$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/PW1hEvcFfRlI-42JuMn8U83WQIQ.roa File: PW1hEvcFfRlI-42JuMn8U83WQIQ.roa (raw, json) Hash identifier: UcViDJ/uxy11cgca97b583NqU2mZ8XCWQEECC546ReM= Subject key identifier: 3D:6D:61:12:F7:05:7D:19:48:FB:8D:89:B8:C9:FC:53:CD:D6:40:84 Certificate issuer: /CN=574D5FD459D0D01C338EF0236122C762EC83283C Certificate serial: 02B1 Authority key identifier: 57:4D:5F:D4:59:D0:D0:1C:33:8E:F0:23:61:22:C7:62:EC:83:28:3C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/PW1hEvcFfRlI-42JuMn8U83WQIQ.roa Signing time: Wed 24 Sep 2025 15:49:40 +0000 ROA not before: Wed 24 Sep 2025 15:49:40 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 152615 IP address blocks: 160.187.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 689 (0x2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=574D5FD459D0D01C338EF0236122C762EC83283C Validity Not Before: Sep 24 15:49:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3D6D6112F7057D1948FB8D89B8C9FC53CDD64084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0d:fe:7d:2a:96:ca:34:dc:6d:1a:56:a1:6c: da:13:5f:2a:b3:f1:a3:73:4e:eb:c4:bc:97:2d:48: a1:b6:16:ed:72:b7:80:38:ce:0f:c0:c5:e4:e4:e9: 45:4b:2b:52:70:39:7c:4f:2c:81:1a:6a:58:2c:0f: dc:07:70:c5:6b:15:e2:28:4d:5c:14:11:27:5c:4b: 0d:15:18:9c:9c:2d:cd:ae:94:c3:1a:4b:f1:78:61: 85:66:32:fc:ac:fe:96:91:d4:dd:d9:f7:ba:24:01: 92:3d:08:3c:11:a2:74:69:ee:3b:b2:c5:b5:cd:50: 50:52:d3:47:98:06:b0:97:66:26:ff:24:8b:d1:2a: db:83:07:79:a7:3a:4f:cd:47:ea:cc:13:1d:33:c2: df:8b:74:5e:67:e8:43:3f:0d:05:25:b4:ea:1d:c4: be:70:bd:53:7e:29:d9:24:06:f6:64:93:ff:d4:17: cf:01:9e:89:ef:64:b4:72:33:c3:03:29:f5:65:ab: 5a:01:3e:4e:53:21:db:c8:03:cd:93:ab:b2:5f:e5: 2d:97:0f:a5:71:8f:05:2b:49:8e:e5:20:48:1f:0b: 4b:0d:11:95:71:eb:df:5e:85:2b:33:64:08:87:52: 6e:21:37:14:18:ac:3e:25:3b:5c:3e:33:c3:99:3b: 09:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:6D:61:12:F7:05:7D:19:48:FB:8D:89:B8:C9:FC:53:CD:D6:40:84 X509v3 Authority Key Identifier: keyid:57:4D:5F:D4:59:D0:D0:1C:33:8E:F0:23:61:22:C7:62:EC:83:28:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/PW1hEvcFfRlI-42JuMn8U83WQIQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.187.198.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:07:ed:2c:07:1e:a1:a2:c6:65:ee:8e:3f:d9:88:6c:b0:4e: c9:6e:0f:84:71:20:0f:c6:65:f5:c3:da:a6:f8:71:86:01:fb: 8b:25:10:e2:e0:8c:6e:b6:62:75:fc:ca:06:f1:2d:d5:97:01: 83:99:2d:b3:a8:37:9e:76:50:6f:17:c6:e2:71:c8:12:c9:36: 9d:fe:e4:2f:92:ce:85:72:f0:10:8e:2d:64:40:54:cb:bb:e0: 4a:48:ca:24:4c:78:55:3b:b0:33:f4:55:0f:13:7c:22:e5:69: d7:c4:66:11:df:c6:7c:c0:61:37:19:f6:ef:7e:b7:aa:6b:4d: da:e4:db:20:78:d8:7b:8b:66:95:df:aa:28:31:eb:19:41:84: 0f:3b:65:65:14:4b:0a:58:5e:ba:88:c5:75:14:22:64:ee:dd: ab:45:95:08:f1:7e:4a:84:ad:31:6f:5e:a8:0d:a7:5e:97:dc: 41:1f:9a:23:a8:1b:5e:c2:e4:8a:57:9a:f8:fa:78:65:99:97: cb:ad:65:37:0a:20:7a:62:e3:19:43:4b:29:b9:d5:53:32:41: 40:1f:f8:c3:b1:fe:d5:ee:f4:51:86:5a:5b:93:56:a6:82:c4: 9b:32:5d:d5:06:ef:39:b1:31:1b:78:1f:ca:e5:76:a7:36:b3: c3:0c:d9:93 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICArEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTc0 RDVGRDQ1OUQwRDAxQzMzOEVGMDIzNjEyMkM3NjJFQzgzMjgzQzAeFw0yNTA5MjQx NTQ5NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNENkQ2MTEyRjcwNTdE MTk0OEZCOEQ4OUI4QzlGQzUzQ0RENjQwODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0Df59KpbKNNxtGlahbNoTXyqz8aNzTuvEvJctSKG2Fu1yt4A4 zg/AxeTk6UVLK1JwOXxPLIEaalgsD9wHcMVrFeIoTVwUESdcSw0VGJycLc2ulMMa S/F4YYVmMvys/paR1N3Z97okAZI9CDwRonRp7juyxbXNUFBS00eYBrCXZib/JIvR KtuDB3mnOk/NR+rMEx0zwt+LdF5n6EM/DQUltOodxL5wvVN+KdkkBvZkk//UF88B nonvZLRyM8MDKfVlq1oBPk5TIdvIA82Tq7Jf5S2XD6VxjwUrSY7lIEgfC0sNEZVx 699ehSszZAiHUm4hNxQYrD4lO1w+M8OZOwkLAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUPW1hEvcFfRlI+42JuMn8U83WQIQwHwYDVR0jBBgwFoAUV01f1FnQ0BwzjvAj YSLHYuyDKDwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVTU1Z VEVDSC9WMDFmMUZuUTBCd3pqdkFqWVNMSFl1eURLRHcuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1YwMWYxRm5RMEJ3emp2QWpZU0xIWXV5REtEdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVU1NWVRFQ0gvUFcxaEV2Y0Zm UmxJLTQySnVNbjhVODNXUUlRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAaC7xjANBgkqhkiG9w0BAQsFAAOCAQEATwftLAceoaLGZe6OP9mIbLBO yW4PhHEgD8Zl9cPapvhxhgH7iyUQ4uCMbrZidfzKBvEt1ZcBg5kts6g3nnZQbxfG 4nHIEsk2nf7kL5LOhXLwEI4tZEBUy7vgSkjKJEx4VTuwM/RVDxN8IuVp18RmEd/G fMBhNxn27363qmtN2uTbIHjYe4tmld+qKDHrGUGEDztlZRRLClheuojFdRQiZO7d q0WVCPF+SoStMW9eqA2nXpfcQR+aI6gbXsLkilea+Pp4ZZmXy61lNwogemLjGUNL KbnVUzJBQB/4w7H+1e70UYZaW5NWpoLEmzJd1QbvObExG3gfyuV2pzazwwzZkw== -----END CERTIFICATE-----Generated at Mon Oct 20 20:37:51 2025 by rpki-client