$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k_42Asnt7liPwRwlstkWJnQTCt0.roa File: k_42Asnt7liPwRwlstkWJnQTCt0.roa (raw, json) Hash identifier: uerZ8ibROdp9p01YgXzSXfud0o0t6iLDIEbWFf0c+/4= Subject key identifier: 93:FE:36:02:C9:ED:EE:58:8F:C1:1C:25:B2:D9:16:26:74:13:0A:DD Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1437 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k_42Asnt7liPwRwlstkWJnQTCt0.roa Signing time: Fri 22 Aug 2025 08:57:40 +0000 ROA not before: Fri 22 Aug 2025 08:57:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131607 IP address blocks: 203.163.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5175 (0x1437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=93FE3602C9EDEE588FC11C25B2D9162674130ADD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:dd:75:5a:32:1a:c1:43:33:0d:60:9c:0f:23: af:7c:19:4b:9e:a1:0e:49:8a:1a:9f:33:7c:1a:f0: 19:60:11:5f:64:06:3a:34:5e:19:1d:bb:91:6e:b7: 3d:ca:09:63:85:12:77:60:19:75:21:74:b5:27:7f: d0:87:d9:56:47:d1:83:72:f4:f3:7f:74:ab:3f:1e: af:4c:84:63:a4:a5:53:d6:b3:5a:27:b6:d4:7a:1e: f4:51:9a:88:f5:d2:63:2f:4a:15:1d:43:d4:95:0c: e1:68:bb:12:08:12:8a:6d:8f:c6:5d:bb:9c:40:7c: 4e:03:1e:9e:0e:40:84:d9:91:ad:b3:75:c9:d9:f0: ea:ac:7f:56:95:8b:7c:0c:41:39:12:22:1b:9b:e5: 6c:a5:09:a9:e1:d0:54:81:80:bb:ff:12:d7:b0:27: 18:f7:93:5a:54:a6:0b:b3:51:e3:a7:6f:0f:1e:f2: c9:20:98:32:2b:eb:5e:1f:d2:56:61:09:8a:7e:99: 87:56:90:a3:e0:e6:4d:3f:aa:31:fc:13:ce:cd:be: 9b:67:f3:91:3d:98:f3:61:3d:57:e7:41:3c:6f:12: 26:ab:19:0d:b3:5a:4d:5e:5d:20:1c:d5:26:d3:0e: ee:ec:8a:30:1e:33:4b:33:a9:dd:e1:59:0c:21:d4: ed:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:FE:36:02:C9:ED:EE:58:8F:C1:1C:25:B2:D9:16:26:74:13:0A:DD X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k_42Asnt7liPwRwlstkWJnQTCt0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.193.0/24 Signature Algorithm: sha256WithRSAEncryption b1:a5:91:87:44:5e:dc:a6:9f:81:0f:a4:6f:81:92:a6:84:13: 24:1c:3e:4c:79:ce:5a:01:7b:a3:48:79:ee:47:5d:6b:dc:b7: 53:8b:66:32:ab:ac:0f:6e:fc:3d:5c:f2:1d:2b:97:89:c5:86: 99:a1:d1:70:c8:7c:67:89:e3:80:42:13:e4:98:59:6b:9b:bc: 92:19:cc:7e:c3:a6:df:3e:b9:a9:67:ac:44:4e:1f:54:24:ad: 2d:a1:d3:5f:aa:c6:b0:13:de:c7:53:38:66:d8:51:4c:3f:fb: a0:70:b4:57:d4:71:eb:d1:cd:af:ba:7c:b0:6d:82:c2:38:3f: b1:b7:c5:bd:53:b8:78:b4:db:80:d4:be:82:3a:ef:09:15:dd: f0:ae:f0:3d:8c:e6:79:a4:c2:0c:57:8e:b3:6d:30:de:14:3b: 66:9e:d3:6b:6e:2e:ff:e9:08:69:4e:f7:86:59:0e:88:76:a8: 34:08:79:16:9a:a0:10:01:82:ce:3c:87:69:96:c0:8c:d7:2f: 2f:7d:83:e2:49:18:1e:41:7a:e4:5d:8d:2f:c7:1d:bc:c1:3e: cf:89:9e:59:c4:20:c7:3b:2b:dd:43:3a:fc:b7:33:39:65:5b: 9c:82:23:14:eb:36:69:8b:cf:00:bf:66:e9:45:91:15:4a:32: a6:37:a9:4c -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFDcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkzRkUzNjAyQzlFREVF NTg4RkMxMUMyNUIyRDkxNjI2NzQxMzBBREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn3XVaMhrBQzMNYJwPI698GUueoQ5JihqfM3wa8BlgEV9kBjo0 Xhkdu5Futz3KCWOFEndgGXUhdLUnf9CH2VZH0YNy9PN/dKs/Hq9MhGOkpVPWs1on ttR6HvRRmoj10mMvShUdQ9SVDOFouxIIEoptj8Zdu5xAfE4DHp4OQITZka2zdcnZ 8Oqsf1aVi3wMQTkSIhub5WylCanh0FSBgLv/EtewJxj3k1pUpguzUeOnbw8e8skg mDIr614f0lZhCYp+mYdWkKPg5k0/qjH8E87Nvptn85E9mPNhPVfnQTxvEiarGQ2z Wk1eXSAc1SbTDu7sijAeM0szqd3hWQwh1O2LAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUk/42Asnt7liPwRwlstkWJnQTCt0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9rXzQyQXNudDdsaVB3 Undsc3RrV0puUVRDdDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAy6PBMA0GCSqGSIb3DQEBCwUAA4IBAQCxpZGHRF7cpp+BD6RvgZKmhBMkHD5M ec5aAXujSHnuR11r3LdTi2Yyq6wPbvw9XPIdK5eJxYaZodFwyHxnieOAQhPkmFlr m7ySGcx+w6bfPrmpZ6xETh9UJK0todNfqsawE97HUzhm2FFMP/ugcLRX1HHr0c2v unywbYLCOD+xt8W9U7h4tNuA1L6COu8JFd3wrvA9jOZ5pMIMV46zbTDeFDtmntNr bi7/6QhpTveGWQ6Idqg0CHkWmqAQAYLOPIdplsCM1y8vfYPiSRgeQXrkXY0vxx28 wT7PiZ5ZxCDHOyvdQzr8tzM5ZVucgiMU6zZpi88Av2bpRZEVSjKmN6lM -----END CERTIFICATE-----Generated at Sun Aug 24 06:34:53 2025 by rpki-client