$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sG3F82p54VgGoVx7e2YPiSTCt64.roa File: sG3F82p54VgGoVx7e2YPiSTCt64.roa (raw, json) Hash identifier: 5NrzdA18h+JcW1YbGrc3ZisAIZ1tAPkRMv24FmhQV00= Subject key identifier: B0:6D:C5:F3:6A:79:E1:58:06:A1:5C:7B:7B:66:0F:89:24:C2:B7:AE Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1433 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sG3F82p54VgGoVx7e2YPiSTCt64.roa Signing time: Fri 22 Aug 2025 08:57:39 +0000 ROA not before: Fri 22 Aug 2025 08:57:39 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5171 (0x1433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B06DC5F36A79E15806A15C7B7B660F8924C2B7AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cf:1d:ac:b9:9f:4e:6c:19:8b:5f:b1:3c:da: 58:9a:2e:6d:bb:3d:09:f5:39:fb:c9:be:03:00:5c: b0:d4:f0:4f:7f:34:6b:dd:d8:a3:5c:8a:a5:21:93: 00:3d:6b:b3:ac:bf:19:57:d0:f4:88:f0:0f:fc:b3: 9e:d2:c4:ca:15:8c:68:51:ca:68:cd:1a:09:97:46: 66:04:ec:c4:23:1b:db:cc:7f:6a:eb:36:cc:f6:cf: 35:90:34:b3:3a:43:23:d0:24:52:93:66:39:31:d1: f6:b9:a1:37:6c:71:0b:34:0b:f8:48:02:df:53:3b: d6:7e:84:9f:93:aa:9b:78:20:59:11:d3:e8:cf:93: a0:f7:8a:b5:18:71:d6:26:a4:ba:41:07:52:6b:15: f1:36:bc:34:b8:c4:f6:74:dd:a1:f7:c9:21:fd:f8: 60:74:4f:e8:00:e0:b4:c8:d1:b1:69:56:59:0b:66: 31:be:4e:60:e2:e4:5b:e6:53:25:cc:0f:e7:03:79: e4:9a:14:df:63:5c:42:20:68:53:03:fa:7b:e2:8e: 5e:a2:ad:c2:ac:48:94:53:4f:6b:9c:2c:43:3e:ef: 5e:2d:b2:4d:41:82:1b:68:ab:8c:95:33:d8:14:06: a9:f5:d4:35:7d:5f:04:ba:73:01:5a:10:11:34:44: 7b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:6D:C5:F3:6A:79:E1:58:06:A1:5C:7B:7B:66:0F:89:24:C2:B7:AE X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sG3F82p54VgGoVx7e2YPiSTCt64.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.224.0/21 Signature Algorithm: sha256WithRSAEncryption 9d:31:99:78:a4:bf:36:cd:af:e7:e2:fa:00:ff:5d:e9:3d:9d: 0e:75:1d:d3:40:49:48:95:fe:4d:ff:f6:bd:cb:55:87:21:24: 1f:29:65:f4:1b:02:3d:17:45:33:e1:c8:0b:f3:11:29:81:e7: a1:8b:9c:8a:4e:85:c0:4f:77:5a:df:07:97:37:04:2c:e0:5a: 32:ff:ad:68:23:5f:b6:b5:43:d1:25:21:87:e0:08:a6:2b:2c: bd:4f:cb:0e:34:01:68:d3:05:31:e8:29:3c:14:3d:a3:f7:9c: 72:19:39:92:68:32:f7:11:92:c1:1a:c8:05:90:96:d5:f5:24: 11:fb:c3:c7:a5:e5:7b:b3:c6:c7:eb:a7:5c:1e:05:97:5a:04: 51:1d:a7:9d:03:4d:44:9d:f7:a5:1f:c4:8f:7e:3c:3d:e0:86: dc:50:6a:0c:3c:12:7e:99:00:1d:4a:06:3d:ff:3b:91:6b:b0: 90:4c:52:56:80:de:de:0d:6d:e0:49:4d:fd:37:8d:6a:e7:95: 50:29:84:b3:bf:f6:55:11:b5:5e:a9:74:70:88:a5:cb:65:c4: 18:8c:16:e6:9d:22:59:53:3c:b2:65:0e:93:c9:20:04:e3:74: 7c:68:44:e8:3c:57:a7:1c:4c:5e:5a:fe:4f:4f:c4:51:69:b1: 9b:b0:33:bd -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFDMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIwNkRDNUYzNkE3OUUx NTgwNkExNUM3QjdCNjYwRjg5MjRDMkI3QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPzx2suZ9ObBmLX7E82liaLm27PQn1OfvJvgMAXLDU8E9/NGvd 2KNciqUhkwA9a7OsvxlX0PSI8A/8s57SxMoVjGhRymjNGgmXRmYE7MQjG9vMf2rr Nsz2zzWQNLM6QyPQJFKTZjkx0fa5oTdscQs0C/hIAt9TO9Z+hJ+Tqpt4IFkR0+jP k6D3irUYcdYmpLpBB1JrFfE2vDS4xPZ03aH3ySH9+GB0T+gA4LTI0bFpVlkLZjG+ TmDi5FvmUyXMD+cDeeSaFN9jXEIgaFMD+nvijl6ircKsSJRTT2ucLEM+714tsk1B ghtoq4yVM9gUBqn11DV9XwS6cwFaEBE0RHvrAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUsG3F82p54VgGoVx7e2YPiSTCt64wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9zRzNGODJwNTRWZ0dv Vng3ZTJZUGlTVEN0NjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnTgMA0GCSqGSIb3DQEBCwUAA4IBAQCdMZl4pL82za/n4voA/13pPZ0OdR3T QElIlf5N//a9y1WHISQfKWX0GwI9F0Uz4cgL8xEpgeehi5yKToXAT3da3weXNwQs 4Foy/61oI1+2tUPRJSGH4AimKyy9T8sONAFo0wUx6Ck8FD2j95xyGTmSaDL3EZLB GsgFkJbV9SQR+8PHpeV7s8bH66dcHgWXWgRRHaedA01EnfelH8SPfjw94IbcUGoM PBJ+mQAdSgY9/zuRa7CQTFJWgN7eDW3gSU39N41q55VQKYSzv/ZVEbVeqXRwiKXL ZcQYjBbmnSJZUzyyZQ6TySAE43R8aEToPFenHExeWv5PT8RRabGbsDO9 -----END CERTIFICATE-----Generated at Sat Sep 6 13:48:18 2025 by rpki-client