$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7Xz-Jz2pQorkc0LFHAeSplp5EHE.roa File: 7Xz-Jz2pQorkc0LFHAeSplp5EHE.roa (raw, json) Hash identifier: wQoPxwTFGRRQyVUi3vFs1+8GaYG+TnCqT26brPgXzSQ= Subject key identifier: ED:7C:FE:27:3D:A9:42:8A:E4:73:42:C5:1C:07:92:A6:5A:79:10:71 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13F1 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7Xz-Jz2pQorkc0LFHAeSplp5EHE.roa Signing time: Fri 22 Aug 2025 08:57:25 +0000 ROA not before: Fri 22 Aug 2025 08:57:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131607 IP address blocks: 150.117.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5105 (0x13f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ED7CFE273DA9428AE47342C51C0792A65A791071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5f:c2:a2:2e:95:14:c5:07:03:70:60:4b:1e: 7f:a4:0c:a7:cf:37:2a:d4:7a:fd:4b:4d:89:c2:b7: e1:c9:cb:59:8d:d5:43:2d:34:13:d4:0f:68:23:bd: b0:7e:7f:07:26:2f:44:ef:d3:71:a1:fe:23:30:e1: 39:dd:71:2a:6e:57:20:a5:de:ec:a0:45:3d:54:df: e4:a8:c3:b0:8e:66:4d:d3:ca:d5:62:2b:ef:77:fe: ff:6e:2b:3f:5e:0c:c9:b7:94:44:3f:b8:a4:a9:90: 68:d7:3e:52:44:cd:9f:94:88:1c:5e:25:79:ec:5b: 60:63:42:a7:5b:f7:92:14:fb:d0:aa:37:a4:e8:27: 63:a0:b0:d1:c9:e5:35:77:0a:c6:0d:72:3d:6c:df: 98:7b:ff:d5:03:49:2a:5e:a3:a7:00:96:78:2b:3c: 1d:83:94:67:83:4d:85:dd:57:24:96:e1:94:37:e8: 75:d9:84:0c:6f:17:33:9e:70:71:13:c2:75:12:65: 25:29:94:a6:ec:80:1d:9e:d2:b2:03:85:d0:db:d0: 6f:b4:d2:e6:4c:45:71:67:b5:8e:41:c1:bf:4b:f5: f3:15:9c:30:3b:e6:fb:17:bc:b9:3f:6f:59:1e:78: 00:0e:50:52:db:cb:1d:a8:6b:eb:6a:9b:19:57:0a: 95:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:7C:FE:27:3D:A9:42:8A:E4:73:42:C5:1C:07:92:A6:5A:79:10:71 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/7Xz-Jz2pQorkc0LFHAeSplp5EHE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.192.0/19 Signature Algorithm: sha256WithRSAEncryption 60:98:86:14:3b:f6:c3:69:58:e2:ec:aa:a6:11:f8:86:95:dc: a4:ed:72:6c:70:df:49:8e:1b:25:ae:df:1f:2e:4c:c3:b4:69: 1c:da:ef:66:ed:05:31:1f:e3:c8:69:89:1b:6e:b0:bb:e5:94: 46:bf:76:de:79:9d:89:40:92:16:5d:ad:be:ee:55:88:94:b6: 6c:c3:4b:03:9f:65:76:e8:5c:3f:2e:47:45:dc:78:61:28:50: a4:da:97:48:5a:c2:cd:f2:9c:0e:fa:3e:7b:c9:b0:66:d8:65: 87:14:58:0f:0c:3b:e7:c4:28:8b:b8:2b:34:62:12:6d:1d:15: 70:f0:be:3d:da:22:21:6f:68:6a:78:8e:78:b1:81:32:44:ca: c3:ec:00:f4:fb:79:4a:8d:87:0c:12:18:88:1c:64:ac:fb:00: d2:2f:2e:fc:ca:f0:65:c2:4b:72:8b:f8:4a:38:9c:4e:9b:59: ae:d3:b4:7d:e5:62:d9:30:ff:41:08:61:90:86:d3:ef:1e:7a: 6a:74:2b:a0:fa:9a:13:3f:56:22:c5:7d:88:97:c9:9c:0e:b9: d1:3b:96:b4:e4:78:7e:e4:d7:53:0d:b6:46:59:5f:a5:6a:75: 77:e0:70:d3:03:27:39:60:be:7a:1d:c8:35:ce:42:e9:01:12: aa:68:58:fa -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE/EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVEN0NGRTI3M0RBOTQy OEFFNDczNDJDNTFDMDc5MkE2NUE3OTEwNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6X8KiLpUUxQcDcGBLHn+kDKfPNyrUev1LTYnCt+HJy1mN1UMt NBPUD2gjvbB+fwcmL0Tv03Gh/iMw4TndcSpuVyCl3uygRT1U3+Sow7COZk3TytVi K+93/v9uKz9eDMm3lEQ/uKSpkGjXPlJEzZ+UiBxeJXnsW2BjQqdb95IU+9CqN6To J2OgsNHJ5TV3CsYNcj1s35h7/9UDSSpeo6cAlngrPB2DlGeDTYXdVySW4ZQ36HXZ hAxvFzOecHETwnUSZSUplKbsgB2e0rIDhdDb0G+00uZMRXFntY5Bwb9L9fMVnDA7 5vsXvLk/b1keeAAOUFLbyx2oa+tqmxlXCpV1AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU7Xz+Jz2pQorkc0LFHAeSplp5EHEwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy83WHotSnoycFFvcmtj MExGSEFlU3BscDVFSEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFlnXAMA0GCSqGSIb3DQEBCwUAA4IBAQBgmIYUO/bDaVji7KqmEfiGldyk7XJs cN9Jjhslrt8fLkzDtGkc2u9m7QUxH+PIaYkbbrC75ZRGv3beeZ2JQJIWXa2+7lWI lLZsw0sDn2V26Fw/LkdF3HhhKFCk2pdIWsLN8pwO+j57ybBm2GWHFFgPDDvnxCiL uCs0YhJtHRVw8L492iIhb2hqeI54sYEyRMrD7AD0+3lKjYcMEhiIHGSs+wDSLy78 yvBlwktyi/hKOJxOm1mu07R95WLZMP9BCGGQhtPvHnpqdCug+poTP1YixX2Il8mc DrnRO5a05Hh+5NdTDbZGWV+lanV34HDTAyc5YL56Hcg1zkLpARKqaFj6 -----END CERTIFICATE-----Generated at Sun Aug 24 08:22:35 2025 by rpki-client