0MUIxMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv44V6rJlK012N679K044+85PHcPhGc59YAzhVXiUbco4a1UbY Yxojr30RKAk9jo3anujskN9U281By+6F38n8mc8+ezpOGV6uci8U5s9QWkkFZGcl 9R1XIzH5l7Aj83DTZQ1fW8MGF2S5ORDCXSrl5IZdxUF6gY4D77SWSxeklQOmBDt8 LlTRYeSQsztmgbsoR/du2S/hgpia/hYP2fY/DpQDSFMZKL/ku6FtK2LcdJXWaQ+M o+MpGow2OkZXKbuCdBHZiybeVTX3acXsTa/eNuSbXHUPUoupSHUhtU6uqHVKZtwL lvP79dlvl3558QoLF3/4CD7hA+CeWbx8yQ5/AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUk+RNeRob3T0yLw8Xk0aqY9FBsRIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9rLVJOZVJvYjNUMHlM dzhYazBhcVk5RkJzUkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDcRVYMA0GCSqGSIb3DQEBCwUAA4IBAQCXBH4DI0kUx0RN2dUHGusTtwMgfaxX dFc6KS5fA/lgg0DWXBIJ7Fae8qj7k7j5uaXcBQ7tcEKDUBhk9UEDVjI1JQjVtyfh 7+X+7Tot7ymwciw1qXnQkyTW37094zhNrETOqiiQ5FBvGYieVTj25Jbuo9++XwE+ KmqgDBMp45TTIfPKQYtYNI4sAssb5R6KJnp47XIaboaI/EWkk547rLwBHiiiD/Ka DyBeDInGEm62gEy4yjGw6v8rrkE3IIFbJQfGeP67SvLvwIJYYw2iMyGasHA3s6gm FDkI+/x5nbOV0cLdfJj/HUGnVIw+MFEdzL1j74zulNlB0jX+kAxelTN2 -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:41 2025 by rpki-client