$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tHMh6vvJ5oKzXa-h21c6bWEUJwc.roa File: tHMh6vvJ5oKzXa-h21c6bWEUJwc.roa (raw, json) Hash identifier: g1aYXKprt2YNzb7hEucR1citreNbjAGbq81jzTchO4g= Subject key identifier: B4:73:21:EA:FB:C9:E6:82:B3:5D:AF:A1:DB:57:3A:6D:61:14:27:07 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 142E Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tHMh6vvJ5oKzXa-h21c6bWEUJwc.roa Signing time: Fri 22 Aug 2025 08:57:38 +0000 ROA not before: Fri 22 Aug 2025 08:57:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17408 IP address blocks: 150.116.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5166 (0x142e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B47321EAFBC9E682B35DAFA1DB573A6D61142707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e3:ac:e6:74:bd:d2:b9:ef:55:97:a3:08:4b: 4c:fe:3b:ad:ad:d0:e7:5e:ea:69:5e:a7:11:26:51: 22:4e:3c:f9:bb:7a:9d:a3:fb:a5:07:47:10:9e:f0: c4:e2:8e:6e:96:b7:15:09:43:24:0e:5d:c4:a2:14: 7a:fa:8b:52:ef:8a:36:ce:9f:61:36:73:d8:ed:32: 1a:c0:dd:38:ff:12:6a:77:e5:0d:5b:22:d5:0b:6f: 2a:8a:98:cb:19:99:3d:5f:25:d9:95:00:50:a3:d8: 69:74:d7:7b:26:ef:f1:49:c2:4d:92:42:61:10:40: 11:a7:e9:71:1f:e6:f3:06:30:7e:c0:72:7a:b9:b9: 9c:e4:7b:df:9e:7e:70:17:0f:d4:b9:75:69:94:62: bd:f5:0f:f3:de:64:c7:75:2b:03:a5:5d:78:e5:60: de:bb:e6:fd:b1:bc:56:67:2e:37:ad:5b:d7:6b:73: e8:44:ae:12:43:4c:78:10:3d:dd:ca:82:a6:9b:fc: 76:ed:10:60:5c:4f:d3:02:39:44:df:49:f6:07:12: 04:f6:3f:0d:d3:b3:43:2a:c4:a4:03:1a:6b:c9:e5: cf:c5:e4:29:b7:27:9c:5a:1f:f2:3e:3b:3f:5d:8a: d6:2e:c4:e2:f9:af:f0:27:99:68:5e:ae:35:a9:01: 18:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:73:21:EA:FB:C9:E6:82:B3:5D:AF:A1:DB:57:3A:6D:61:14:27:07 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tHMh6vvJ5oKzXa-h21c6bWEUJwc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.11.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:5d:14:92:bf:23:68:ba:7f:e3:c8:16:9f:5f:95:87:17:2c: a7:78:82:06:f6:84:9f:d1:e3:70:c4:03:4b:93:b7:85:7b:07: b3:df:de:f8:57:f8:dc:df:4c:23:c9:b6:71:e5:4d:25:57:dd: c4:a0:cb:94:0a:d8:aa:03:8e:45:16:16:02:73:6d:0a:11:eb: 57:92:97:08:f7:74:f2:23:c2:a7:58:0f:d6:07:a7:93:bb:b9: b3:5b:1e:b2:8b:f1:80:18:8c:51:41:d5:73:1c:01:75:41:7f: 4d:b2:67:ad:48:82:e3:6f:4c:70:fb:d9:6a:8c:00:82:49:9a: ab:ef:d8:7e:c6:93:af:6f:09:d0:01:6d:72:56:21:e4:de:f2: 6b:f2:82:2f:c4:84:2d:e6:48:66:90:c9:1c:14:b3:63:8f:59: d4:97:d1:4f:23:d0:3f:e2:31:05:0b:21:0e:52:71:ad:e0:c8: c0:91:16:bb:c9:03:3a:0e:a5:9c:c6:ed:49:d1:61:2e:57:33: 0c:1f:7b:32:e1:85:1f:2a:00:1f:2b:07:7a:de:9c:57:b6:38: a6:6d:0e:20:c4:89:9b:c5:84:74:fe:40:82:0f:6d:6f:2f:fa: 98:8f:6e:84:38:28:58:c8:01:1c:b6:8a:4d:ab:f3:3e:57:99: 23:d4:a4:63 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFC4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI0NzMyMUVBRkJDOUU2 ODJCMzVEQUZBMURCNTczQTZENjExNDI3MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD46zmdL3Sue9Vl6MIS0z+O62t0Ode6mlepxEmUSJOPPm7ep2j +6UHRxCe8MTijm6WtxUJQyQOXcSiFHr6i1LvijbOn2E2c9jtMhrA3Tj/Emp35Q1b ItULbyqKmMsZmT1fJdmVAFCj2Gl013sm7/FJwk2SQmEQQBGn6XEf5vMGMH7Acnq5 uZzke9+efnAXD9S5dWmUYr31D/PeZMd1KwOlXXjlYN675v2xvFZnLjetW9drc+hE rhJDTHgQPd3Kgqab/HbtEGBcT9MCOUTfSfYHEgT2Pw3Ts0MqxKQDGmvJ5c/F5Cm3 J5xaH/I+Oz9ditYuxOL5r/AnmWherjWpARh/AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUtHMh6vvJ5oKzXa+h21c6bWEUJwcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy90SE1oNnZ2SjVvS3pY YS1oMjFjNmJXRVVKd2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQLMA0GCSqGSIb3DQEBCwUAA4IBAQCdXRSSvyNoun/jyBafX5WHFyyneIIG 9oSf0eNwxANLk7eFewez3974V/jc30wjybZx5U0lV93EoMuUCtiqA45FFhYCc20K EetXkpcI93TyI8KnWA/WB6eTu7mzWx6yi/GAGIxRQdVzHAF1QX9NsmetSILjb0xw +9lqjACCSZqr79h+xpOvbwnQAW1yViHk3vJr8oIvxIQt5khmkMkcFLNjj1nUl9FP I9A/4jEFCyEOUnGt4MjAkRa7yQM6DqWcxu1J0WEuVzMMH3sy4YUfKgAfKwd63pxX tjimbQ4gxImbxYR0/kCCD21vL/qYj26EOChYyAEctopNq/M+V5kj1KRj -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:48 2025 by rpki-client