$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/zgCahp4Iv06YaoRfmsJherXZROg.roa File: zgCahp4Iv06YaoRfmsJherXZROg.roa (raw, json) Hash identifier: 6C7iI/OJnQ8PEd2p5MBIL4p/QDtQpi/g+7QiMzbB04c= Subject key identifier: CE:00:9A:86:9E:08:BF:4E:98:6A:84:5F:9A:C2:61:7A:B5:D9:44:E8 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0DE7 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/zgCahp4Iv06YaoRfmsJherXZROg.roa Signing time: Fri 22 Aug 2025 08:57:07 +0000 ROA not before: Fri 22 Aug 2025 08:57:07 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 101.0.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3559 (0xde7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 22 08:57:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CE009A869E08BF4E986A845F9AC2617AB5D944E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:36:df:ad:cf:50:75:f2:32:bd:91:41:4e:b9: f6:12:c6:9c:53:b3:e6:e5:50:72:7f:22:6d:45:59: 2f:51:b5:75:73:32:28:f3:5c:04:c5:a1:1e:d5:87: af:3c:79:07:9f:cc:bc:35:23:cf:75:5a:68:49:c9: 06:47:67:00:88:30:aa:9d:9b:69:9e:f8:f1:59:ab: 46:1b:18:ca:bd:aa:32:d8:fe:0f:ec:3d:db:32:cc: 82:ab:94:d7:2c:4c:e2:c6:4f:1f:a4:99:31:87:d6: bb:5b:c6:73:76:e4:bc:70:f4:90:4f:7a:ff:b0:f7: 6e:56:37:fb:5e:7f:5e:47:12:21:e1:3a:16:72:e9: 78:0d:16:08:bb:98:dc:58:ca:cb:86:1c:db:a8:f4: 23:cf:96:3b:d6:41:04:e3:c3:ff:78:3e:fa:7e:e9: 4b:d9:cd:c1:64:9e:af:48:fe:33:26:8e:3e:fa:9d: 11:f8:71:bc:08:1b:05:43:17:76:19:48:95:9a:64: 02:21:5d:1d:3e:07:f6:43:b3:a3:c1:5f:8b:a8:e1: 8b:ff:fd:6d:ef:44:63:c9:87:23:d9:c5:0f:ba:35: 10:c4:ab:03:41:6a:bf:7a:ca:b9:77:cc:87:4a:76: ee:14:7d:53:e0:e0:f9:b1:65:5b:ff:83:29:92:80: 69:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:00:9A:86:9E:08:BF:4E:98:6A:84:5F:9A:C2:61:7A:B5:D9:44:E8 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/zgCahp4Iv06YaoRfmsJherXZROg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.224.0/21 Signature Algorithm: sha256WithRSAEncryption 2f:85:bb:47:f7:05:88:f0:0b:61:32:96:43:ce:4c:8b:d2:09: 3d:a7:c1:ce:a6:8c:25:49:be:ec:66:db:d0:9a:ce:73:e4:01: 25:42:3d:87:a8:bc:4e:24:df:9b:6b:55:b4:b0:6b:68:95:de: 13:91:eb:13:95:e1:bc:b6:44:1d:5c:fb:cd:36:05:73:0e:7c: 57:15:ca:56:b5:90:e1:05:2e:33:91:b3:02:86:f3:d0:41:93: 2a:64:37:ee:b5:db:11:10:ae:bb:93:a9:a7:d7:ce:a1:d3:41: e0:b6:96:e9:75:28:3d:c7:b0:52:87:8f:eb:18:5b:c7:da:44: 6b:ee:ad:3f:79:70:59:2f:52:c1:25:49:fc:0f:1d:69:51:4d: 13:8b:a6:a8:45:a8:9a:bb:47:f9:40:d6:c6:41:5d:5d:c5:e8: 27:b5:51:9c:83:0b:5f:fa:21:eb:26:d4:db:5c:64:89:25:c9: bd:99:22:4c:37:9c:7c:57:65:bd:60:09:42:ed:c3:5f:46:1f: ef:3e:1a:ca:29:f6:60:da:bf:72:fe:a2:37:86:e1:ad:9e:c9: 7d:37:3c:2c:9a:ae:b8:8c:63:0e:36:f5:7a:66:e5:e9:95:37: 26:ab:d8:d7:11:08:ac:49:8e:bb:e7:04:7e:8f:e3:f6:36:54: 8b:91:f6:87 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNTA4MjIw ODU3MDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENFMDA5QTg2OUUwOEJG NEU5ODZBODQ1RjlBQzI2MTdBQjVEOTQ0RTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHNt+tz1B18jK9kUFOufYSxpxTs+blUHJ/Im1FWS9RtXVzMijz XATFoR7Vh688eQefzLw1I891WmhJyQZHZwCIMKqdm2me+PFZq0YbGMq9qjLY/g/s PdsyzIKrlNcsTOLGTx+kmTGH1rtbxnN25Lxw9JBPev+w925WN/tef15HEiHhOhZy 6XgNFgi7mNxYysuGHNuo9CPPljvWQQTjw/94Pvp+6UvZzcFknq9I/jMmjj76nRH4 cbwIGwVDF3YZSJWaZAIhXR0+B/ZDs6PBX4uo4Yv//W3vRGPJhyPZxQ+6NRDEqwNB ar96yrl3zIdKdu4UfVPg4PmxZVv/gymSgGmjAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUzgCahp4Iv06YaoRfmsJherXZROgwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vemdDYWhwNEl2 MDZZYW9SZm1zSmhlclhaUk9nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA2UA4DANBgkqhkiG9w0BAQsFAAOCAQEAL4W7R/cFiPALYTKWQ85Mi9IJ PafBzqaMJUm+7Gbb0JrOc+QBJUI9h6i8TiTfm2tVtLBraJXeE5HrE5XhvLZEHVz7 zTYFcw58VxXKVrWQ4QUuM5GzAobz0EGTKmQ37rXbERCuu5Opp9fOodNB4LaW6XUo PcewUoeP6xhbx9pEa+6tP3lwWS9SwSVJ/A8daVFNE4umqEWomrtH+UDWxkFdXcXo J7VRnIMLX/oh6ybU21xkiSXJvZkiTDecfFdlvWAJQu3DX0Yf7z4ayin2YNq/cv6i N4bhrZ7JfTc8LJquuIxjDjb1embl6ZU3JqvY1xEIrEmOu+cEfo/j9jZUi5H2hw== -----END CERTIFICATE-----Generated at Sun Aug 24 05:10:32 2025 by rpki-client