$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qHyFddK8lRd79XY62rb3xuqWt50.roa File: qHyFddK8lRd79XY62rb3xuqWt50.roa (raw, json) Hash identifier: KDKMycFiBTgNP/eWRWIvBrTDhZ9DOyZrfEz0nbXY7PA= Subject key identifier: A8:7C:85:75:D2:BC:95:17:7B:F5:76:3A:DA:B6:F7:C6:EA:96:B7:9D Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 142D Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qHyFddK8lRd79XY62rb3xuqWt50.roa Signing time: Fri 22 Aug 2025 08:57:37 +0000 ROA not before: Fri 22 Aug 2025 08:57:37 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 10085 IP address blocks: 203.163.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5165 (0x142d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:37 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A87C8575D2BC95177BF5763ADAB6F7C6EA96B79D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1d:bc:67:09:63:29:96:e2:54:a7:b1:51:42: 61:b7:1f:45:51:5b:12:e8:de:62:35:71:70:7a:a2: ca:cd:ed:54:81:58:32:72:54:ad:36:b5:ea:8d:30: 1c:a5:1c:c7:7c:43:e4:d3:78:f3:95:af:f2:bb:df: af:16:31:ce:da:74:ae:92:1b:4b:82:f6:5c:33:85: ad:2a:24:84:f9:4f:fe:46:86:f7:28:80:fe:bc:06: f0:a7:7e:b0:f8:8b:29:8f:da:2a:94:fd:52:f3:7b: 31:fd:fc:ad:16:1c:4a:49:75:48:71:a2:f0:aa:d6: b3:d7:1a:7d:3b:fc:fc:70:ed:d3:e8:47:b1:4f:47: 65:0d:a2:3c:d1:1c:07:97:04:ca:de:9d:10:29:54: b0:6c:33:bf:b1:79:e9:d0:88:cd:09:2f:5f:e0:c5: d0:dc:43:6b:86:f7:07:dd:a8:d0:32:c1:fe:62:da: 3a:b3:c6:ef:f8:ce:c9:8c:5f:50:10:0f:90:af:37: 96:7b:70:29:8f:5d:9e:6b:01:24:b9:c6:9f:9d:73: 72:68:3f:fe:ea:ad:25:f3:c1:19:fb:08:47:63:d8: 0f:b9:38:ee:d7:e7:93:24:e1:fe:34:c4:6c:c2:15: bd:f6:67:84:f0:27:bf:d8:e2:2d:82:0a:68:2d:26: e9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:7C:85:75:D2:BC:95:17:7B:F5:76:3A:DA:B6:F7:C6:EA:96:B7:9D X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qHyFddK8lRd79XY62rb3xuqWt50.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.208.0/22 Signature Algorithm: sha256WithRSAEncryption 73:19:aa:61:60:81:f5:08:ed:a7:19:30:fb:d6:4e:99:48:23: 65:16:fa:f7:25:98:98:db:a1:5e:25:01:9d:64:3a:23:5e:19: 9d:0b:c8:83:a8:28:12:77:8e:44:0a:1b:7a:62:79:d6:22:8a: a2:99:c0:ba:9b:d5:bb:0c:84:4f:b2:07:a3:f6:46:e6:f5:d5: 3e:7f:60:aa:03:8c:a7:8b:8d:ea:7e:77:64:3d:ac:e4:23:ba: 39:df:f9:82:bd:2d:e5:95:45:c1:9e:e6:f2:c0:b6:59:73:16: 51:36:4c:76:1f:22:81:2d:cb:6b:45:29:05:3d:11:1e:bf:0e: b8:ef:ca:99:54:8e:5d:ea:00:48:5d:6a:ce:43:42:a3:9e:35: f6:bf:87:d6:9b:54:81:af:40:f9:69:73:89:17:85:f6:b4:3c: 5e:5d:75:4b:7d:c8:a3:ea:37:82:98:e9:ab:3f:e3:85:a5:e1: e6:52:24:a8:91:a0:aa:83:c6:64:86:da:95:52:48:01:34:a6: e8:e9:98:56:ab:b9:04:ea:67:37:50:ab:2e:00:08:7e:36:81: c2:9c:6c:c5:bd:5b:92:2d:c1:e2:10:de:ad:48:f7:3e:a1:62: 55:52:3d:9b:03:18:b3:6a:df:0c:88:c1:ff:17:de:cc:86:05: d5:f3:82:38 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFC0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEE4N0M4NTc1RDJCQzk1 MTc3QkY1NzYzQURBQjZGN0M2RUE5NkI3OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHHbxnCWMpluJUp7FRQmG3H0VRWxLo3mI1cXB6osrN7VSBWDJy VK02teqNMBylHMd8Q+TTePOVr/K7368WMc7adK6SG0uC9lwzha0qJIT5T/5Ghvco gP68BvCnfrD4iymP2iqU/VLzezH9/K0WHEpJdUhxovCq1rPXGn07/Pxw7dPoR7FP R2UNojzRHAeXBMrenRApVLBsM7+xeenQiM0JL1/gxdDcQ2uG9wfdqNAywf5i2jqz xu/4zsmMX1AQD5CvN5Z7cCmPXZ5rASS5xp+dc3JoP/7qrSXzwRn7CEdj2A+5OO7X 55Mk4f40xGzCFb32Z4TwJ7/Y4i2CCmgtJukHAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUqHyFddK8lRd79XY62rb3xuqWt50wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9xSHlGZGRLOGxSZDc5 WFk2MnJiM3h1cVd0NTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCy6PQMA0GCSqGSIb3DQEBCwUAA4IBAQBzGaphYIH1CO2nGTD71k6ZSCNlFvr3 JZiY26FeJQGdZDojXhmdC8iDqCgSd45ECht6YnnWIoqimcC6m9W7DIRPsgej9kbm 9dU+f2CqA4yni43qfndkPazkI7o53/mCvS3llUXBnubywLZZcxZRNkx2HyKBLctr RSkFPREevw6478qZVI5d6gBIXWrOQ0KjnjX2v4fWm1SBr0D5aXOJF4X2tDxeXXVL fcij6jeCmOmrP+OFpeHmUiSokaCqg8ZkhtqVUkgBNKbo6ZhWq7kE6mc3UKsuAAh+ NoHCnGzFvVuSLcHiEN6tSPc+oWJVUj2bAxizat8MiMH/F97MhgXV84I4 -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:38 2025 by rpki-client