$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZsKj5qzkG8kWsQ3TkZoRAgHxNvA.roa File: ZsKj5qzkG8kWsQ3TkZoRAgHxNvA.roa (raw, json) Hash identifier: g5jjuhDRl/CjFbf/0vskKqwTtZMrIgrfTx0U/xNrJqY= Subject key identifier: 66:C2:A3:E6:AC:E4:1B:C9:16:B1:0D:D3:91:9A:11:02:01:F1:36:F0 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13C5 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZsKj5qzkG8kWsQ3TkZoRAgHxNvA.roa Signing time: Fri 22 Aug 2025 08:57:15 +0000 ROA not before: Fri 22 Aug 2025 08:57:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17651 IP address blocks: 150.116.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5061 (0x13c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=66C2A3E6ACE41BC916B10DD3919A110201F136F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:49:75:42:a0:a8:fc:5a:28:76:34:e6:f8:c1: 59:00:c2:89:81:84:2c:87:4f:82:f7:32:d5:e3:ca: ec:3c:fa:dc:e3:3a:bc:a1:5b:4a:f8:5d:4f:1b:a7: fa:19:06:f2:1c:02:c8:1f:7b:ef:fd:6a:ae:bd:cf: 7a:52:76:62:07:b1:a0:ac:49:79:ce:f3:eb:cf:c2: 6f:55:07:85:f3:1c:19:e2:07:e4:fc:24:f4:58:f0: d9:e1:87:c8:74:eb:30:a2:02:20:c1:b9:f8:bc:12: 5f:39:7e:f5:40:83:e5:5a:35:f3:47:e0:45:aa:59: 12:33:93:b2:e7:de:6d:84:61:a1:dd:7f:5d:94:a8: 2b:2f:5e:66:c8:4f:4a:14:be:21:9e:1f:d2:2f:05: 62:0f:ed:2c:70:98:14:b4:86:6a:e3:02:fd:f1:ec: c7:46:95:1b:ac:f1:d7:55:88:87:cf:bf:09:50:8c: 8c:85:8f:7c:d9:eb:f0:a1:42:98:1b:9f:84:27:05: f8:42:f4:ba:81:6a:1a:3c:b9:0b:63:9b:9d:d3:1e: 95:6b:4c:5d:8c:bc:51:bf:ce:9d:31:a4:81:c1:e3: 51:d0:7b:71:23:ff:45:bb:de:fc:a3:40:88:e6:b7: 2b:88:32:69:d2:12:3e:b4:bb:f5:54:25:b1:81:39: a4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C2:A3:E6:AC:E4:1B:C9:16:B1:0D:D3:91:9A:11:02:01:F1:36:F0 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZsKj5qzkG8kWsQ3TkZoRAgHxNvA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.52.0/24 Signature Algorithm: sha256WithRSAEncryption ab:41:22:2d:ba:8e:98:fc:47:75:53:76:44:c2:e3:bf:8d:97: 11:5e:f5:c4:1a:0f:fa:a0:57:bd:3a:4e:24:71:58:fb:40:26: 27:09:26:6f:57:ab:46:88:df:d9:e0:4a:dd:df:d4:c7:2f:95: 97:20:b5:0e:b1:f6:e5:a7:68:82:6f:6e:ce:94:7c:ee:6a:91: 66:4e:2c:cf:9c:e3:da:9d:aa:9c:59:74:db:86:1f:31:b2:0a: 3f:fc:af:95:e1:77:cf:dc:0a:fe:b6:67:2d:da:a6:55:ba:a4: 51:27:70:bf:a3:f1:7e:54:1e:13:f5:3d:69:10:d2:b3:d8:9a: 94:cf:3f:05:47:a3:32:97:75:c4:4b:44:d5:2c:62:2c:b8:88: bf:ea:a6:1a:c2:e3:ad:e4:c9:a2:f3:21:fb:cd:18:24:79:0c: 72:07:a5:3c:b8:35:27:81:f6:9d:e7:3f:ea:16:3e:59:c1:a9: 39:b9:4f:37:8f:bf:17:36:30:eb:4e:79:a9:a5:6d:a5:7b:40: 97:36:b6:53:86:66:80:1e:11:f7:3e:b6:42:93:af:ec:ad:5b: e5:f0:14:f6:87:5a:b5:b7:1e:3d:17:23:5e:3f:8e:d6:25:d8: d9:b5:4b:91:47:e2:ad:84:9e:57:76:1d:6a:7b:c9:cb:ef:26: 61:61:54:2e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE8UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY2QzJBM0U2QUNFNDFC QzkxNkIxMEREMzkxOUExMTAyMDFGMTM2RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoSXVCoKj8Wih2NOb4wVkAwomBhCyHT4L3MtXjyuw8+tzjOryh W0r4XU8bp/oZBvIcAsgfe+/9aq69z3pSdmIHsaCsSXnO8+vPwm9VB4XzHBniB+T8 JPRY8Nnhh8h06zCiAiDBufi8El85fvVAg+VaNfNH4EWqWRIzk7Ln3m2EYaHdf12U qCsvXmbIT0oUviGeH9IvBWIP7SxwmBS0hmrjAv3x7MdGlRus8ddViIfPvwlQjIyF j3zZ6/ChQpgbn4QnBfhC9LqBaho8uQtjm53THpVrTF2MvFG/zp0xpIHB41HQe3Ej /0W73vyjQIjmtyuIMmnSEj60u/VUJbGBOaTvAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZsKj5qzkG8kWsQ3TkZoRAgHxNvAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9ac0tqNXF6a0c4a1dz UTNUa1pvUkFnSHhOdkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQ0MA0GCSqGSIb3DQEBCwUAA4IBAQCrQSItuo6Y/Ed1U3ZEwuO/jZcRXvXE Gg/6oFe9Ok4kcVj7QCYnCSZvV6tGiN/Z4Erd39THL5WXILUOsfblp2iCb27OlHzu apFmTizPnOPanaqcWXTbhh8xsgo//K+V4XfP3Ar+tmct2qZVuqRRJ3C/o/F+VB4T 9T1pENKz2JqUzz8FR6Myl3XES0TVLGIsuIi/6qYawuOt5Mmi8yH7zRgkeQxyB6U8 uDUngfad5z/qFj5Zwak5uU83j78XNjDrTnmppW2le0CXNrZThmaAHhH3PrZCk6/s rVvl8BT2h1q1tx49FyNeP47WJdjZtUuRR+KthJ5Xdh1qe8nL7yZhYVQu -----END CERTIFICATE-----Generated at Sun Aug 24 10:54:05 2025 by rpki-client