$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/s0t3MqVpO04bcsqgjjskirsEzdg.roa File: s0t3MqVpO04bcsqgjjskirsEzdg.roa (raw, json) Hash identifier: v3kXDiJaV1fHOAkXgXohMK1Hgd3QyQbzkY7BHRAAxVg= Subject key identifier: B3:4B:77:32:A5:69:3B:4E:1B:72:CA:A0:8E:3B:24:8A:BB:04:CD:D8 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1406 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/s0t3MqVpO04bcsqgjjskirsEzdg.roa Signing time: Fri 22 Aug 2025 08:57:29 +0000 ROA not before: Fri 22 Aug 2025 08:57:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5126 (0x1406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B34B7732A5693B4E1B72CAA08E3B248ABB04CDD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:77:95:a4:c4:cd:8e:e2:53:9e:20:b0:ad:41: a3:7d:27:0c:ed:42:fc:ab:57:b0:37:b3:cd:9b:73: 0f:09:34:f0:ed:92:f2:2d:94:f3:9b:44:bc:3d:16: b6:69:b9:bc:41:45:d5:db:6c:e2:d6:79:ff:0a:04: b5:4b:69:6c:bd:29:16:c3:f3:80:9d:c6:25:a4:19: 4e:72:0b:d3:aa:ee:45:aa:56:cc:7b:a7:3b:05:2f: ee:9b:05:5c:63:54:63:49:e3:ec:1f:2e:eb:44:c0: d2:1d:94:8d:b3:ef:c3:25:d8:a4:18:d6:bd:18:c8: 20:28:80:ab:12:6a:b2:6b:a0:23:36:6c:a9:c1:ff: 9a:13:0f:ff:18:ce:a5:46:ef:9b:d6:53:70:ee:5f: 07:d1:63:6c:c7:14:5a:33:68:23:4d:65:fa:ec:b4: 4b:b1:3c:2e:f1:be:1a:0f:b0:98:7e:a8:7d:88:88: 69:d0:00:9e:03:02:fe:8c:a7:3b:de:40:94:79:8d: f4:e4:eb:45:49:5b:41:0a:da:6f:2b:c4:33:06:05: d7:fa:df:d3:e3:e5:49:87:38:61:90:dd:ad:d2:f5: b8:c2:6a:5e:40:30:e0:71:af:5f:e2:11:ce:3e:ab: 0f:b7:83:3b:a1:84:8a:8c:90:71:79:ef:6a:9e:34: d2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:4B:77:32:A5:69:3B:4E:1B:72:CA:A0:8E:3B:24:8A:BB:04:CD:D8 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/s0t3MqVpO04bcsqgjjskirsEzdg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.170.0/23 Signature Algorithm: sha256WithRSAEncryption 81:a6:81:93:00:ed:63:74:90:6c:da:cb:cd:a3:bd:11:14:12: 64:ef:3b:b1:ee:3a:ff:7a:9e:b9:55:e8:df:a1:48:ab:1d:7a: 2a:7e:92:fa:2b:86:54:31:11:37:61:03:42:5d:e2:70:cf:48: 19:22:17:fb:4d:61:d9:6b:19:d5:3d:e8:46:8c:c6:32:e8:dd: c0:23:c6:34:b7:d5:33:5f:76:3e:05:2e:60:ea:4f:98:ea:21: db:b7:3f:0b:da:f8:d2:8f:95:92:2a:9c:e8:48:4e:e2:bc:1a: 50:cc:fa:05:42:b8:b2:f4:29:bc:1c:0b:82:45:d7:c0:c8:eb: 07:e8:91:27:25:71:6d:d4:27:f5:76:8a:fa:f0:4a:6a:50:58: 36:3c:f2:15:0d:c8:6d:5a:80:85:5c:54:fd:63:f7:a3:2a:7f: 0c:f9:16:c5:c3:5a:63:51:fb:a4:83:72:3b:a2:f7:50:11:fa: fc:b8:63:d9:c8:20:12:03:a2:ef:04:a8:11:bb:14:89:b4:f3: dc:d8:ba:b5:c1:f8:d3:7c:a8:1e:1c:01:be:fb:26:b7:8e:5f: 69:51:f1:21:cc:84:ca:a6:2a:8b:1d:5c:ea:e0:d3:62:57:2b: 1a:73:98:06:f4:e3:76:26:a0:e9:4f:94:a7:53:05:99:64:7a: 39:1c:22:95 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFAYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIzNEI3NzMyQTU2OTNC NEUxQjcyQ0FBMDhFM0IyNDhBQkIwNENERDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpd5WkxM2O4lOeILCtQaN9JwztQvyrV7A3s82bcw8JNPDtkvIt lPObRLw9FrZpubxBRdXbbOLWef8KBLVLaWy9KRbD84CdxiWkGU5yC9Oq7kWqVsx7 pzsFL+6bBVxjVGNJ4+wfLutEwNIdlI2z78Ml2KQY1r0YyCAogKsSarJroCM2bKnB /5oTD/8YzqVG75vWU3DuXwfRY2zHFFozaCNNZfrstEuxPC7xvhoPsJh+qH2IiGnQ AJ4DAv6MpzveQJR5jfTk60VJW0EK2m8rxDMGBdf639Pj5UmHOGGQ3a3S9bjCal5A MOBxr1/iEc4+qw+3gzuhhIqMkHF572qeNNLVAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUs0t3MqVpO04bcsqgjjskirsEzdgwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9zMHQzTXFWcE8wNGJj c3Fnampza2lyc0V6ZGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnSqMA0GCSqGSIb3DQEBCwUAA4IBAQCBpoGTAO1jdJBs2svNo70RFBJk7zux 7jr/ep65VejfoUirHXoqfpL6K4ZUMRE3YQNCXeJwz0gZIhf7TWHZaxnVPehGjMYy 6N3AI8Y0t9UzX3Y+BS5g6k+Y6iHbtz8L2vjSj5WSKpzoSE7ivBpQzPoFQriy9Cm8 HAuCRdfAyOsH6JEnJXFt1Cf1dor68EpqUFg2PPIVDchtWoCFXFT9Y/ejKn8M+RbF w1pjUfukg3I7ovdQEfr8uGPZyCASA6LvBKgRuxSJtPPc2Lq1wfjTfKgeHAG++ya3 jl9pUfEhzITKpiqLHVzq4NNiVysac5gG9ON2JqDpT5SnUwWZZHo5HCKV -----END CERTIFICATE-----Generated at Sat Sep 6 13:53:45 2025 by rpki-client