$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/8GtD3boXU9WHY-M_jOJX5akVVm4.roa File: 8GtD3boXU9WHY-M_jOJX5akVVm4.roa (raw, json) Hash identifier: cVvoXE5wQ1im0mDPUK3cWNhk/WqJ090lYrSPEKqxXMk= Subject key identifier: F0:6B:43:DD:BA:17:53:D5:87:63:E3:3F:8C:E2:57:E5:A9:15:56:6E Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0DE8 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/8GtD3boXU9WHY-M_jOJX5akVVm4.roa Signing time: Fri 22 Aug 2025 08:57:07 +0000 ROA not before: Fri 22 Aug 2025 08:57:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 150.129.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3560 (0xde8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 22 08:57:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F06B43DDBA1753D58763E33F8CE257E5A915566E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e4:fb:0d:63:66:4c:49:ec:1d:f8:45:eb:e7: cf:a1:cd:2b:b1:53:20:28:6e:2a:d4:4e:56:69:71: 15:04:58:91:ae:31:80:94:f5:dd:a3:80:64:6b:b6: f8:0a:91:9b:93:56:d7:d7:67:05:d3:6b:46:e1:6e: b7:27:ff:66:f6:f2:78:f3:47:ff:cc:17:37:64:4c: d7:92:f3:c8:02:ef:78:75:9f:bd:6d:78:19:a1:b6: bc:43:13:ec:22:c7:18:6d:f8:73:ea:cc:91:79:ca: e3:47:c9:7c:54:24:64:d5:b3:26:20:e5:1b:e5:70: ec:45:b3:3c:54:7f:15:ee:4c:60:d2:f0:0b:1a:ac: 3a:58:71:22:60:5c:e5:92:6e:a4:53:fb:17:c4:93: 72:f4:95:4a:d3:62:8d:8f:bf:16:bb:6b:d6:9e:e0: ab:6b:1e:4e:91:0d:c1:3f:92:1b:f0:4c:16:9c:ac: 71:b1:65:32:8b:5f:b3:12:14:02:66:73:32:12:4f: fe:8f:f5:e7:57:6d:34:9c:91:b0:41:b0:75:bc:fc: 25:bc:4c:b7:b6:b9:ce:a0:3e:9b:fe:30:9f:b6:7f: 46:9b:b1:38:08:de:69:84:fd:2d:01:0b:6f:d7:ff: 07:a1:8f:c1:a3:cc:36:b4:a8:25:b1:3a:2f:a5:28: 11:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6B:43:DD:BA:17:53:D5:87:63:E3:3F:8C:E2:57:E5:A9:15:56:6E X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/8GtD3boXU9WHY-M_jOJX5akVVm4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.129.36.0/22 Signature Algorithm: sha256WithRSAEncryption 47:43:e1:21:5d:30:ed:25:62:3d:a9:f9:9a:a0:93:06:be:3d: 74:1f:1e:98:04:d0:a2:7b:f9:5d:c1:ef:69:85:05:a3:f8:65: 8a:0a:b7:d5:1f:c6:78:93:9d:cb:be:36:53:4d:e5:d0:7e:d3: cd:b7:0a:58:c9:57:91:49:de:e7:2a:d4:1b:8e:56:0f:57:7c: 72:39:6b:51:35:09:2d:f0:4e:fa:5b:ca:64:ba:81:b0:c1:db: fd:1f:d6:38:3f:cd:75:49:9f:7f:f8:7b:98:1b:1e:4e:5d:ac: 2c:19:79:16:53:71:14:b0:f0:2f:9c:b8:13:c1:cc:21:bd:90: 91:ef:40:9e:8f:c8:f5:b2:62:00:ae:9d:c5:b5:dc:de:aa:56: 70:83:fd:19:76:4e:bf:61:18:e5:44:c9:0b:a8:f4:a7:50:6c: b7:38:73:03:ec:34:86:19:ad:83:7e:d6:fd:80:8a:db:ed:af: 47:26:99:1e:92:8a:a6:3e:75:22:90:0b:b7:46:5e:b5:f7:9e: 6e:e3:61:92:a6:cd:59:64:be:05:bd:c9:63:11:19:a4:2f:e7: ed:aa:35:30:fe:81:2a:a6:03:5e:40:a2:5f:0c:78:cd:36:ff: eb:8c:cb:2f:7f:a7:85:66:d8:97:63:73:14:b1:b8:a0:ad:ef: 0d:51:89:0b -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDegwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNTA4MjIw ODU3MDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYwNkI0M0REQkExNzUz RDU4NzYzRTMzRjhDRTI1N0U1QTkxNTU2NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE5PsNY2ZMSewd+EXr58+hzSuxUyAobirUTlZpcRUEWJGuMYCU 9d2jgGRrtvgKkZuTVtfXZwXTa0bhbrcn/2b28njzR//MFzdkTNeS88gC73h1n71t eBmhtrxDE+wixxht+HPqzJF5yuNHyXxUJGTVsyYg5RvlcOxFszxUfxXuTGDS8Asa rDpYcSJgXOWSbqRT+xfEk3L0lUrTYo2Pvxa7a9ae4KtrHk6RDcE/khvwTBacrHGx ZTKLX7MSFAJmczIST/6P9edXbTSckbBBsHW8/CW8TLe2uc6gPpv+MJ+2f0absTgI 3mmE/S0BC2/X/wehj8GjzDa0qCWxOi+lKBGnAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU8GtD3boXU9WHY+M/jOJX5akVVm4wHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vOEd0RDNib1hV OVdIWS1NX2pPSlg1YWtWVm00LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEApaBJDANBgkqhkiG9w0BAQsFAAOCAQEAR0PhIV0w7SViPan5mqCTBr49 dB8emATQonv5XcHvaYUFo/hligq31R/GeJOdy742U03l0H7TzbcKWMlXkUne5yrU G45WD1d8cjlrUTUJLfBO+lvKZLqBsMHb/R/WOD/NdUmff/h7mBseTl2sLBl5FlNx FLDwL5y4E8HMIb2Qke9Ano/I9bJiAK6dxbXc3qpWcIP9GXZOv2EY5UTJC6j0p1Bs tzhzA+w0hhmtg37W/YCK2+2vRyaZHpKKpj51IpALt0ZetfeebuNhkqbNWWS+Bb3J YxEZpC/n7ao1MP6BKqYDXkCiXwx4zTb/64zLL3+nhWbYl2NzFLG4oK3vDVGJCw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:10:30 2025 by rpki-client