$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/gKJm2jnNbOqKONezAzA0WWIC0hE.roa File: gKJm2jnNbOqKONezAzA0WWIC0hE.roa (raw, json) Hash identifier: SGrkvn3aqwKEve29PpyXpZqca90OJFwwSSy+69+8T7k= Subject key identifier: 80:A2:66:DA:39:CD:6C:EA:8A:38:D7:B3:03:30:34:59:62:02:D2:11 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0DE6 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/gKJm2jnNbOqKONezAzA0WWIC0hE.roa Signing time: Fri 22 Aug 2025 08:57:07 +0000 ROA not before: Fri 22 Aug 2025 08:57:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24169 IP address blocks: 150.129.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3558 (0xde6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 22 08:57:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=80A266DA39CD6CEA8A38D7B3033034596202D211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:64:20:0b:0b:7a:43:70:34:df:e3:89:e2:59: 41:ae:97:ac:aa:2d:57:08:1b:1b:59:89:0f:f6:94: a7:e6:f4:12:c7:14:7a:76:12:f2:89:15:fc:f2:29: 94:47:11:14:45:ae:ec:fe:0c:88:06:de:85:55:c4: 76:83:58:91:4e:65:16:00:d2:5c:66:8e:2e:77:45: 5b:f5:06:1a:69:01:b2:b8:c1:8e:02:92:de:e0:96: bc:cf:9b:ec:80:33:e4:99:6a:47:7c:4e:92:06:db: 75:44:f6:ca:8e:c1:cb:87:58:b4:e4:ff:e0:58:65: 05:2b:af:ec:8f:29:53:37:59:f6:53:e1:d1:79:01: 78:e1:8e:f3:50:0c:a6:b6:69:80:a8:07:eb:dd:0f: 5e:ea:f6:27:ed:0f:84:6f:a5:38:96:61:cd:bd:bb: 99:1d:f3:d2:8c:73:9a:27:05:49:94:80:a5:f8:4f: 69:7d:3b:f5:06:e9:56:8d:50:4c:c2:d1:6f:63:10: d2:2f:e9:72:a3:20:b6:0f:68:f2:cc:a0:83:91:c8: da:de:99:a3:9c:54:24:06:55:74:80:07:cb:cb:57: e5:4c:f6:ec:b0:48:23:29:97:00:b0:40:d9:16:21: ca:b9:32:55:11:39:10:04:e8:56:3b:c9:9a:c3:4b: a4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:A2:66:DA:39:CD:6C:EA:8A:38:D7:B3:03:30:34:59:62:02:D2:11 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/gKJm2jnNbOqKONezAzA0WWIC0hE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.129.36.0/24 Signature Algorithm: sha256WithRSAEncryption 79:68:a9:15:4e:75:40:1a:c0:74:e8:08:19:9d:87:c4:3b:f3: 1e:1d:11:f6:dd:14:2b:a4:c7:19:a4:d6:2f:a9:4f:0c:75:75: 3d:26:04:c4:02:81:b3:74:8f:7d:c2:c2:72:de:fe:4b:d9:58: b1:b8:f5:f6:f6:0b:40:96:49:f4:90:9a:7a:ec:03:7c:44:29: 9e:1a:52:35:4e:69:31:1a:ab:14:e1:52:2e:ba:6e:95:39:66: 14:2c:5e:5f:a9:f1:77:0b:33:bf:1f:fa:07:9e:7c:01:bd:94: 82:c6:76:c4:06:2a:c3:ff:e5:5d:07:75:be:b4:20:83:98:70: f9:ef:fb:51:59:3b:76:c1:48:cd:0b:33:ec:0e:25:fa:00:73: ad:05:1d:11:5c:ed:d5:4f:27:b3:e3:60:14:9e:46:59:77:48: 91:85:2b:7d:5a:4e:3d:88:73:17:4e:e6:6d:c1:ae:36:40:0a: 88:8a:71:1f:49:8c:e2:27:ba:38:c3:52:80:e7:8f:01:84:66: 56:63:5c:f7:f0:02:71:8e:1f:f5:bc:e7:ff:e7:53:ac:bb:82: 9a:b9:e7:0c:b5:5f:8d:84:2c:8e:4f:af:3d:58:26:83:06:1a: 87:fe:53:8a:0f:57:26:e5:d4:86:62:a5:0a:76:73:b8:c9:3b: ac:aa:fc:b3 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDeYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNTA4MjIw ODU3MDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgwQTI2NkRBMzlDRDZD RUE4QTM4RDdCMzAzMzAzNDU5NjIwMkQyMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYZCALC3pDcDTf44niWUGul6yqLVcIGxtZiQ/2lKfm9BLHFHp2 EvKJFfzyKZRHERRFruz+DIgG3oVVxHaDWJFOZRYA0lxmji53RVv1BhppAbK4wY4C kt7glrzPm+yAM+SZakd8TpIG23VE9sqOwcuHWLTk/+BYZQUrr+yPKVM3WfZT4dF5 AXjhjvNQDKa2aYCoB+vdD17q9iftD4RvpTiWYc29u5kd89KMc5onBUmUgKX4T2l9 O/UG6VaNUEzC0W9jENIv6XKjILYPaPLMoIORyNremaOcVCQGVXSAB8vLV+VM9uyw SCMplwCwQNkWIcq5MlURORAE6FY7yZrDS6RhAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUgKJm2jnNbOqKONezAzA0WWIC0hEwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vZ0tKbTJqbk5i T3FLT05lekF6QTBXV0lDMGhFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAJaBJDANBgkqhkiG9w0BAQsFAAOCAQEAeWipFU51QBrAdOgIGZ2HxDvz Hh0R9t0UK6THGaTWL6lPDHV1PSYExAKBs3SPfcLCct7+S9lYsbj19vYLQJZJ9JCa euwDfEQpnhpSNU5pMRqrFOFSLrpulTlmFCxeX6nxdwszvx/6B558Ab2UgsZ2xAYq w//lXQd1vrQgg5hw+e/7UVk7dsFIzQsz7A4l+gBzrQUdEVzt1U8ns+NgFJ5GWXdI kYUrfVpOPYhzF07mbcGuNkAKiIpxH0mM4ie6OMNSgOePAYRmVmNc9/ACcY4f9bzn /+dTrLuCmrnnDLVfjYQsjk+vPVgmgwYah/5Tig9XJuXUhmKlCnZzuMk7rKr8sw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:08:25 2025 by rpki-client