$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5wM_h71hJPcnUlyx_aiPcFB9flc.roa File: 5wM_h71hJPcnUlyx_aiPcFB9flc.roa (raw, json) Hash identifier: GN06v77TJ19qmO95uRexlcgAg8193db2qyzHofpJ6qo= Subject key identifier: E7:03:3F:87:BD:61:24:F7:27:52:5C:B1:FD:A8:8F:70:50:7D:7E:57 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 140B Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5wM_h71hJPcnUlyx_aiPcFB9flc.roa Signing time: Fri 22 Aug 2025 08:57:30 +0000 ROA not before: Fri 22 Aug 2025 08:57:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131636 IP address blocks: 150.116.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5131 (0x140b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E7033F87BD6124F727525CB1FDA88F70507D7E57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:31:9d:7f:2b:d8:31:1f:13:dc:b8:89:9d:8a: f1:67:5e:72:ec:70:af:52:50:9d:07:3f:78:3c:83: 17:8e:b4:22:c2:e2:83:90:87:1b:59:f4:6b:18:2e: 56:d0:0d:24:2c:71:4c:b7:b9:9c:8c:50:3f:de:95: d5:ca:9e:f0:74:dc:f2:ba:55:ca:20:e0:c5:2e:93: 0c:57:2f:c2:de:88:c4:26:e9:03:fb:df:8d:62:c1: d4:f0:a9:b1:73:ce:94:0d:1b:c5:36:e6:3d:96:d9: bb:20:ed:dc:7e:3d:ef:ea:60:ed:ee:2a:59:44:ba: fe:71:bf:10:35:7e:08:66:e8:06:c2:e3:ee:cf:c3: f2:7e:ef:d9:67:e5:a4:27:8b:b6:e3:6b:a7:ce:0a: cc:b4:b4:aa:c9:ff:84:b2:d0:87:06:28:1c:56:0d: 26:ed:dd:5a:93:e8:16:95:7e:97:aa:6f:0a:22:73: b6:67:13:7a:0b:c5:54:50:42:ea:f0:52:8f:66:70: 3c:e0:29:f7:f9:7c:d3:75:71:56:9f:64:93:4b:b4: 79:fc:46:46:8f:ca:43:45:15:11:81:6e:5d:d6:d9: bf:cd:1c:5a:e5:71:9c:27:c4:3a:97:67:68:b8:0a: 9c:02:30:5a:fe:e3:47:5f:26:0d:53:a7:ed:52:6c: 1f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:03:3F:87:BD:61:24:F7:27:52:5C:B1:FD:A8:8F:70:50:7D:7E:57 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5wM_h71hJPcnUlyx_aiPcFB9flc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.6.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:8a:9a:91:51:71:2c:c1:a2:f1:eb:18:a2:41:c4:1e:37:24: 19:a5:53:12:9d:c8:84:8b:2c:2e:3f:18:e0:9b:ec:b2:0e:67: 0b:f3:e1:70:1e:21:b3:2a:57:c9:35:20:ec:c1:59:51:82:65: c1:5a:24:f6:2d:08:ab:57:8b:2e:dc:5d:17:4c:72:c2:99:f9: 6b:0c:7a:a3:22:21:3a:aa:d9:22:cf:5a:3c:34:72:00:59:93: 42:f4:f8:89:8c:de:98:bc:f7:44:62:7d:3e:51:50:e9:0c:8e: 3a:35:cf:54:0e:d9:e4:f2:bb:7c:d9:04:45:ea:8e:82:93:05: 3e:18:a8:ee:c6:b5:db:63:f6:8f:25:30:3c:b6:0f:b6:1f:0c: 9c:13:d5:b4:b4:af:7c:f2:30:f5:cd:a6:ee:70:07:61:1a:ce: a9:a5:1c:39:a8:ca:61:4c:be:2e:3e:4a:e7:ec:15:90:38:f3: 51:33:cf:58:c9:2f:db:9c:6b:3c:e3:ca:b8:cd:94:cc:a6:28: d0:ed:33:b7:a1:5a:f5:57:c7:ce:16:1e:d4:fa:1c:b0:83:5b: 66:8d:8d:28:05:7c:09:09:2d:78:15:d5:28:0c:62:cb:9b:7f: 1c:ce:2f:91:fd:ca:00:b6:25:43:c4:80:1a:22:b3:a6:d8:19: 34:cb:c9:07 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFAswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU3MDMzRjg3QkQ2MTI0 RjcyNzUyNUNCMUZEQTg4RjcwNTA3RDdFNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnMZ1/K9gxHxPcuImdivFnXnLscK9SUJ0HP3g8gxeOtCLC4oOQ hxtZ9GsYLlbQDSQscUy3uZyMUD/eldXKnvB03PK6Vcog4MUukwxXL8LeiMQm6QP7 341iwdTwqbFzzpQNG8U25j2W2bsg7dx+Pe/qYO3uKllEuv5xvxA1fghm6AbC4+7P w/J+79ln5aQni7bja6fOCsy0tKrJ/4Sy0IcGKBxWDSbt3VqT6BaVfpeqbwoic7Zn E3oLxVRQQurwUo9mcDzgKff5fNN1cVafZJNLtHn8RkaPykNFFRGBbl3W2b/NHFrl cZwnxDqXZ2i4CpwCMFr+40dfJg1Tp+1SbB8JAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU5wM/h71hJPcnUlyx/aiPcFB9flcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy81d01faDcxaEpQY25V bHl4X2FpUGNGQjlmbGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnQGMA0GCSqGSIb3DQEBCwUAA4IBAQAvipqRUXEswaLx6xiiQcQeNyQZpVMS nciEiywuPxjgm+yyDmcL8+FwHiGzKlfJNSDswVlRgmXBWiT2LQirV4su3F0XTHLC mflrDHqjIiE6qtkiz1o8NHIAWZNC9PiJjN6YvPdEYn0+UVDpDI46Nc9UDtnk8rt8 2QRF6o6CkwU+GKjuxrXbY/aPJTA8tg+2HwycE9W0tK988jD1zabucAdhGs6ppRw5 qMphTL4uPkrn7BWQOPNRM89YyS/bnGs848q4zZTMpijQ7TO3oVr1V8fOFh7U+hyw g1tmjY0oBXwJCS14FdUoDGLLm38czi+R/coAtiVDxIAaIrOm2Bk0y8kH -----END CERTIFICATE-----Generated at Sun Aug 24 07:03:03 2025 by rpki-client