$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/-seE9TQhPP6pPxM4Nx4AMraY7sk.roa File: -seE9TQhPP6pPxM4Nx4AMraY7sk.roa (raw, json) Hash identifier: 4B41je84f/XyOO6Pr9B36u5gjKb+Qqf6n+6h//iOpsI= Subject key identifier: FA:C7:84:F5:34:21:3C:FE:A9:3F:13:38:37:1E:00:32:B6:98:EE:C9 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1100 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/-seE9TQhPP6pPxM4Nx4AMraY7sk.roa Signing time: Mon 10 Feb 2025 13:56:43 +0000 ROA not before: Mon 10 Feb 2025 13:56:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.222.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 16:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4352 (0x1100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FAC784F534213CFEA93F1338371E0032B698EEC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b0:a1:bd:29:0c:dd:80:61:a5:a9:74:26:17: b7:40:43:00:77:c0:f6:d2:7a:70:b6:fd:e1:98:2a: d1:1b:f0:75:1e:b8:3d:eb:81:7e:1a:35:d7:51:68: e7:12:3f:3a:67:16:a2:ac:4a:6a:60:3e:6e:94:68: 6f:01:33:73:25:75:87:b7:b7:be:40:17:ee:f2:bb: 07:d4:49:b5:3c:6a:98:82:a5:37:d7:a0:62:b2:cd: 45:31:7c:96:0a:aa:a1:f6:61:07:64:f5:69:ba:62: 35:7d:8c:8e:79:19:ac:46:9a:52:3f:6a:52:90:24: 2d:d1:f2:fa:61:76:94:9c:47:79:ec:2d:44:a2:84: 61:1a:2e:61:60:cb:03:15:89:4b:90:a8:ff:7c:7a: 86:15:ab:f2:96:65:0d:f2:5c:56:c6:78:04:77:3a: 75:96:1b:ba:1f:e8:5b:d5:9c:10:0b:de:c2:1d:5b: 5a:cb:11:5d:ba:7b:d9:0a:aa:89:72:9f:a3:83:52: 18:45:91:0d:f8:f3:22:48:e8:c3:89:f2:1b:ed:3a: 8f:59:82:f6:1a:1e:28:60:df:f7:d3:a7:3c:77:6e: df:51:44:dc:db:45:56:b3:55:4d:e5:c0:18:96:d7: 51:4c:b9:cc:e1:a0:26:40:2a:e1:82:39:06:0f:41: 3f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C7:84:F5:34:21:3C:FE:A9:3F:13:38:37:1E:00:32:B6:98:EE:C9 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/-seE9TQhPP6pPxM4Nx4AMraY7sk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.16.0/21 Signature Algorithm: sha256WithRSAEncryption 37:af:e5:47:d0:42:5c:30:67:87:17:bf:af:b4:42:ce:04:b2: c6:7a:22:f5:b9:bf:70:31:a2:d7:11:1c:d7:87:bc:42:fd:4b: db:e3:31:9f:d4:0c:29:1c:c4:8e:07:b6:00:df:33:0f:b9:d2: 3d:f8:f1:ae:4b:5c:07:c1:e8:56:0d:4b:db:8b:a6:94:73:13: d3:f9:de:21:75:71:86:bc:79:00:ec:7f:da:b9:b7:a9:6e:02: de:be:76:0f:b3:dc:b2:6e:f1:b3:0a:a5:46:cf:2d:aa:fd:83: 33:be:8e:83:25:7c:c9:eb:13:50:8a:f5:01:d8:f5:e2:ad:71: 60:b8:c3:4c:be:c9:05:ac:a5:1a:73:27:ec:c0:b5:e1:04:ce: fb:05:89:7d:93:59:90:3c:35:f8:33:99:55:bb:76:4d:11:1e: b3:b8:46:db:6f:e2:94:c8:49:8d:1b:ba:84:78:24:0e:d9:a7: 89:46:55:ec:a4:29:49:1f:92:be:5b:9c:ad:70:ee:0c:04:88: 84:8f:53:ad:74:5d:8d:34:df:cc:5a:e5:ff:53:61:6c:15:94: c1:22:a2:63:22:11:34:ad:ac:38:a8:d9:b7:94:7a:40:e0:9d: 03:a0:39:1e:a4:36:03:cb:e4:4f:71:6e:1f:55:ff:49:ec:b8: 94:0b:cd:bb -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEQAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZBQzc4NEY1MzQyMTND RkVBOTNGMTMzODM3MUUwMDMyQjY5OEVFQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAsKG9KQzdgGGlqXQmF7dAQwB3wPbSenC2/eGYKtEb8HUeuD3r gX4aNddRaOcSPzpnFqKsSmpgPm6UaG8BM3MldYe3t75AF+7yuwfUSbU8apiCpTfX oGKyzUUxfJYKqqH2YQdk9Wm6YjV9jI55GaxGmlI/alKQJC3R8vphdpScR3nsLUSi hGEaLmFgywMViUuQqP98eoYVq/KWZQ3yXFbGeAR3OnWWG7of6FvVnBAL3sIdW1rL EV26e9kKqolyn6ODUhhFkQ348yJI6MOJ8hvtOo9ZgvYaHihg3/fTpzx3bt9RRNzb RVazVU3lwBiW11FMuczhoCZAKuGCOQYPQT/zAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU+seE9TQhPP6pPxM4Nx4AMraY7skwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvLXNlRTlUUWhQUDZwUHhNNE54NEFN cmFZN3NrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8veEDAN BgkqhkiG9w0BAQsFAAOCAQEAN6/lR9BCXDBnhxe/r7RCzgSyxnoi9bm/cDGi1xEc 14e8Qv1L2+Mxn9QMKRzEjge2AN8zD7nSPfjxrktcB8HoVg1L24umlHMT0/neIXVx hrx5AOx/2rm3qW4C3r52D7Pcsm7xswqlRs8tqv2DM76OgyV8yesTUIr1Adj14q1x YLjDTL7JBaylGnMn7MC14QTO+wWJfZNZkDw1+DOZVbt2TREes7hG22/ilMhJjRu6 hHgkDtmniUZV7KQpSR+SvlucrXDuDASIhI9TrXRdjTTfzFrl/1NhbBWUwSKiYyIR NK2sOKjZt5R6QOCdA6A5HqQ2A8vkT3FuH1X/Sey4lAvNuw== -----END CERTIFICATE-----Generated at Tue Apr 8 15:10:02 2025 by rpki-client