$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/1mpOYFhQVNl6pe9tOeUpwgq1Ak4.roa File: 1mpOYFhQVNl6pe9tOeUpwgq1Ak4.roa (raw, json) Hash identifier: AZUz5axX7vdFgrn/HMdgNlS4V4fXgDgyhN5a2qigNdM= Subject key identifier: D6:6A:4E:60:58:50:54:D9:7A:A5:EF:6D:39:E5:29:C2:0A:B5:02:4E Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0DED Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/1mpOYFhQVNl6pe9tOeUpwgq1Ak4.roa Signing time: Fri 22 Aug 2025 08:57:08 +0000 ROA not before: Fri 22 Aug 2025 08:57:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 4780 IP address blocks: 101.0.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3565 (0xded) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 22 08:57:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D66A4E60585054D97AA5EF6D39E529C20AB5024E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c7:36:ce:16:08:01:75:18:a4:38:6b:11:ed: 21:23:ef:ee:ce:40:a7:07:08:e1:80:5c:17:66:0c: 90:33:62:9e:dd:4a:26:a1:47:99:98:07:cd:a6:86: 0a:ca:78:d1:59:0d:e8:16:ba:37:16:fa:f3:d2:ca: d4:92:73:d6:88:fd:eb:16:4d:1e:5b:50:66:aa:28: 8d:32:46:44:93:a4:cd:20:13:a8:ea:d6:1b:25:75: f8:60:f5:01:59:c7:4c:0c:1a:fe:4d:64:9e:8e:db: a6:b5:6c:12:2b:21:6b:c6:04:71:6a:22:2c:15:25: ba:44:28:d2:2b:81:d7:fa:ca:bd:32:f7:21:27:df: 7f:26:bf:c1:41:22:23:90:d1:7e:20:95:cc:c6:28: 2c:db:66:5e:37:19:cc:ce:33:b3:d7:0f:01:44:fe: 39:1a:fb:04:96:bf:ed:89:1b:a3:2a:60:43:15:65: 19:c5:c3:e5:36:cc:15:38:5f:47:57:de:6d:67:c7: 54:0f:a0:4e:9a:6f:84:59:20:ed:ec:1e:55:ba:6c: 2f:37:e7:0e:61:c8:63:d7:b1:49:16:c8:ac:d7:50: 3a:cf:57:7b:02:11:2e:55:6f:8a:41:f3:56:a7:3b: 4f:b5:ad:c2:a7:e6:92:7e:bb:7a:1c:01:84:9e:48: da:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:6A:4E:60:58:50:54:D9:7A:A5:EF:6D:39:E5:29:C2:0A:B5:02:4E X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/1mpOYFhQVNl6pe9tOeUpwgq1Ak4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.240.0/20 Signature Algorithm: sha256WithRSAEncryption 3f:c0:c9:1e:0a:4d:f9:20:cd:f7:a4:67:5d:bc:da:b6:c9:f5: 03:2d:e3:09:26:f8:61:0c:03:43:20:0e:d6:b1:6b:fc:01:e4: 2c:ac:95:29:9b:e2:e5:dd:aa:72:7c:2f:67:44:89:3a:5e:48: 96:06:84:e4:91:ec:14:80:dc:e2:fd:d5:de:f1:a7:02:fb:56: cc:f7:6c:0f:a2:4c:4f:7c:e7:92:06:64:0f:79:3a:36:7c:e5: 14:ae:47:5e:b7:3d:af:7c:0c:7e:91:d1:af:09:10:14:8c:20: 0e:cb:f7:8b:90:32:e9:78:37:96:fd:cb:27:9c:53:2b:6c:b2: d4:b0:a5:c9:39:f8:c1:99:92:0f:5f:ae:44:a9:88:87:77:93: 23:67:67:3a:20:9a:d4:e7:fb:11:ce:4c:56:da:b2:5f:3f:6d: e3:ea:bf:89:04:03:4b:f2:8c:5a:e9:6e:86:b3:25:54:b7:68: 19:32:5b:4d:4f:85:00:ae:08:f6:5f:ba:7e:22:f4:3b:c1:a6: 25:4f:8c:21:6b:cc:f4:43:3c:04:26:50:9b:a1:b8:c5:d9:aa: 34:5a:0c:c5:5c:58:e1:58:f0:b6:50:9f:90:59:5a:88:d7:49: 64:79:35:a6:a7:b0:e5:e1:5c:f8:f6:32:10:13:48:2c:e5:f8: db:16:f3:1c -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNTA4MjIw ODU3MDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ2NkE0RTYwNTg1MDU0 RDk3QUE1RUY2RDM5RTUyOUMyMEFCNTAyNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9xzbOFggBdRikOGsR7SEj7+7OQKcHCOGAXBdmDJAzYp7dSiah R5mYB82mhgrKeNFZDegWujcW+vPSytSSc9aI/esWTR5bUGaqKI0yRkSTpM0gE6jq 1hsldfhg9QFZx0wMGv5NZJ6O26a1bBIrIWvGBHFqIiwVJbpEKNIrgdf6yr0y9yEn 338mv8FBIiOQ0X4glczGKCzbZl43GczOM7PXDwFE/jka+wSWv+2JG6MqYEMVZRnF w+U2zBU4X0dX3m1nx1QPoE6ab4RZIO3sHlW6bC835w5hyGPXsUkWyKzXUDrPV3sC ES5Vb4pB81anO0+1rcKn5pJ+u3ocAYSeSNoHAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU1mpOYFhQVNl6pe9tOeUpwgq1Ak4wHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vMW1wT1lGaFFW Tmw2cGU5dE9lVXB3Z3ExQWs0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBGUA8DANBgkqhkiG9w0BAQsFAAOCAQEAP8DJHgpN+SDN96RnXbzatsn1 Ay3jCSb4YQwDQyAO1rFr/AHkLKyVKZvi5d2qcnwvZ0SJOl5IlgaE5JHsFIDc4v3V 3vGnAvtWzPdsD6JMT3znkgZkD3k6NnzlFK5HXrc9r3wMfpHRrwkQFIwgDsv3i5Ay 6Xg3lv3LJ5xTK2yy1LClyTn4wZmSD1+uRKmIh3eTI2dnOiCa1Of7Ec5MVtqyXz9t 4+q/iQQDS/KMWuluhrMlVLdoGTJbTU+FAK4I9l+6fiL0O8GmJU+MIWvM9EM8BCZQ m6G4xdmqNFoMxVxY4VjwtlCfkFlaiNdJZHk1pqew5eFc+PYyEBNILOX42xbzHA== -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:53 2025 by rpki-client