$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6U81flWZouqwZlv4KQDiZ521UsI.roa File: 6U81flWZouqwZlv4KQDiZ521UsI.roa (raw, json) Hash identifier: uQ9Aqfs2bOVKYxOTg/1U5ANPQrYzEr7yrTbIuAM25bY= Subject key identifier: E9:4F:35:7E:55:99:A2:EA:B0:66:5B:F8:29:00:E2:67:9D:B5:52:C2 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1415 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6U81flWZouqwZlv4KQDiZ521UsI.roa Signing time: Fri 22 Aug 2025 08:57:33 +0000 ROA not before: Fri 22 Aug 2025 08:57:33 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38851 IP address blocks: 223.26.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5141 (0x1415) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E94F357E5599A2EAB0665BF82900E2679DB552C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:77:6d:db:e0:00:6c:70:79:7b:4b:73:bd:5b: 9d:35:14:03:b1:41:ec:6f:cd:71:12:56:3d:8f:38: 27:6f:95:6b:bd:47:ca:df:b6:17:30:69:12:91:1e: e2:5c:f0:f8:42:8b:f1:74:43:56:49:39:4c:03:7e: 45:6a:31:f6:be:5e:6a:cc:9e:9c:c2:68:ad:c0:05: 8d:c7:2a:48:c9:69:62:7c:ad:74:a4:5a:cd:3a:94: d2:3d:6e:2e:c6:59:eb:70:c3:bd:b8:53:0d:c3:37: 2d:5c:cb:77:70:d9:91:8f:b0:c6:b3:f0:44:9f:6c: 69:89:53:a3:d9:88:ae:da:58:9d:13:72:40:22:01: 89:dd:dd:07:d3:fe:1f:23:07:15:9e:a6:36:2e:21: 68:6f:b4:60:bb:9b:6c:2b:ed:14:20:78:73:a7:79: 58:9a:30:06:6a:51:96:fc:74:70:e9:ca:14:df:3b: d9:ca:3a:c0:d3:84:7f:c4:c8:07:d0:66:a3:c9:9e: b9:e2:5b:ec:01:fa:58:df:ca:e8:0b:41:54:c2:ae: df:23:c1:22:0c:50:92:50:9b:98:d4:e7:44:56:14: f7:59:1e:8a:15:60:ea:3b:f3:93:f8:8f:8b:7b:4e: 3b:5a:b1:29:0d:19:84:4a:8b:aa:2f:af:35:bb:5e: 81:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:4F:35:7E:55:99:A2:EA:B0:66:5B:F8:29:00:E2:67:9D:B5:52:C2 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/6U81flWZouqwZlv4KQDiZ521UsI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.108.0/22 Signature Algorithm: sha256WithRSAEncryption 71:5e:97:7f:8b:a2:58:80:8b:31:7b:3d:1d:18:c6:bd:65:4e: 79:7a:0a:f3:6d:81:53:1e:f3:2e:cf:56:72:ba:93:2f:60:07: 7d:c4:b1:c1:65:4e:b1:17:4f:04:71:c8:03:59:53:36:22:b9: 45:8c:0e:f3:08:59:db:5c:40:ba:c8:ce:2f:1c:bf:9d:ff:d7: 38:a2:1a:6d:54:01:52:25:da:6d:04:39:06:1a:cf:6e:eb:e4: 70:65:af:bb:c9:1c:8c:44:f5:54:f1:a1:b8:1f:ba:d6:4f:d4: e6:02:f2:fd:84:56:72:3d:75:6a:c3:b4:49:ec:6f:b8:06:0d: c9:dc:a2:5a:cf:c6:f8:b9:ff:79:55:24:67:8a:9a:82:4c:c0: 29:88:08:1e:9d:c1:7a:62:2e:3f:ea:55:f9:88:32:85:3c:ac: 0c:68:ee:3d:7e:16:30:90:29:60:cd:5b:6b:19:3b:65:b2:c1: ad:23:9b:72:f7:9f:37:e0:82:10:ac:a0:89:df:c9:43:8b:36: ab:31:79:34:aa:5f:bf:6f:5d:d8:8a:e4:23:d2:60:5b:9a:89: be:73:7f:a6:16:35:3c:12:53:e5:e0:1d:65:87:bc:25:ad:45: 14:5b:6c:53:d0:a5:9e:1e:9c:d4:19:fd:1b:2d:e6:52:7f:84: a8:d6:32:c3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFBUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU5NEYzNTdFNTU5OUEy RUFCMDY2NUJGODI5MDBFMjY3OURCNTUyQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8d23b4ABscHl7S3O9W501FAOxQexvzXESVj2POCdvlWu9R8rf thcwaRKRHuJc8PhCi/F0Q1ZJOUwDfkVqMfa+XmrMnpzCaK3ABY3HKkjJaWJ8rXSk Ws06lNI9bi7GWetww724Uw3DNy1cy3dw2ZGPsMaz8ESfbGmJU6PZiK7aWJ0TckAi AYnd3QfT/h8jBxWepjYuIWhvtGC7m2wr7RQgeHOneViaMAZqUZb8dHDpyhTfO9nK OsDThH/EyAfQZqPJnrniW+wB+ljfyugLQVTCrt8jwSIMUJJQm5jU50RWFPdZHooV YOo785P4j4t7TjtasSkNGYRKi6ovrzW7XoHTAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU6U81flWZouqwZlv4KQDiZ521UsIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy82VTgxZmxXWm91cXda bHY0S1FEaVo1MjFVc0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQC3xpsMA0GCSqGSIb3DQEBCwUAA4IBAQBxXpd/i6JYgIsxez0dGMa9ZU55egrz bYFTHvMuz1ZyupMvYAd9xLHBZU6xF08EccgDWVM2IrlFjA7zCFnbXEC6yM4vHL+d /9c4ohptVAFSJdptBDkGGs9u6+RwZa+7yRyMRPVU8aG4H7rWT9TmAvL9hFZyPXVq w7RJ7G+4Bg3J3KJaz8b4uf95VSRnipqCTMApiAgencF6Yi4/6lX5iDKFPKwMaO49 fhYwkClgzVtrGTtlssGtI5ty95834IIQrKCJ38lDizarMXk0ql+/b13YiuQj0mBb mom+c3+mFjU8ElPl4B1lh7wlrUUUW2xT0KWeHpzUGf0bLeZSf4So1jLD -----END CERTIFICATE-----Generated at Sun Aug 24 09:05:59 2025 by rpki-client