$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mWjIJs-3Al5Js6gL-C7Ayxh_t2A.roa File: mWjIJs-3Al5Js6gL-C7Ayxh_t2A.roa (raw, json) Hash identifier: 0KkTA3Qw7yAiIcQc3lWoWX+VBFVUJgYUeBvQXJPlGPc= Subject key identifier: 99:68:C8:26:CF:B7:02:5E:49:B3:A8:0B:F8:2E:C0:CB:18:7F:B7:60 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13BF Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mWjIJs-3Al5Js6gL-C7Ayxh_t2A.roa Signing time: Fri 22 Aug 2025 08:57:14 +0000 ROA not before: Fri 22 Aug 2025 08:57:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10085 IP address blocks: 203.163.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5055 (0x13bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9968C826CFB7025E49B3A80BF82EC0CB187FB760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:53:19:85:57:62:b1:f9:ca:57:c6:ad:95:c3: 3b:3b:bf:81:a3:ac:c0:a0:5d:2c:b7:67:1a:71:e5: bf:21:3f:4a:df:08:ad:ef:aa:ce:4a:9b:74:9a:4e: 6b:f9:28:3b:8e:ff:f2:70:ee:e2:2a:86:d2:64:18: 3e:e1:13:1c:b1:26:d8:55:d5:07:6d:75:1c:98:81: c8:d0:35:28:e2:c0:2c:c5:7e:12:ec:2c:00:3d:c8: cc:63:f6:d4:b5:7c:2b:a4:97:47:3d:32:b1:a9:d4: b6:4e:91:af:ac:11:0b:d0:4e:b2:fd:69:c0:03:cb: 13:97:92:de:25:db:6b:e8:68:c3:3c:dd:0f:a0:0f: 12:54:f9:67:87:c1:33:31:cf:d6:08:32:51:c9:61: 04:e4:d3:d5:ea:0b:a3:2c:bb:8a:b2:35:79:ef:21: 1a:1e:6d:ed:88:3a:a8:80:9d:cc:ac:f7:11:c0:9e: c6:37:af:ef:c8:58:03:8d:1b:d1:04:34:42:a8:b7: 32:b2:af:c8:80:e4:10:73:82:24:c0:f2:9b:b5:d4: 9c:03:bc:25:79:48:a7:18:74:a7:2b:63:60:c0:42: 5f:2f:2e:f4:ea:6b:d7:b5:26:0d:0b:cf:e9:51:fa: 09:8c:9e:0e:d2:60:f5:19:6c:3b:17:82:44:b1:67: 14:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:68:C8:26:CF:B7:02:5E:49:B3:A8:0B:F8:2E:C0:CB:18:7F:B7:60 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mWjIJs-3Al5Js6gL-C7Ayxh_t2A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.196.0/22 Signature Algorithm: sha256WithRSAEncryption 76:76:8a:ec:0c:d8:38:4f:76:1b:fc:32:74:f6:7e:bd:04:40: 04:03:db:38:91:29:73:63:11:19:53:54:f9:e3:3c:70:24:8e: f4:c1:e6:4a:b2:80:41:bd:5b:28:a1:09:1a:b8:ab:92:b1:d6: 72:02:6e:5f:e4:9f:74:e2:eb:72:bd:c0:42:00:41:17:d7:de: e5:1a:65:5d:07:34:41:bc:c2:e5:ce:2c:b2:5f:d4:f8:ee:b7: b3:c4:c6:1b:d4:61:77:be:f3:b0:b0:37:1a:15:1b:1a:c3:ab: e4:c9:9f:d5:6c:11:fb:79:a5:1b:5d:b0:53:69:b6:d5:39:4d: 5f:48:c8:0f:95:07:42:bb:88:f7:14:86:6e:19:f3:ed:8f:da: 2e:97:e5:71:c7:66:c0:0d:23:52:85:39:58:cb:fe:bf:82:ce: fe:38:92:0e:c9:53:a4:8f:0c:28:08:03:e4:80:eb:6d:69:f1: d3:d3:92:d3:48:c1:a5:e6:44:fd:c9:66:e8:c8:6e:8d:b0:5f: 11:49:cf:b6:ba:69:91:4e:71:ec:8e:e3:dd:e2:a0:d8:c9:2e: 49:03:f9:af:b7:55:84:3b:6b:09:74:95:6b:ba:ef:c5:ef:8f: ca:28:98:30:1a:24:b7:0d:0d:77:c6:04:1e:a2:f9:08:9a:4c: 2c:73:06:bd -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE78wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk5NjhDODI2Q0ZCNzAy NUU0OUIzQTgwQkY4MkVDMENCMTg3RkI3NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzUxmFV2Kx+cpXxq2Vwzs7v4GjrMCgXSy3Zxpx5b8hP0rfCK3v qs5Km3SaTmv5KDuO//Jw7uIqhtJkGD7hExyxJthV1QdtdRyYgcjQNSjiwCzFfhLs LAA9yMxj9tS1fCukl0c9MrGp1LZOka+sEQvQTrL9acADyxOXkt4l22voaMM83Q+g DxJU+WeHwTMxz9YIMlHJYQTk09XqC6Msu4qyNXnvIRoebe2IOqiAncys9xHAnsY3 r+/IWAONG9EENEKotzKyr8iA5BBzgiTA8pu11JwDvCV5SKcYdKcrY2DAQl8vLvTq a9e1Jg0Lz+lR+gmMng7SYPUZbDsXgkSxZxRBAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUmWjIJs+3Al5Js6gL+C7Ayxh/t2AwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9tV2pJSnMtM0FsNUpz NmdMLUM3QXl4aF90MkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCy6PEMA0GCSqGSIb3DQEBCwUAA4IBAQB2dorsDNg4T3Yb/DJ09n69BEAEA9s4 kSlzYxEZU1T54zxwJI70weZKsoBBvVsooQkauKuSsdZyAm5f5J904utyvcBCAEEX 197lGmVdBzRBvMLlziyyX9T47rezxMYb1GF3vvOwsDcaFRsaw6vkyZ/VbBH7eaUb XbBTabbVOU1fSMgPlQdCu4j3FIZuGfPtj9oul+Vxx2bADSNShTlYy/6/gs7+OJIO yVOkjwwoCAPkgOttafHT05LTSMGl5kT9yWboyG6NsF8RSc+2ummRTnHsjuPd4qDY yS5JA/mvt1WEO2sJdJVruu/F74/KKJgwGiS3DQ13xgQeovkImkwscwa9 -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:41 2025 by rpki-client