$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/5fwjr0FRLJACcg4u1i3dV_z5YAQ.roa File: 5fwjr0FRLJACcg4u1i3dV_z5YAQ.roa (raw, json) Hash identifier: HD+ZzUlFpGzMeA2FTp037mqM8vQz2ZCaiTf2V1jETXU= Subject key identifier: E5:FC:23:AF:41:51:2C:90:02:72:0E:2E:D6:2D:DD:57:FC:F9:60:04 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 10EA Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/5fwjr0FRLJACcg4u1i3dV_z5YAQ.roa Signing time: Mon 10 Feb 2025 13:56:36 +0000 ROA not before: Mon 10 Feb 2025 13:56:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 113.61.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4330 (0x10ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:36 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E5FC23AF41512C9002720E2ED62DDD57FCF96004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1a:98:82:b7:b5:f3:f7:fa:a7:63:bd:08:84: 63:da:33:06:06:f4:e1:bc:0c:67:b1:4f:1f:c5:a2: 1f:33:e2:5f:07:6f:17:53:a8:34:3a:d6:45:f0:0c: 78:50:f1:bf:d0:73:a6:45:85:06:c1:b1:0a:0b:bc: 68:91:46:25:41:85:e8:17:e7:2c:e3:9c:2b:c0:ee: dd:d8:03:10:00:2b:e6:1c:cb:99:f1:64:b3:9d:a4: 2e:80:5e:12:6e:99:0e:20:ff:5a:ff:99:71:bb:da: fa:4a:a7:5a:40:f0:ee:ad:23:eb:81:00:43:6a:f0: 01:21:e9:1d:17:a2:99:72:c1:37:ca:0a:93:84:db: 0f:e3:33:51:3a:93:73:02:04:57:b8:73:d4:35:81: f0:c7:5d:f0:c3:95:7e:aa:d2:4a:6a:90:79:ea:16: 0e:c9:1b:8e:2d:0e:27:a4:62:6e:a0:dc:69:fe:19: 42:0d:ef:d4:a0:8f:21:03:dc:65:b1:83:9e:7e:41: b4:c1:ec:10:33:29:c6:09:38:80:18:49:e7:08:35: 78:cc:45:fb:19:7e:9a:cd:3b:8a:79:0b:d7:50:a3: 23:79:c2:6d:fb:fc:01:9b:d1:7d:3d:b4:aa:3b:cb: ad:88:0e:1f:64:8e:d3:09:eb:69:0c:c7:01:8e:c0: 4e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:FC:23:AF:41:51:2C:90:02:72:0E:2E:D6:2D:DD:57:FC:F9:60:04 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/5fwjr0FRLJACcg4u1i3dV_z5YAQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.128.0/19 Signature Algorithm: sha256WithRSAEncryption 1b:fe:5a:f7:47:22:b6:8a:7f:a1:90:71:42:aa:06:2b:1b:ce: c9:50:1c:62:45:ea:24:17:49:64:97:5b:cd:f4:fc:52:7e:11: 15:1f:0d:3b:45:9c:c7:76:8c:a2:02:41:5a:f6:2f:4a:9a:de: 9a:9c:01:79:83:2c:86:5b:78:a9:95:e5:06:a1:aa:b7:61:c7: db:c9:7e:f6:ec:74:71:ec:1e:c4:a6:d5:78:2d:53:4b:40:9b: f9:28:f4:b8:9c:40:65:7c:86:5e:d4:bd:ba:87:d7:7a:25:65: 5c:54:f1:ab:e3:28:ee:38:09:2d:ef:68:a3:5a:4c:94:14:35: 55:51:e0:86:b1:ab:f9:bd:d9:b8:ee:58:aa:a1:e6:28:a2:8e: cc:45:4a:5b:b8:6a:9c:46:38:d3:2c:63:0e:2a:d9:24:b5:6e: fc:5a:bc:86:f4:fa:7f:ca:53:00:ef:47:16:f5:1f:3e:f1:0b: b7:13:d5:3c:af:f6:e3:7c:c2:5a:2c:8c:a8:89:ce:ef:a5:02: ca:8d:22:cb:f3:1c:83:e8:7f:90:7e:42:c3:cd:eb:bb:3e:ac: b6:03:bf:9c:77:86:f8:87:e9:b7:05:21:0c:27:f5:61:a7:3e: 79:21:2a:8d:5c:08:45:56:91:69:af:f2:2e:79:28:5a:53:f2: 2e:17:2b:0e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEOowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU1RkMyM0FGNDE1MTJD OTAwMjcyMEUyRUQ2MkRERDU3RkNGOTYwMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCUGpiCt7Xz9/qnY70IhGPaMwYG9OG8DGexTx/Foh8z4l8HbxdT qDQ61kXwDHhQ8b/Qc6ZFhQbBsQoLvGiRRiVBhegX5yzjnCvA7t3YAxAAK+Ycy5nx ZLOdpC6AXhJumQ4g/1r/mXG72vpKp1pA8O6tI+uBAENq8AEh6R0XoplywTfKCpOE 2w/jM1E6k3MCBFe4c9Q1gfDHXfDDlX6q0kpqkHnqFg7JG44tDiekYm6g3Gn+GUIN 79SgjyED3GWxg55+QbTB7BAzKcYJOIAYSecINXjMRfsZfprNO4p5C9dQoyN5wm37 /AGb0X09tKo7y62IDh9kjtMJ62kMxwGOwE7/AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU5fwjr0FRLJACcg4u1i3dV/z5YAQwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvNWZ3anIwRlJMSkFDY2c0dTFpM2RW X3o1WUFRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXE9gDAN BgkqhkiG9w0BAQsFAAOCAQEAG/5a90citop/oZBxQqoGKxvOyVAcYkXqJBdJZJdb zfT8Un4RFR8NO0Wcx3aMogJBWvYvSprempwBeYMshlt4qZXlBqGqt2HH28l+9ux0 cewexKbVeC1TS0Cb+Sj0uJxAZXyGXtS9uofXeiVlXFTxq+Mo7jgJLe9oo1pMlBQ1 VVHghrGr+b3ZuO5YqqHmKKKOzEVKW7hqnEY40yxjDirZJLVu/Fq8hvT6f8pTAO9H FvUfPvELtxPVPK/243zCWiyMqInO76UCyo0iy/Mcg+h/kH5Cw83ruz6stgO/nHeG +IfptwUhDCf1Yac+eSEqjVwIRVaRaa/yLnkoWlPyLhcrDg== -----END CERTIFICATE-----Generated at Tue Apr 8 18:10:23 2025 by rpki-client