$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZvqPtYBt2_xPFYRqOr-UyefRQBU.roa File: ZvqPtYBt2_xPFYRqOr-UyefRQBU.roa (raw, json) Hash identifier: dGVMA611Rs4vhosf7YrsDp7kUf9QaFqlsqQjVthJZt8= Subject key identifier: 66:FA:8F:B5:80:6D:DB:FC:4F:15:84:6A:3A:BF:94:C9:E7:D1:40:15 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1402 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZvqPtYBt2_xPFYRqOr-UyefRQBU.roa Signing time: Fri 22 Aug 2025 08:57:29 +0000 ROA not before: Fri 22 Aug 2025 08:57:29 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131600 IP address blocks: 150.117.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5122 (0x1402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:29 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=66FA8FB5806DDBFC4F15846A3ABF94C9E7D14015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:73:97:8c:30:e8:52:69:0d:50:0b:f0:20:0c: 10:82:a6:b4:4b:58:b3:5d:bf:e6:3a:b6:4d:17:8d: e5:b9:c1:e8:62:24:b5:d1:1e:0d:38:46:d1:da:7c: 80:03:58:3f:d7:77:ed:76:b9:85:88:d7:20:17:e1: 7c:5b:aa:e5:0a:52:8e:59:e4:a3:82:d3:d7:03:fc: ab:78:5a:bc:e3:73:d0:4e:9a:20:20:f4:cd:a3:4d: b9:3e:9e:ff:c3:89:bd:45:ca:3e:6a:b1:3f:94:9c: 2f:53:ab:bd:8e:12:cd:d6:3f:de:9d:74:12:11:29: 46:d9:0d:1d:19:5e:4e:a9:ed:dc:25:55:8d:db:a5: 14:d8:10:2b:a2:be:7c:d3:0a:38:03:7d:f5:f8:bd: bf:67:ad:0e:40:65:19:9c:ea:1f:c7:b4:47:42:47: 12:66:5d:25:db:c6:d9:2a:ad:9f:8c:ca:f7:aa:ff: 4e:41:fe:44:dd:8a:56:74:34:1b:68:51:35:ad:c5: bd:32:3a:b9:3b:12:99:a3:41:9f:9c:8f:5b:37:5a: 92:b9:ae:14:41:5a:43:70:b4:fa:bd:21:02:a9:7e: ab:c9:d7:df:2a:48:36:48:6f:f8:20:2c:87:a5:31: 4e:ec:ba:83:a9:99:08:7f:ac:f1:16:77:a9:56:63: 4d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:FA:8F:B5:80:6D:DB:FC:4F:15:84:6A:3A:BF:94:C9:E7:D1:40:15 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZvqPtYBt2_xPFYRqOr-UyefRQBU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.120.0/21 Signature Algorithm: sha256WithRSAEncryption 34:54:79:2a:43:6c:62:da:cd:5d:c9:43:97:43:9a:c9:3d:23: 69:ba:92:5a:a3:8f:d0:86:98:55:d0:a6:2d:51:94:65:8c:87: 96:5a:92:88:44:62:c4:80:2a:5d:49:3f:97:e8:19:ac:e9:25: 39:08:f3:8a:80:37:ed:15:c0:3c:f0:a9:31:22:5b:74:35:50: f8:22:08:0f:af:41:d0:71:0d:aa:74:01:48:31:e6:58:14:83: 3a:ed:af:eb:d5:5e:5e:73:5e:f2:1d:85:1d:be:05:2f:d7:35: 3e:0d:53:70:c5:50:fd:7d:8f:d5:4f:d8:5b:2f:f4:84:e1:e8: b3:3c:60:8e:d7:a9:a2:02:e0:b1:c3:ba:fa:66:22:d1:40:d1: 8f:c6:fe:43:40:96:8f:cd:87:0a:3d:e1:53:14:ce:c6:f4:86: 5c:23:93:46:01:42:7f:f4:d5:a9:86:03:54:f6:e3:4a:84:6b: 35:0a:89:e6:1a:a7:55:7c:ec:06:a4:25:8d:4b:7b:4a:bb:97: 97:50:a0:37:c9:af:a5:c2:55:31:d4:66:ee:c0:84:a7:03:a1: 45:c2:b7:bc:a1:38:9f:4e:6f:fd:28:ee:2f:78:f0:ba:1c:95: ce:04:21:a8:cb:85:93:f1:09:b4:6b:aa:1f:d8:98:a2:77:ad: 51:da:c5:b9 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY2RkE4RkI1ODA2RERC RkM0RjE1ODQ2QTNBQkY5NEM5RTdEMTQwMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkc5eMMOhSaQ1QC/AgDBCCprRLWLNdv+Y6tk0XjeW5wehiJLXR Hg04RtHafIADWD/Xd+12uYWI1yAX4XxbquUKUo5Z5KOC09cD/Kt4Wrzjc9BOmiAg 9M2jTbk+nv/Dib1Fyj5qsT+UnC9Tq72OEs3WP96ddBIRKUbZDR0ZXk6p7dwlVY3b pRTYECuivnzTCjgDffX4vb9nrQ5AZRmc6h/HtEdCRxJmXSXbxtkqrZ+Myveq/05B /kTdilZ0NBtoUTWtxb0yOrk7EpmjQZ+cj1s3WpK5rhRBWkNwtPq9IQKpfqvJ198q SDZIb/ggLIelMU7suoOpmQh/rPEWd6lWY00zAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZvqPtYBt2/xPFYRqOr+UyefRQBUwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9adnFQdFlCdDJfeFBG WVJxT3ItVXllZlJRQlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnV4MA0GCSqGSIb3DQEBCwUAA4IBAQA0VHkqQ2xi2s1dyUOXQ5rJPSNpupJa o4/QhphV0KYtUZRljIeWWpKIRGLEgCpdST+X6Bms6SU5CPOKgDftFcA88KkxIlt0 NVD4IggPr0HQcQ2qdAFIMeZYFIM67a/r1V5ec17yHYUdvgUv1zU+DVNwxVD9fY/V T9hbL/SE4eizPGCO16miAuCxw7r6ZiLRQNGPxv5DQJaPzYcKPeFTFM7G9IZcI5NG AUJ/9NWphgNU9uNKhGs1ConmGqdVfOwGpCWNS3tKu5eXUKA3ya+lwlUx1GbuwISn A6FFwre8oTifTm/9KO4vePC6HJXOBCGoy4WT8Qm0a6of2Jiid61R2sW5 -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:29 2025 by rpki-client