$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tMT8J6dGUglPit8P0AY9-TyOnx0.roa File: tMT8J6dGUglPit8P0AY9-TyOnx0.roa (raw, json) Hash identifier: J4FHCD10zKFDQCYwu4eFsl7EixoRKWb5V00Jwd+qqqA= Subject key identifier: B4:C4:FC:27:A7:46:52:09:4F:8A:DF:0F:D0:06:3D:F9:3C:8E:9F:1D Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1407 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tMT8J6dGUglPit8P0AY9-TyOnx0.roa Signing time: Fri 22 Aug 2025 08:57:30 +0000 ROA not before: Fri 22 Aug 2025 08:57:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131627 IP address blocks: 150.116.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5127 (0x1407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B4C4FC27A74652094F8ADF0FD0063DF93C8E9F1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:bd:c5:48:c8:30:8d:07:45:14:73:1e:89:93: 2b:57:88:18:ea:10:e1:e9:80:82:db:dc:4e:a8:61: e1:8c:6d:5d:90:74:9f:aa:e1:03:96:6a:32:07:09: 3e:15:59:5a:20:80:b7:e0:49:df:22:5c:cd:9f:fa: 95:52:92:65:46:1e:d1:01:73:6f:a8:52:92:5d:4d: 47:11:93:ec:ff:1d:6b:8f:61:81:b0:55:d1:c4:b5: 38:7c:cc:db:8d:ba:41:c5:d0:74:a8:ec:c8:20:65: 9e:b6:34:df:86:da:4b:47:88:6c:b7:eb:99:42:69: 84:0c:cb:01:fb:fe:1d:99:97:4b:99:2e:0f:fb:ad: 48:71:53:10:d2:61:6d:94:a1:9f:5f:fe:f9:f7:4a: e6:6e:e3:02:0c:c9:41:e4:fd:80:a8:f8:19:6a:49: 25:80:5e:e9:3b:58:d3:7b:89:f6:eb:47:de:df:f8: 6a:2f:e1:9b:a1:72:8d:c3:7e:70:34:11:a4:e8:50: cd:67:0f:75:59:54:62:15:e9:0b:45:e4:15:43:11: 8e:4a:c8:63:c9:9a:2e:cd:5c:c7:d2:2c:63:c4:af: a7:82:5c:92:b4:66:11:52:cf:ba:4a:ea:bf:82:92: d7:db:f6:d4:64:0c:78:57:84:cb:40:9c:1e:0b:2c: 84:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C4:FC:27:A7:46:52:09:4F:8A:DF:0F:D0:06:3D:F9:3C:8E:9F:1D X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tMT8J6dGUglPit8P0AY9-TyOnx0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.96.0/21 Signature Algorithm: sha256WithRSAEncryption 2b:29:83:ab:e4:87:28:bd:2a:a3:db:02:48:50:52:bb:b9:48: 91:62:c3:29:4b:5c:ad:6d:df:fe:f2:6b:89:14:85:83:64:9c: 76:79:7a:90:d8:a6:61:75:17:75:74:41:3c:84:61:a2:c3:4d: 3f:78:41:98:d7:b0:56:2a:31:16:f1:9e:17:d6:48:c4:5a:77: f1:6d:29:ad:2c:dc:58:a9:a6:bf:d1:ec:df:dc:09:e5:dc:e4: de:b3:e3:0d:3c:48:79:73:84:ec:c4:1c:fb:d4:60:9c:1d:ce: 66:e2:08:78:9b:8b:91:fb:95:c5:f9:38:67:8f:ad:d9:35:b5: b4:a7:d4:2f:28:19:ef:58:25:ea:c4:1e:b5:14:a8:72:e9:33: 4d:91:f1:1d:c4:92:1f:4e:fb:d4:1b:4c:2a:e7:98:5d:b6:ea: 15:a2:50:d9:49:bc:b2:28:3f:63:fa:b3:6b:06:09:4b:dc:00: 76:16:e2:5a:ad:c6:50:26:92:15:f4:2d:e3:67:0d:d5:8b:e9: 5c:a7:6e:56:5d:1a:5b:f3:a7:5f:a7:98:f2:25:0a:30:78:98: 6b:f4:b4:8c:d4:01:22:24:0a:be:fb:b2:15:0a:20:bb:81:5b: 1f:99:83:f5:32:06:43:54:c1:dd:52:4b:65:94:5c:08:6d:d1: 57:ea:5e:80 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFAcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI0QzRGQzI3QTc0NjUy MDk0RjhBREYwRkQwMDYzREY5M0M4RTlGMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfvcVIyDCNB0UUcx6JkytXiBjqEOHpgILb3E6oYeGMbV2QdJ+q 4QOWajIHCT4VWVoggLfgSd8iXM2f+pVSkmVGHtEBc2+oUpJdTUcRk+z/HWuPYYGw VdHEtTh8zNuNukHF0HSo7MggZZ62NN+G2ktHiGy365lCaYQMywH7/h2Zl0uZLg/7 rUhxUxDSYW2UoZ9f/vn3SuZu4wIMyUHk/YCo+BlqSSWAXuk7WNN7ifbrR97f+Gov 4Zuhco3DfnA0EaToUM1nD3VZVGIV6QtF5BVDEY5KyGPJmi7NXMfSLGPEr6eCXJK0 ZhFSz7pK6r+Cktfb9tRkDHhXhMtAnB4LLISdAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUtMT8J6dGUglPit8P0AY9+TyOnx0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy90TVQ4SjZkR1VnbFBp dDhQMEFZOS1UeU9ueDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnRgMA0GCSqGSIb3DQEBCwUAA4IBAQArKYOr5IcovSqj2wJIUFK7uUiRYsMp S1ytbd/+8muJFIWDZJx2eXqQ2KZhdRd1dEE8hGGiw00/eEGY17BWKjEW8Z4X1kjE WnfxbSmtLNxYqaa/0ezf3Anl3OTes+MNPEh5c4TsxBz71GCcHc5m4gh4m4uR+5XF +Thnj63ZNbW0p9QvKBnvWCXqxB61FKhy6TNNkfEdxJIfTvvUG0wq55hdtuoVolDZ SbyyKD9j+rNrBglL3AB2FuJarcZQJpIV9C3jZw3Vi+lcp25WXRpb86dfp5jyJQow eJhr9LSM1AEiJAq++7IVCiC7gVsfmYP1MgZDVMHdUktllFwIbdFX6l6A -----END CERTIFICATE-----Generated at Sat Sep 6 13:50:38 2025 by rpki-client