$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uTQ8SYiSiFkHFgs5DEHmNhTVENc.roa File: uTQ8SYiSiFkHFgs5DEHmNhTVENc.roa (raw, json) Hash identifier: gRCMmy7qsmOiW28lmgjzikhUPTkM5V+uEj1IUYUmGDU= Subject key identifier: B9:34:3C:49:88:92:88:59:07:16:0B:39:0C:41:E6:36:14:D5:10:D7 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13FA Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uTQ8SYiSiFkHFgs5DEHmNhTVENc.roa Signing time: Fri 22 Aug 2025 08:57:27 +0000 ROA not before: Fri 22 Aug 2025 08:57:27 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17408 IP address blocks: 150.116.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 18:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5114 (0x13fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B9343C498892885907160B390C41E63614D510D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fc:bc:41:b1:9b:60:6c:ce:e6:e4:89:88:34: 2a:49:e2:34:34:26:74:d3:f2:1b:75:6b:c6:1d:04: db:3e:6a:a4:9f:a7:d9:ab:5a:96:f2:cb:98:f9:d0: c2:69:4b:1a:c3:1f:ca:15:7d:53:e6:0b:f8:98:3b: 78:cf:1b:ef:fa:19:3a:49:ee:4d:d2:cd:fb:a8:47: 0f:d4:f3:7c:a0:ae:53:c7:13:f4:21:24:dc:4d:e0: da:66:eb:14:2b:78:7a:22:bf:4c:96:42:49:11:ae: f7:ac:e5:7b:46:5e:9c:36:46:e6:89:3a:86:ba:2e: fd:dc:87:72:33:97:c8:57:af:70:34:f7:da:a2:d0: 75:d6:63:c8:0e:ac:b5:41:3c:95:4e:27:03:9e:cd: 55:b4:ed:0d:95:d4:3e:90:43:a3:45:75:6c:ad:17: 02:70:71:13:96:4a:88:00:99:37:bf:b6:18:d0:37: 21:39:96:c0:44:6b:d0:8f:73:aa:f9:60:56:13:37: 4d:06:21:aa:79:b1:ae:8f:a8:8c:00:5e:05:d3:41: d7:f8:cc:15:46:69:e6:fd:3d:39:f9:e6:1a:86:ad: 6f:3c:3d:0c:c0:23:82:e0:ef:74:eb:b3:1e:73:be: c2:5c:93:43:a6:a4:0b:b1:8f:32:68:f9:d8:5d:88: 76:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:34:3C:49:88:92:88:59:07:16:0B:39:0C:41:E6:36:14:D5:10:D7 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/uTQ8SYiSiFkHFgs5DEHmNhTVENc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.8.0/23 Signature Algorithm: sha256WithRSAEncryption 96:48:9d:df:1a:e6:22:42:fe:ea:c3:41:b4:ef:cf:bf:1f:80: f7:27:40:5f:7f:20:a1:8c:04:94:55:e7:ac:25:d2:a5:83:79: 32:11:ac:89:45:6c:b0:87:ea:91:f4:73:c1:af:97:49:db:49: 71:dd:4e:8c:77:fd:4e:f6:77:3a:74:9b:36:a3:aa:23:85:45: 40:d4:12:e3:91:c4:63:a6:c6:6b:46:69:01:f2:3b:7b:1f:22: ac:dc:7d:30:fb:3d:cb:2a:6b:2f:44:56:a3:f1:34:92:8c:86: de:98:85:53:52:29:5f:4c:81:3b:51:cd:73:25:e0:31:b9:69: 78:73:5d:6f:fd:6d:12:3e:0e:32:e5:40:e9:7a:be:d5:94:cc: 49:6b:32:77:0b:85:ce:9b:c6:9e:fd:16:60:84:9b:3f:3b:4f: 53:40:ce:41:32:e1:2f:47:f1:37:ee:b4:05:22:48:c8:0c:f0: 21:43:68:70:90:db:83:54:f3:2f:88:df:ff:bd:83:b2:32:c2: a2:1e:f4:04:00:3e:a0:e1:76:06:5c:3d:b9:a7:a6:06:42:f7: 0b:c3:b8:4a:9b:37:1e:cc:97:2c:48:82:7d:f1:8e:7a:6f:a3: aa:13:3a:d4:24:ef:5a:19:6d:d6:cb:c4:94:bb:71:9f:4c:d7: b1:2e:ca:1b -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE/owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI5MzQzQzQ5ODg5Mjg4 NTkwNzE2MEIzOTBDNDFFNjM2MTRENTEwRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA/LxBsZtgbM7m5ImINCpJ4jQ0JnTT8ht1a8YdBNs+aqSfp9mr Wpbyy5j50MJpSxrDH8oVfVPmC/iYO3jPG+/6GTpJ7k3SzfuoRw/U83ygrlPHE/Qh JNxN4Npm6xQreHoiv0yWQkkRrves5XtGXpw2RuaJOoa6Lv3ch3Izl8hXr3A099qi 0HXWY8gOrLVBPJVOJwOezVW07Q2V1D6QQ6NFdWytFwJwcROWSogAmTe/thjQNyE5 lsBEa9CPc6r5YFYTN00GIap5sa6PqIwAXgXTQdf4zBVGaeb9PTn55hqGrW88PQzA I4Lg73Trsx5zvsJck0OmpAuxjzJo+dhdiHaJAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUuTQ8SYiSiFkHFgs5DEHmNhTVENcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy91VFE4U1lpU2lGa0hG Z3M1REVIbU5oVFZFTmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnQIMA0GCSqGSIb3DQEBCwUAA4IBAQCWSJ3fGuYiQv7qw0G078+/H4D3J0Bf fyChjASUVeesJdKlg3kyEayJRWywh+qR9HPBr5dJ20lx3U6Md/1O9nc6dJs2o6oj hUVA1BLjkcRjpsZrRmkB8jt7HyKs3H0w+z3LKmsvRFaj8TSSjIbemIVTUilfTIE7 Uc1zJeAxuWl4c11v/W0SPg4y5UDper7VlMxJazJ3C4XOm8ae/RZghJs/O09TQM5B MuEvR/E37rQFIkjIDPAhQ2hwkNuDVPMviN//vYOyMsKiHvQEAD6g4XYGXD25p6YG QvcLw7hKmzcezJcsSIJ98Y56b6OqEzrUJO9aGW3Wy8SUu3GfTNexLsob -----END CERTIFICATE-----Generated at Sun Sep 7 16:22:41 2025 by rpki-client