$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BtA12g7L_lyYm3a7tOzYS_c3PNw.roa File: BtA12g7L_lyYm3a7tOzYS_c3PNw.roa (raw, json) Hash identifier: bY0WWP+YbAeF78O8kLUJHmsECj043M5pe5rHypMuy+Y= Subject key identifier: 06:D0:35:DA:0E:CB:FE:5C:98:9B:76:BB:B4:EC:D8:4B:F7:37:3C:DC Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13C6 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BtA12g7L_lyYm3a7tOzYS_c3PNw.roa Signing time: Fri 22 Aug 2025 08:57:16 +0000 ROA not before: Fri 22 Aug 2025 08:57:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38851 IP address blocks: 223.26.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5062 (0x13c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=06D035DA0ECBFE5C989B76BBB4ECD84BF7373CDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2e:c7:f4:6d:8b:a3:ca:73:97:4e:ed:d2:d2: 67:60:40:c3:dc:7d:2e:20:ef:0d:7e:5d:1b:03:51: 51:df:27:bb:37:a7:ee:d9:34:23:bf:ef:1b:d5:bd: 8f:2c:cc:8d:16:08:ac:c1:fd:6b:8b:a2:d0:f2:5a: 39:96:ea:d6:0c:e1:92:39:99:bd:36:aa:12:a6:d8: 0c:23:d6:0f:38:1d:0d:a5:d5:23:72:8a:c3:59:a1: 3c:7f:19:e5:5a:ea:f0:bc:41:9c:1c:50:9e:af:d0: d3:d8:ba:23:66:16:60:31:14:27:41:96:1b:4e:31: 7d:aa:2c:b0:2f:6f:9f:5e:b4:22:47:f9:61:6a:8b: 18:a2:6d:58:1b:c1:9f:a9:97:d4:42:3c:be:0a:84: cc:eb:17:79:cc:07:ba:32:f2:83:6c:a2:ce:c8:6d: 24:09:3e:9f:ef:13:f7:a7:a0:d8:46:09:d7:d3:77: 04:c1:71:96:56:3f:ba:1b:ce:ad:2e:79:d6:f4:bc: 58:f0:d1:b9:38:2f:04:16:bb:71:77:f3:29:fa:8e: 15:79:e6:e2:15:ba:b5:e3:64:71:01:c2:ab:94:f9: 73:70:d4:be:47:2c:07:df:b5:03:e0:44:0e:00:a2: 04:12:f0:8f:f5:ac:e4:e4:d3:3e:26:6b:0a:f8:29: fb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D0:35:DA:0E:CB:FE:5C:98:9B:76:BB:B4:EC:D8:4B:F7:37:3C:DC X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/BtA12g7L_lyYm3a7tOzYS_c3PNw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.80.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:7e:d9:a3:52:40:7a:0b:90:b7:f6:11:0f:3d:6d:1d:66:0b: 0d:fa:52:f7:c0:21:06:a6:10:84:0d:74:1f:01:0e:31:75:40: 0b:2a:8a:68:c4:28:cb:ff:2d:ce:22:10:29:5f:f1:be:ba:ac: b8:77:e9:b8:65:7a:11:c0:59:c6:d2:4a:0a:08:2d:ba:f7:d2: f3:5e:87:eb:78:fe:b6:55:85:9f:a5:17:e9:f8:1a:1d:b3:5b: eb:0d:67:29:c3:98:ba:a2:a3:8f:83:cd:a7:c2:e7:f5:7b:d0: 37:64:f3:ef:02:bb:c4:2e:30:b2:17:71:e4:5d:29:9f:7e:84: 12:7b:22:ea:f7:f6:09:3a:3e:0b:57:05:7a:19:77:a9:ae:0f: 05:be:d5:f2:23:74:36:68:89:c8:bc:a9:8f:e7:1d:d3:c5:b7: b0:c4:25:2e:80:a5:87:73:43:91:5b:cf:44:2f:2f:ea:17:67: 1b:c1:70:18:7e:1d:fc:70:8b:67:2b:13:c2:2d:7c:71:47:58: 75:45:1c:8f:ac:93:ce:68:6e:b3:10:80:06:b6:10:5a:ff:9e: 11:e3:c1:38:31:d0:94:28:7d:3e:8a:ad:09:02:50:c3:29:bd: 36:c6:87:9f:c7:78:07:ca:20:e1:2c:3c:72:12:49:65:25:1b: ad:a4:4b:b7 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE8YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA2RDAzNURBMEVDQkZF NUM5ODlCNzZCQkI0RUNEODRCRjczNzNDREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNLsf0bYujynOXTu3S0mdgQMPcfS4g7w1+XRsDUVHfJ7s3p+7Z NCO/7xvVvY8szI0WCKzB/WuLotDyWjmW6tYM4ZI5mb02qhKm2Awj1g84HQ2l1SNy isNZoTx/GeVa6vC8QZwcUJ6v0NPYuiNmFmAxFCdBlhtOMX2qLLAvb59etCJH+WFq ixiibVgbwZ+pl9RCPL4KhMzrF3nMB7oy8oNsos7IbSQJPp/vE/enoNhGCdfTdwTB cZZWP7obzq0uedb0vFjw0bk4LwQWu3F38yn6jhV55uIVurXjZHEBwquU+XNw1L5H LAfftQPgRA4AogQS8I/1rOTk0z4mawr4KfvNAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUBtA12g7L/lyYm3a7tOzYS/c3PNwwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9CdEExMmc3TF9seVlt M2E3dE96WVNfYzNQTncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQC3xpQMA0GCSqGSIb3DQEBCwUAA4IBAQALftmjUkB6C5C39hEPPW0dZgsN+lL3 wCEGphCEDXQfAQ4xdUALKopoxCjL/y3OIhApX/G+uqy4d+m4ZXoRwFnG0koKCC26 99LzXofreP62VYWfpRfp+Bods1vrDWcpw5i6oqOPg82nwuf1e9A3ZPPvArvELjCy F3HkXSmffoQSeyLq9/YJOj4LVwV6GXeprg8FvtXyI3Q2aInIvKmP5x3TxbewxCUu gKWHc0ORW89ELy/qF2cbwXAYfh38cItnKxPCLXxxR1h1RRyPrJPOaG6zEIAGthBa /54R48E4MdCUKH0+iq0JAlDDKb02xoefx3gHyiDhLDxyEkllJRutpEu3 -----END CERTIFICATE-----Generated at Sun Aug 24 07:04:07 2025 by rpki-client