$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/-JhexDr0iOL5hJwEKiYJr-6d-yY.roa File: -JhexDr0iOL5hJwEKiYJr-6d-yY.roa (raw, json) Hash identifier: /EdeHaDeL4pq+u7I1y+lqmsiXFxI6r0xUKDxyxVhZUM= Subject key identifier: F8:98:5E:C4:3A:F4:88:E2:F9:84:9C:04:2A:26:09:AF:EE:9D:FB:26 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 10F3 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/-JhexDr0iOL5hJwEKiYJr-6d-yY.roa Signing time: Mon 10 Feb 2025 13:56:38 +0000 ROA not before: Mon 10 Feb 2025 13:56:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 121.254.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4339 (0x10f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F8985EC43AF488E2F9849C042A2609AFEE9DFB26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4a:28:81:a8:d5:c1:30:76:e1:a5:ba:65:52: eb:a6:9d:18:3f:37:37:cd:9e:15:70:03:74:d8:18: ae:0c:35:97:04:df:33:a7:b8:29:82:d8:d9:7c:d4: a6:a2:9b:61:13:b2:81:3d:09:54:85:8d:31:b5:30: ea:63:87:77:c8:cc:49:09:9f:a3:ca:6e:ba:5a:5f: c2:59:be:a0:dc:31:f6:72:0c:04:0f:b5:d7:1d:7f: e5:5f:bc:9c:07:16:d4:f8:be:8c:7e:b9:3d:d7:a3: 67:15:30:7d:65:c8:55:ac:10:85:54:0f:92:8e:d4: 34:30:29:43:a4:8a:a8:bc:37:27:3d:43:69:5e:5e: b4:d6:19:50:7c:e0:25:21:22:19:3f:28:0b:66:32: 87:95:b9:9b:40:59:41:1c:0e:a8:f4:fe:b2:cd:86: c2:70:03:05:d0:58:c8:4f:0c:fe:fc:5b:65:54:fe: 65:95:4a:8a:cd:90:e7:9f:b2:ef:d7:e9:c9:c7:3c: b1:3b:65:00:95:52:dc:96:68:7c:30:60:ab:da:4d: 04:0d:9f:e2:36:ae:07:e0:1a:bf:4a:ff:a7:bf:48: 19:e8:18:d7:ef:16:a9:82:54:bc:6a:2e:db:34:76: 50:df:ea:d7:89:61:53:65:39:a1:e8:23:82:35:46: ca:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:98:5E:C4:3A:F4:88:E2:F9:84:9C:04:2A:26:09:AF:EE:9D:FB:26 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/-JhexDr0iOL5hJwEKiYJr-6d-yY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.254.96.0/19 Signature Algorithm: sha256WithRSAEncryption 97:fa:47:87:e1:9a:a5:e0:ed:6d:ec:75:35:08:49:b6:c5:8c: 15:67:9f:c7:31:9c:72:ed:9f:d7:2c:ea:81:dc:28:54:3e:73: 6c:78:ce:ad:58:8f:52:d6:f2:b3:3b:61:67:df:0f:ab:ea:f4: 34:37:bb:dd:37:07:b9:6e:e1:c3:03:94:c4:2c:0a:f3:26:64: 45:cc:ac:40:5e:dc:f9:9d:c2:ed:21:b3:57:78:5f:71:0c:17: 54:d6:1b:e2:3d:9b:bd:04:98:13:0c:dd:44:a0:07:7e:9d:ed: 5a:fe:f8:ef:2a:dd:fa:6d:09:87:9b:d4:e8:a1:6c:51:54:4f: 95:85:5a:e0:c2:fa:f6:0c:7b:9a:de:84:10:66:79:b3:cc:81: e4:5b:5f:31:43:28:1a:e5:4a:60:7b:eb:f9:0f:fd:fb:96:9e: 10:e7:cb:54:94:50:51:52:d9:92:09:08:b7:4e:11:6f:4f:32: 4c:16:02:ba:24:f0:55:5a:6e:60:01:ba:77:f3:68:a9:e6:d3: 98:6a:e5:dd:55:42:b2:d4:f7:cc:9c:53:86:ec:20:bb:c6:0a: 14:41:6f:27:94:e4:a3:cc:a6:fd:41:68:c2:cb:88:70:b8:87: 02:4c:67:f3:7e:6f:20:4a:ad:d9:6a:c9:31:fe:fd:8e:3d:1a: 7d:a4:81:2b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEPMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4OTg1RUM0M0FGNDg4 RTJGOTg0OUMwNDJBMjYwOUFGRUU5REZCMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKSiiBqNXBMHbhpbplUuumnRg/NzfNnhVwA3TYGK4MNZcE3zOn uCmC2Nl81Kaim2ETsoE9CVSFjTG1MOpjh3fIzEkJn6PKbrpaX8JZvqDcMfZyDAQP tdcdf+VfvJwHFtT4vox+uT3Xo2cVMH1lyFWsEIVUD5KO1DQwKUOkiqi8Nyc9Q2le XrTWGVB84CUhIhk/KAtmMoeVuZtAWUEcDqj0/rLNhsJwAwXQWMhPDP78W2VU/mWV SorNkOefsu/X6cnHPLE7ZQCVUtyWaHwwYKvaTQQNn+I2rgfgGr9K/6e/SBnoGNfv FqmCVLxqLts0dlDf6teJYVNlOaHoI4I1RsrJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU+JhexDr0iOL5hJwEKiYJr+6d+yYwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvLUpoZXhEcjBpT0w1aEp3RUtpWUpy LTZkLXlZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXn+YDAN BgkqhkiG9w0BAQsFAAOCAQEAl/pHh+GapeDtbex1NQhJtsWMFWefxzGccu2f1yzq gdwoVD5zbHjOrViPUtbyszthZ98Pq+r0NDe73TcHuW7hwwOUxCwK8yZkRcysQF7c +Z3C7SGzV3hfcQwXVNYb4j2bvQSYEwzdRKAHfp3tWv747yrd+m0Jh5vU6KFsUVRP lYVa4ML69gx7mt6EEGZ5s8yB5FtfMUMoGuVKYHvr+Q/9+5aeEOfLVJRQUVLZkgkI t04Rb08yTBYCuiTwVVpuYAG6d/NoqebTmGrl3VVCstT3zJxThuwgu8YKFEFvJ5Tk o8ym/UFowsuIcLiHAkxn835vIEqt2WrJMf79jj0afaSBKw== -----END CERTIFICATE-----Generated at Tue Apr 8 18:10:15 2025 by rpki-client