$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nWauAk2OgyvQj_idBsTs241yOy4.roa File: nWauAk2OgyvQj_idBsTs241yOy4.roa (raw, json) Hash identifier: zqD7pdsZpd9aO8/1Humzx+wZvE2PsFnQIPIgvt54SYY= Subject key identifier: 9D:66:AE:02:4D:8E:83:2B:D0:8F:F8:9D:06:C4:EC:DB:8D:72:3B:2E Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 142F Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nWauAk2OgyvQj_idBsTs241yOy4.roa Signing time: Fri 22 Aug 2025 08:57:38 +0000 ROA not before: Fri 22 Aug 2025 08:57:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 142142 IP address blocks: 150.116.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5167 (0x142f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=9D66AE024D8E832BD08FF89D06C4ECDB8D723B2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:aa:85:75:e5:6c:39:b2:89:f4:c3:05:8f:b9: bb:08:43:16:d9:c5:93:9c:8a:d6:0d:2b:49:fd:c3: 80:fa:43:c2:38:e4:e8:f8:bc:1b:61:d6:db:f0:1c: b8:b5:08:70:45:51:e0:5b:db:ba:31:d1:79:9b:6a: c9:66:4f:69:c4:f2:d6:1e:92:99:09:dd:cb:62:a5: 40:26:b1:6a:f9:6d:41:44:97:e0:64:fc:04:fd:dd: c6:89:0f:7d:1b:16:e2:84:64:3d:6f:51:8a:6f:5e: d4:53:8c:60:52:94:1f:62:43:13:09:7d:10:43:0d: 4f:14:96:07:a7:60:dc:ef:5c:0f:04:d0:d8:39:e6: 46:64:4d:bb:bf:7d:af:7d:fd:82:74:a8:3c:1f:e1: 53:aa:7a:4d:87:00:d5:60:c7:08:22:ed:6d:69:18: 7a:09:8e:c4:3c:85:2e:c8:49:2b:03:44:9d:d1:43: 70:c0:52:ef:63:b5:32:6c:98:b8:b8:c1:ac:78:bf: 94:e2:38:22:c0:dd:0e:c2:e0:14:1e:38:15:8e:f5: e8:16:c7:17:85:06:c1:ca:09:fc:87:3a:37:b6:b0: 34:70:82:c3:a3:af:f3:07:14:6c:d8:53:ea:d0:2a: 63:cb:4e:48:05:82:4f:d6:9d:ef:d5:85:52:22:52: 63:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:66:AE:02:4D:8E:83:2B:D0:8F:F8:9D:06:C4:EC:DB:8D:72:3B:2E X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nWauAk2OgyvQj_idBsTs241yOy4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.53.0/24 Signature Algorithm: sha256WithRSAEncryption 17:0d:ec:7d:e0:6e:ae:fd:c2:78:be:ce:ed:a6:93:4f:fd:bf: ec:9d:28:54:29:a4:26:28:4a:f2:a9:85:ce:33:ff:29:81:d8: 11:2d:09:70:5b:25:7b:06:7b:51:0d:d8:00:09:ff:a4:11:6b: 82:04:f2:ce:f6:a8:6c:8b:f5:e3:a3:aa:9c:4e:1a:d9:d2:6f: 7d:ba:96:e5:c2:58:51:31:e4:22:c7:7f:70:9c:e2:95:c6:b4: cc:ce:32:8e:05:fb:51:02:7a:ae:ce:1a:a0:c0:71:58:b9:e9: fe:50:fd:9f:36:b0:f3:bd:2a:35:36:72:03:c0:4e:b0:f7:1c: 7a:69:fc:9a:ce:a0:2d:42:83:48:b9:6f:ca:09:93:19:02:42: 92:25:f9:27:0d:d8:9d:33:3f:0d:ae:71:76:1b:d1:5a:5e:6d: c9:2b:9b:69:93:e7:b1:b3:e6:68:dd:1f:a5:78:13:64:ef:ce: 92:1d:0a:2f:87:b6:ab:af:46:6a:bf:62:c7:bf:57:ee:f0:9c: f4:9f:26:48:39:f9:92:66:f7:9c:52:6a:92:5e:17:c6:ee:d2: db:39:bb:d6:a0:f7:af:f4:8c:d8:93:28:5a:19:de:9c:da:2d: ba:60:6a:e0:0a:1d:a1:d8:cc:95:bb:06:31:85:f3:90:5f:e6: fe:ab:e6:b9 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFC8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDlENjZBRTAyNEQ4RTgz MkJEMDhGRjg5RDA2QzRFQ0RCOEQ3MjNCMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+qoV15Ww5son0wwWPubsIQxbZxZOcitYNK0n9w4D6Q8I45Oj4 vBth1tvwHLi1CHBFUeBb27ox0XmbaslmT2nE8tYekpkJ3ctipUAmsWr5bUFEl+Bk /AT93caJD30bFuKEZD1vUYpvXtRTjGBSlB9iQxMJfRBDDU8UlgenYNzvXA8E0Ng5 5kZkTbu/fa99/YJ0qDwf4VOqek2HANVgxwgi7W1pGHoJjsQ8hS7ISSsDRJ3RQ3DA Uu9jtTJsmLi4wax4v5TiOCLA3Q7C4BQeOBWO9egWxxeFBsHKCfyHOje2sDRwgsOj r/MHFGzYU+rQKmPLTkgFgk/Wne/VhVIiUmOPAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUnWauAk2OgyvQj/idBsTs241yOy4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9uV2F1QWsyT2d5dlFq X2lkQnNUczI0MXlPeTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQ1MA0GCSqGSIb3DQEBCwUAA4IBAQAXDex94G6u/cJ4vs7tppNP/b/snShU KaQmKEryqYXOM/8pgdgRLQlwWyV7BntRDdgACf+kEWuCBPLO9qhsi/Xjo6qcThrZ 0m99upblwlhRMeQix39wnOKVxrTMzjKOBftRAnquzhqgwHFYuen+UP2fNrDzvSo1 NnIDwE6w9xx6afyazqAtQoNIuW/KCZMZAkKSJfknDdidMz8NrnF2G9FaXm3JK5tp k+exs+Zo3R+leBNk786SHQovh7arr0Zqv2LHv1fu8Jz0nyZIOfmSZvecUmqSXhfG 7tLbObvWoPev9IzYkyhaGd6c2i26YGrgCh2h2MyVuwYxhfOQX+b+q+a5 -----END CERTIFICATE-----Generated at Sun Aug 24 09:08:04 2025 by rpki-client