$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/BNYNV7TP15pPj42-6s-6vLymdPk.roa File: BNYNV7TP15pPj42-6s-6vLymdPk.roa (raw, json) Hash identifier: aWMY4ZIUceWQEwl6M8rnvfHXMDJt4zfEEPjf9bfC0RM= Subject key identifier: 04:D6:0D:57:B4:CF:D7:9A:4F:8F:8D:BE:EA:CF:BA:BC:BC:A6:74:F9 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 10F4 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/BNYNV7TP15pPj42-6s-6vLymdPk.roa Signing time: Mon 10 Feb 2025 13:56:38 +0000 ROA not before: Mon 10 Feb 2025 13:56:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 210.209.128.0/17 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4340 (0x10f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=04D60D57B4CFD79A4F8F8DBEEACFBABCBCA674F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:94:f2:b1:d9:00:62:66:5c:d0:16:fb:d6:b5: 63:18:b4:0b:ce:8f:91:e2:7e:5a:3d:ad:e7:81:75: 00:f2:52:4e:f6:42:f7:0b:40:e0:06:ff:b2:b4:11: 32:7a:23:aa:da:ae:cc:60:53:f9:75:78:88:3d:49: 64:39:56:82:47:97:19:63:9d:4d:65:44:bf:0d:f2: 88:8e:07:90:08:43:32:6e:cd:de:66:fd:b1:82:31: 17:49:81:65:1a:12:cf:b4:25:55:88:96:0d:11:07: e2:2d:f5:02:04:0b:09:89:18:fd:90:20:e2:04:af: 1f:30:57:3c:9f:e4:d7:92:2a:be:71:99:5a:50:59: 70:49:de:87:73:40:7f:64:a6:ff:a8:fd:76:ed:e7: b2:1c:e8:7d:00:6f:1b:cd:3a:0c:4f:6a:e6:f9:71: 1a:dd:b8:ac:54:20:c0:0e:5d:ac:2f:6c:b3:d1:d3: bb:40:e1:d6:e5:58:3e:4f:d1:bb:67:19:da:7d:d8: 03:cb:a5:62:2b:03:38:16:b6:96:db:f6:e5:f5:27: 53:5a:f9:6f:d9:0a:3c:14:2c:b7:aa:fa:bc:88:ae: 53:00:95:1d:05:e5:0c:7f:96:08:a4:24:24:89:f0: 9c:fb:83:38:46:3e:a1:ed:e6:a6:41:dd:32:30:37: cd:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D6:0D:57:B4:CF:D7:9A:4F:8F:8D:BE:EA:CF:BA:BC:BC:A6:74:F9 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/BNYNV7TP15pPj42-6s-6vLymdPk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.209.128.0/17 Signature Algorithm: sha256WithRSAEncryption 9e:44:49:48:a8:11:71:53:c4:60:68:65:cd:87:e7:38:0c:28: c3:8d:fb:9d:dd:28:49:55:84:01:8a:6d:76:3a:ad:74:56:a6: e4:17:f4:7e:25:98:80:61:8e:89:39:23:e7:ae:98:77:71:e2: 19:eb:f3:2d:90:23:5e:e5:88:1a:ad:bb:5b:d1:67:de:7a:b2: 0f:9f:4a:87:4a:23:3e:7a:c4:a5:c5:de:85:72:91:db:c1:05: a1:40:2e:41:49:29:49:56:68:82:5d:13:a0:22:6e:99:e8:26: 3b:b6:4d:fc:d7:c3:7d:96:c1:40:cb:58:5f:5b:3e:7c:f0:50: a0:ee:50:0d:bf:8e:cc:ad:25:38:a7:0a:df:fa:e4:93:5e:0d: 9e:ac:aa:01:21:1b:1f:83:d6:45:31:c1:e9:fc:36:f3:df:16: 4e:1a:9d:ec:dd:87:f0:b7:35:59:a6:b8:6c:12:d3:6a:ea:16: 7a:52:33:bd:c7:25:71:af:e8:39:09:80:f1:eb:25:a6:04:3e: 78:3b:9f:71:7e:df:01:7f:0b:82:9d:e3:92:e1:4e:ea:c6:e6: 82:cb:3d:a6:4b:9a:80:81:94:84:22:69:d0:4f:ce:b3:c5:10: 4f:88:a5:e6:4b:c0:0e:3b:f8:34:12:0f:3f:6f:fe:ca:e2:70: ee:81:5c:ae -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEPQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA0RDYwRDU3QjRDRkQ3 OUE0RjhGOERCRUVBQ0ZCQUJDQkNBNjc0RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrlPKx2QBiZlzQFvvWtWMYtAvOj5Hiflo9reeBdQDyUk72QvcL QOAG/7K0ETJ6I6rarsxgU/l1eIg9SWQ5VoJHlxljnU1lRL8N8oiOB5AIQzJuzd5m /bGCMRdJgWUaEs+0JVWIlg0RB+It9QIECwmJGP2QIOIErx8wVzyf5NeSKr5xmVpQ WXBJ3odzQH9kpv+o/Xbt57Ic6H0AbxvNOgxPaub5cRrduKxUIMAOXawvbLPR07tA 4dblWD5P0btnGdp92APLpWIrAzgWtpbb9uX1J1Na+W/ZCjwULLeq+ryIrlMAlR0F 5Qx/lgikJCSJ8Jz7gzhGPqHt5qZB3TIwN81xAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUBNYNV7TP15pPj42+6s+6vLymdPkwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvQk5ZTlY3VFAxNXBQajQyLTZzLTZ2 THltZFBrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9LRgDAN BgkqhkiG9w0BAQsFAAOCAQEAnkRJSKgRcVPEYGhlzYfnOAwow437nd0oSVWEAYpt djqtdFam5Bf0fiWYgGGOiTkj566Yd3HiGevzLZAjXuWIGq27W9Fn3nqyD59Kh0oj PnrEpcXehXKR28EFoUAuQUkpSVZogl0ToCJumegmO7ZN/NfDfZbBQMtYX1s+fPBQ oO5QDb+OzK0lOKcK3/rkk14NnqyqASEbH4PWRTHB6fw2898WThqd7N2H8Lc1Waa4 bBLTauoWelIzvcclca/oOQmA8eslpgQ+eDufcX7fAX8Lgp3jkuFO6sbmgss9pkua gIGUhCJp0E/Os8UQT4il5kvADjv4NBIPP2/+yuJw7oFcrg== -----END CERTIFICATE-----Generated at Tue Apr 8 18:10:32 2025 by rpki-client