$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/4Z5VzTbNSKTbKNK1uSgIPheb0vw.roa File: 4Z5VzTbNSKTbKNK1uSgIPheb0vw.roa (raw, json) Hash identifier: t201+m9HdPAc1VMTOsvyJuQg/xtq2MlDT2eEdXx7Tf8= Subject key identifier: E1:9E:55:CD:36:CD:48:A4:DB:28:D2:B5:B9:28:08:3E:17:9B:D2:FC Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1105 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/4Z5VzTbNSKTbKNK1uSgIPheb0vw.roa Signing time: Mon 10 Feb 2025 13:56:43 +0000 ROA not before: Mon 10 Feb 2025 13:56:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 210.209.128.0/17 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4357 (0x1105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E19E55CD36CD48A4DB28D2B5B928083E179BD2FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c4:15:b8:26:4f:0b:b3:70:a1:34:e0:ca:eb: ec:96:ba:74:e1:56:23:88:de:b2:ef:b4:fa:7e:1b: b2:5a:4f:ba:de:15:60:f3:95:7c:2b:b6:bd:22:4f: 40:26:cb:e2:c5:30:4b:93:89:0b:8b:ed:37:36:a3: d0:57:97:1d:73:99:c7:ef:71:cc:05:e8:22:20:69: b4:d8:0a:9d:1a:f7:c1:3f:f9:e1:80:87:dc:05:7f: 6b:76:0d:31:88:de:1b:da:6f:a9:09:bd:98:de:d2: a6:76:d0:ca:12:bb:24:8f:e8:13:a4:d1:89:c2:fd: 9c:ff:f5:ad:60:a1:14:15:4c:2c:20:9b:0d:f7:9f: f2:3e:ae:b5:64:0b:54:47:cc:03:8b:f9:dd:e4:d7: 26:d5:4e:b9:62:da:60:58:0f:e2:f1:6b:ec:28:5b: bb:80:8a:14:2a:97:a8:52:6b:f5:13:a8:05:a4:0f: d7:ed:07:50:fd:9a:71:49:86:2c:08:2e:40:a2:b7: d2:70:d5:0a:3c:68:93:ef:14:4d:fa:59:09:29:d3: 68:8f:10:16:97:df:48:d4:d6:3d:56:59:05:45:26: 8c:75:08:cf:fa:4b:3e:78:82:ad:25:ca:5d:1b:7a: e1:d5:ef:5f:04:ac:cd:45:3b:9f:78:8e:e0:4b:93: 54:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:9E:55:CD:36:CD:48:A4:DB:28:D2:B5:B9:28:08:3E:17:9B:D2:FC X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/4Z5VzTbNSKTbKNK1uSgIPheb0vw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.209.128.0/17 Signature Algorithm: sha256WithRSAEncryption 7a:0b:0e:5d:f5:91:e1:dc:4a:98:88:84:f7:c5:f5:8d:d3:60: d3:b9:da:14:2b:42:29:3b:55:aa:22:05:d6:cb:c0:98:de:e3: 9e:af:ae:62:6d:9f:7a:c9:3e:56:4e:40:6c:2f:62:8f:43:53: c2:25:80:a3:f3:4f:a5:fd:3c:64:cf:eb:c7:ed:42:69:84:70: af:d1:7f:35:46:3b:eb:6a:89:36:32:7d:a7:ff:47:4e:f3:01: ff:2d:f1:d4:e6:d7:e3:53:46:fe:4d:f0:f5:8b:20:49:af:fd: a5:ab:0f:1e:44:02:ad:4b:3e:4d:d1:08:f6:16:82:b1:e7:92: 4c:45:e3:2c:c3:25:e1:72:ff:eb:e5:b2:b3:b3:43:45:c8:aa: 99:45:1d:31:50:04:24:8a:14:aa:18:f7:1a:75:90:d6:f3:df: 81:18:c1:37:7b:96:0c:76:e6:4a:66:d0:28:d8:ed:b9:1f:46: 2e:2e:48:01:f0:fb:a1:33:f2:a2:f9:0d:29:75:1f:4b:bf:1e: 56:57:b6:46:30:9b:a6:7f:f6:6b:89:1a:81:a3:bd:10:d4:a5: d1:75:41:9a:aa:87:34:e7:41:3d:9f:e4:ca:fd:01:3d:36:d9: 13:8b:0b:d5:87:00:57:54:37:9d:3f:6e:cc:ca:45:4b:58:92: d6:bd:b6:09 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUxOUU1NUNEMzZDRDQ4 QTREQjI4RDJCNUI5MjgwODNFMTc5QkQyRkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxxBW4Jk8Ls3ChNODK6+yWunThViOI3rLvtPp+G7JaT7reFWDz lXwrtr0iT0Amy+LFMEuTiQuL7Tc2o9BXlx1zmcfvccwF6CIgabTYCp0a98E/+eGA h9wFf2t2DTGI3hvab6kJvZje0qZ20MoSuySP6BOk0YnC/Zz/9a1goRQVTCwgmw33 n/I+rrVkC1RHzAOL+d3k1ybVTrli2mBYD+Lxa+woW7uAihQql6hSa/UTqAWkD9ft B1D9mnFJhiwILkCit9Jw1Qo8aJPvFE36WQkp02iPEBaX30jU1j1WWQVFJox1CM/6 Sz54gq0lyl0beuHV718ErM1FO594juBLk1T3AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU4Z5VzTbNSKTbKNK1uSgIPheb0vwwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvNFo1VnpUYk5TS1RiS05LMXVTZ0lQ aGViMHZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9LRgDAN BgkqhkiG9w0BAQsFAAOCAQEAegsOXfWR4dxKmIiE98X1jdNg07naFCtCKTtVqiIF 1svAmN7jnq+uYm2fesk+Vk5AbC9ij0NTwiWAo/NPpf08ZM/rx+1CaYRwr9F/NUY7 62qJNjJ9p/9HTvMB/y3x1ObX41NG/k3w9YsgSa/9pasPHkQCrUs+TdEI9haCseeS TEXjLMMl4XL/6+Wys7NDRciqmUUdMVAEJIoUqhj3GnWQ1vPfgRjBN3uWDHbmSmbQ KNjtuR9GLi5IAfD7oTPyovkNKXUfS78eVle2RjCbpn/2a4kagaO9ENSl0XVBmqqH NOdBPZ/kyv0BPTbZE4sL1YcAV1Q3nT9uzMpFS1iS1r22CQ== -----END CERTIFICATE-----Generated at Tue Apr 8 18:10:33 2025 by rpki-client