$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-cVZAOjinBieIkzPQK3PWkuJD54.roa File: -cVZAOjinBieIkzPQK3PWkuJD54.roa (raw, json) Hash identifier: QSftFuYcnptxX6GryjxAjpdBrd0e4LdmX2JZ7F8Jwk0= Subject key identifier: F9:C5:59:00:E8:E2:9C:18:9E:22:4C:CF:40:AD:CF:5A:4B:89:0F:9E Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 13C9 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-cVZAOjinBieIkzPQK3PWkuJD54.roa Signing time: Fri 22 Aug 2025 08:57:16 +0000 ROA not before: Fri 22 Aug 2025 08:57:16 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17408 IP address blocks: 203.163.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 06:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5065 (0x13c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 22 08:57:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F9C55900E8E29C189E224CCF40ADCF5A4B890F9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:86:f6:01:df:6e:f7:a3:97:56:ad:31:7c: 9d:c4:4f:a6:b8:bc:b3:b6:7d:17:54:fb:be:b4:df: 80:6a:6e:6f:3a:7d:da:bd:5e:6e:3e:7c:dd:ae:38: 43:96:f3:ec:e7:42:e5:39:e2:a2:79:ed:7f:e0:f3: a7:e8:8d:d8:69:85:93:c2:5b:46:ef:11:be:a6:43: c9:52:03:1a:b1:bd:4b:af:a7:b1:53:87:e1:87:77: 98:5c:8e:94:53:35:e1:70:2b:e5:02:1f:ca:66:53: 52:d8:6c:75:5d:c9:6a:8b:9d:e8:9a:2f:0e:c7:ea: de:d0:0b:c3:3c:54:36:0c:5b:91:94:fc:82:02:7d: ab:f1:01:10:33:b7:a6:bc:15:22:ea:37:d6:1c:b4: 46:dc:2a:12:94:f3:a9:5b:82:5e:bd:c4:61:7d:84: 0c:7b:d7:79:32:9e:80:a0:a2:28:85:c4:ba:cb:b5: de:89:91:1e:74:57:16:86:1c:87:4e:e4:08:d7:ae: 81:88:2f:e7:a0:51:b3:d8:8b:b6:5c:88:76:29:1b: 00:64:ac:4e:87:a1:12:60:55:40:be:03:47:0c:75: 64:b3:e4:eb:d9:bf:76:0e:ab:80:2a:16:20:50:c3: 66:bf:6f:02:ff:23:44:ac:d3:5c:a4:01:57:56:ee: ee:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C5:59:00:E8:E2:9C:18:9E:22:4C:CF:40:AD:CF:5A:4B:89:0F:9E X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-cVZAOjinBieIkzPQK3PWkuJD54.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.220.0/23 Signature Algorithm: sha256WithRSAEncryption 16:63:86:33:33:cc:d6:54:7d:d6:18:76:62:a2:7e:15:4d:a1: 99:d9:ef:93:13:2b:ad:77:8c:77:c9:1f:91:2f:ab:87:68:35: 81:4f:fd:05:cc:8d:8f:5e:81:0f:91:23:d2:ee:6a:28:98:82: ac:1d:5b:f0:be:29:5a:34:62:55:d5:92:a9:76:a3:e8:69:52: f6:9f:8b:b7:57:d1:a4:0c:10:00:ec:63:83:7a:8c:92:d1:59: 8e:91:43:b8:1c:f3:14:c2:07:8d:38:fc:f2:2a:ca:4c:93:b7: d3:ea:1d:ed:fc:35:63:68:a6:18:fd:b9:2f:a0:e7:51:d8:17: bf:9f:e1:89:f5:02:50:87:77:5b:f7:0e:74:f1:30:04:96:31: c0:a2:ca:0e:30:95:ef:6e:71:3f:4f:0a:45:a6:e9:5d:13:97: e7:5a:d5:3d:0a:76:5f:15:c8:e0:ee:d4:e4:6b:1c:96:cf:9b: b2:0e:4b:23:47:bd:f1:cc:c8:9b:a9:55:19:72:25:82:58:20: d3:d5:9b:cf:ac:4e:4f:ec:cc:15:96:20:65:df:62:ba:a3:da: c0:9c:75:f2:7a:8b:17:c0:0a:32:3d:11:94:36:12:b4:18:e6: cc:eb:63:9d:ea:75:6e:05:d5:3f:d6:0d:03:db:41:3d:4b:96: 30:7c:47:1e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICE8kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw ODU3MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY5QzU1OTAwRThFMjlD MTg5RTIyNENDRjQwQURDRjVBNEI4OTBGOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzgYb2Ad9u96OXVq0xfJ3ET6a4vLO2fRdU+76034Bqbm86fdq9 Xm4+fN2uOEOW8+znQuU54qJ57X/g86fojdhphZPCW0bvEb6mQ8lSAxqxvUuvp7FT h+GHd5hcjpRTNeFwK+UCH8pmU1LYbHVdyWqLneiaLw7H6t7QC8M8VDYMW5GU/IIC favxARAzt6a8FSLqN9YctEbcKhKU86lbgl69xGF9hAx713kynoCgoiiFxLrLtd6J kR50VxaGHIdO5AjXroGIL+egUbPYi7ZciHYpGwBkrE6HoRJgVUC+A0cMdWSz5OvZ v3YOq4AqFiBQw2a/bwL/I0Ss01ykAVdW7u6fAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU+cVZAOjinBieIkzPQK3PWkuJD54wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8tY1ZaQU9qaW5CaWVJ a3pQUUszUFdrdUpENTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBy6PcMA0GCSqGSIb3DQEBCwUAA4IBAQAWY4YzM8zWVH3WGHZion4VTaGZ2e+T Eyutd4x3yR+RL6uHaDWBT/0FzI2PXoEPkSPS7moomIKsHVvwvilaNGJV1ZKpdqPo aVL2n4u3V9GkDBAA7GODeoyS0VmOkUO4HPMUwgeNOPzyKspMk7fT6h3t/DVjaKYY /bkvoOdR2Be/n+GJ9QJQh3db9w508TAEljHAosoOMJXvbnE/TwpFpuldE5fnWtU9 CnZfFcjg7tTkaxyWz5uyDksjR73xzMibqVUZciWCWCDT1ZvPrE5P7MwVliBl32K6 o9rAnHXyeosXwAoyPRGUNhK0GObM62Od6nVuBdU/1g0D20E9S5YwfEce -----END CERTIFICATE-----Generated at Wed Nov 5 04:40:45 2025 by rpki-client