$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/u07Ju_kb4dtvsub2epDYdWA339c.roa File: u07Ju_kb4dtvsub2epDYdWA339c.roa (raw, json) Hash identifier: TQUSXLnN9lV+C5mBYxlVwOQDYoA50ednZDSMkkdmSh4= Subject key identifier: BB:4E:C9:BB:F9:1B:E1:DB:6F:B2:E6:F6:7A:90:D8:75:60:37:DF:D7 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1430 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/u07Ju_kb4dtvsub2epDYdWA339c.roa Signing time: Fri 22 Aug 2025 08:57:38 +0000 ROA not before: Fri 22 Aug 2025 08:57:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 139750 IP address blocks: 150.116.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5168 (0x1430) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BB4EC9BBF91BE1DB6FB2E6F67A90D8756037DFD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:be:e8:ff:a0:2c:04:31:a7:36:a5:51:4f:ca: 03:1a:5a:3a:b5:c0:28:68:d5:11:74:5c:15:bf:57: 5a:1e:31:0f:a6:22:81:67:30:05:f8:a3:79:a4:ed: 3c:6d:d1:17:b9:c0:83:34:03:4d:72:fc:86:e5:8e: 4e:8d:f0:7e:4a:cb:15:c8:63:e7:e7:70:6b:5b:3f: 9c:79:0a:0b:92:2c:95:2b:8c:2d:5a:e5:ed:61:a0: cd:4f:42:e4:15:e3:ec:89:f4:d8:8b:27:35:d9:17: 5f:af:9b:84:23:cc:19:b9:90:dd:c5:7b:88:8e:a7: 19:60:94:ea:98:88:1e:bc:15:72:e2:38:81:63:83: 4c:74:58:32:b2:82:82:78:64:89:48:90:01:36:45: bd:81:06:40:bd:2b:0f:2c:9c:94:5c:52:b4:9d:87: 35:9f:8c:63:50:bd:22:cf:a3:4b:81:e2:35:7f:78: 21:bb:a0:4b:0e:95:56:03:2c:43:17:50:a1:f2:a7: be:22:4c:80:0e:01:53:11:b8:b1:81:5a:e5:9f:32: c8:a6:bf:50:02:f1:19:77:33:68:ba:08:38:43:c9: 88:b8:5c:0d:ea:6f:28:5b:09:e9:e0:d2:55:cc:27: c3:b6:7e:20:cb:6a:5f:df:c1:ac:16:9b:65:8c:ec: 94:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4E:C9:BB:F9:1B:E1:DB:6F:B2:E6:F6:7A:90:D8:75:60:37:DF:D7 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/u07Ju_kb4dtvsub2epDYdWA339c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.10.0/24 Signature Algorithm: sha256WithRSAEncryption 02:b8:2e:ed:4c:57:a5:e7:72:54:81:67:9f:e2:55:81:5f:ea: 9d:ab:94:cc:37:3c:82:3d:1f:b9:d9:3b:64:54:91:79:a5:b8: 94:38:ea:24:c1:3e:c5:3c:d9:4d:ea:83:fa:ab:41:8e:50:6e: 55:03:ae:80:5a:18:0d:3c:20:5a:9c:a7:40:9b:20:08:9a:5b: 0b:1a:3a:03:26:80:c3:2c:b7:fd:db:8f:e7:bf:ae:86:54:95: a1:58:24:b5:ee:6c:40:b5:41:da:cb:20:d2:3a:8c:bd:c0:c8: 77:55:84:47:71:a9:3d:03:a0:04:1e:27:b1:9b:94:85:a0:54: 19:f8:d1:93:6d:3c:92:1a:16:f6:2e:49:1a:7e:ee:c7:e9:25: e9:0c:2d:67:ef:35:f2:fc:ec:bc:5c:3a:1f:f9:07:70:4a:97: 29:78:28:4d:a2:62:95:3b:5f:ed:a9:69:b8:b9:9b:0e:bf:59: bf:d6:26:19:54:ea:da:0d:be:6a:d6:b2:6f:f8:1b:72:f1:6a: 85:35:40:2c:e4:eb:42:2f:21:7b:4f:21:fd:68:ee:09:9a:9c: 42:19:f6:b8:ee:07:01:4c:79:39:22:99:7f:6c:55:6f:bf:91: 27:4c:32:f5:9f:41:41:1b:83:99:58:d0:7f:9f:e1:d4:a6:82: 60:e9:88:9a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFDAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJCNEVDOUJCRjkxQkUx REI2RkIyRTZGNjdBOTBEODc1NjAzN0RGRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHvuj/oCwEMac2pVFPygMaWjq1wCho1RF0XBW/V1oeMQ+mIoFn MAX4o3mk7Txt0Re5wIM0A01y/Ibljk6N8H5KyxXIY+fncGtbP5x5CguSLJUrjC1a 5e1hoM1PQuQV4+yJ9NiLJzXZF1+vm4QjzBm5kN3Fe4iOpxlglOqYiB68FXLiOIFj g0x0WDKygoJ4ZIlIkAE2Rb2BBkC9Kw8snJRcUrSdhzWfjGNQvSLPo0uB4jV/eCG7 oEsOlVYDLEMXUKHyp74iTIAOAVMRuLGBWuWfMsimv1AC8Rl3M2i6CDhDyYi4XA3q byhbCeng0lXMJ8O2fiDLal/fwawWm2WM7JRTAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUu07Ju/kb4dtvsub2epDYdWA339cwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy91MDdKdV9rYjRkdHZz dWIyZXBEWWRXQTMzOWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQKMA0GCSqGSIb3DQEBCwUAA4IBAQACuC7tTFel53JUgWef4lWBX+qdq5TM NzyCPR+52TtkVJF5pbiUOOokwT7FPNlN6oP6q0GOUG5VA66AWhgNPCBanKdAmyAI mlsLGjoDJoDDLLf924/nv66GVJWhWCS17mxAtUHayyDSOoy9wMh3VYRHcak9A6AE Hiexm5SFoFQZ+NGTbTySGhb2Lkkafu7H6SXpDC1n7zXy/Oy8XDof+QdwSpcpeChN omKVO1/tqWm4uZsOv1m/1iYZVOraDb5q1rJv+Bty8WqFNUAs5OtCLyF7TyH9aO4J mpxCGfa47gcBTHk5Ipl/bFVvv5EnTDL1n0FBG4OZWNB/n+HUpoJg6Yia -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:40 2025 by rpki-client