$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/JCV1OETz4pUpM0rpJTRypz02uBo.roa File: JCV1OETz4pUpM0rpJTRypz02uBo.roa (raw, json) Hash identifier: AvCXAQkcO0GkiJuUCBBkjIlqKyInWmW7lsUz26qY1XQ= Subject key identifier: 24:25:75:38:44:F3:E2:95:29:33:4A:E9:25:34:72:A7:3D:36:B8:1A Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1116 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JCV1OETz4pUpM0rpJTRypz02uBo.roa Signing time: Mon 10 Feb 2025 13:56:49 +0000 ROA not before: Mon 10 Feb 2025 13:56:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.217.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4374 (0x1116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2425753844F3E29529334AE9253472A73D36B81A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:90:79:44:a7:38:c7:2c:40:5f:f2:c1:e4:06: 21:e3:f4:87:6f:96:8d:98:52:07:73:e0:29:f2:20: b6:0b:2c:04:96:1c:7b:50:db:14:ad:63:f2:ea:75: c6:93:8d:c5:29:d5:bf:b8:38:53:ce:89:f5:96:4b: 40:bd:ae:fe:76:92:16:f4:08:58:35:0e:d4:20:c8: 35:97:58:a8:42:df:8b:7c:21:6b:82:22:29:33:84: 92:aa:64:26:2c:ed:05:e8:f4:9a:fe:97:1d:5a:f5: 79:40:42:95:c0:ec:bf:78:58:8a:81:ee:d1:c1:69: 81:ea:4a:e5:80:bb:6d:05:55:25:7c:aa:f4:6e:60: ed:09:1b:de:00:42:e6:99:de:fe:2f:59:52:ec:1a: 23:76:d8:5c:27:0f:61:68:19:bf:37:de:43:e6:f0: ce:6c:87:72:6d:5d:e5:f6:81:31:1d:6b:4f:34:f5: 84:0b:d2:d2:8f:fb:9e:76:86:15:86:5a:3d:98:b6: 09:a5:32:22:9f:1e:ef:e6:56:15:87:61:82:b3:52: 90:fb:99:36:ea:5c:bf:77:e5:27:bd:4c:df:27:c3: 02:03:63:6e:60:29:da:9a:1c:4f:9e:a1:f5:c9:82: 81:19:d7:b5:e9:d5:0e:cf:ac:8d:d6:dd:ee:e4:46: d6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:25:75:38:44:F3:E2:95:29:33:4A:E9:25:34:72:A7:3D:36:B8:1A X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JCV1OETz4pUpM0rpJTRypz02uBo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.217.96.0/19 Signature Algorithm: sha256WithRSAEncryption 4d:01:b0:60:97:0f:03:dd:43:09:44:d9:26:9f:45:6f:71:e0: e0:21:34:f2:11:be:74:7a:77:1c:e7:d0:73:71:91:6c:5e:04: 01:19:54:66:a3:d1:6d:ec:46:a3:58:e5:24:89:0a:c2:9d:58: 47:22:9c:a9:53:b4:4a:5b:a3:18:57:e7:55:34:dc:81:35:88: e5:75:01:7f:3c:28:b0:14:cc:49:64:ec:21:70:47:7b:da:df: b7:2a:fc:0b:d7:16:e2:a9:85:b2:41:79:57:20:f2:75:35:ff: 62:c9:7e:fb:81:6c:22:a7:73:2f:a1:fe:18:87:93:f4:39:a7: ea:3e:31:01:9f:96:37:36:63:04:b9:74:d9:83:76:7d:6b:a6: 4a:5f:e6:5a:85:fa:ee:8f:97:56:89:cf:dd:18:4c:31:09:1d: 67:18:68:2b:e2:93:76:9b:7f:15:d1:6f:47:7f:6f:69:11:6f: 54:70:c2:23:03:d1:04:ab:58:7e:f6:64:d1:95:da:d3:79:f4: f4:f6:ce:f2:61:95:8d:7e:ed:c6:37:a0:36:21:b4:68:2b:15: 3b:c1:17:7e:b7:73:83:55:86:ed:d9:f4:aa:9d:54:b0:92:35: 68:e6:92:dc:bb:27:1c:23:90:0a:d5:48:3c:05:70:e9:58:47: bb:42:c2:bd -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICERYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI0MjU3NTM4NDRGM0Uy OTUyOTMzNEFFOTI1MzQ3MkE3M0QzNkI4MUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCckHlEpzjHLEBf8sHkBiHj9Idvlo2YUgdz4CnyILYLLASWHHtQ 2xStY/LqdcaTjcUp1b+4OFPOifWWS0C9rv52khb0CFg1DtQgyDWXWKhC34t8IWuC IikzhJKqZCYs7QXo9Jr+lx1a9XlAQpXA7L94WIqB7tHBaYHqSuWAu20FVSV8qvRu YO0JG94AQuaZ3v4vWVLsGiN22FwnD2FoGb833kPm8M5sh3JtXeX2gTEda0809YQL 0tKP+552hhWGWj2YtgmlMiKfHu/mVhWHYYKzUpD7mTbqXL935Se9TN8nwwIDY25g KdqaHE+eofXJgoEZ17Xp1Q7PrI3W3e7kRtajAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUJCV1OETz4pUpM0rpJTRypz02uBowHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvSkNWMU9FVHo0cFVwTTBycEpUUnlw ejAydUJvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcvZYDAN BgkqhkiG9w0BAQsFAAOCAQEATQGwYJcPA91DCUTZJp9Fb3Hg4CE08hG+dHp3HOfQ c3GRbF4EARlUZqPRbexGo1jlJIkKwp1YRyKcqVO0SlujGFfnVTTcgTWI5XUBfzwo sBTMSWTsIXBHe9rftyr8C9cW4qmFskF5VyDydTX/Ysl++4FsIqdzL6H+GIeT9Dmn 6j4xAZ+WNzZjBLl02YN2fWumSl/mWoX67o+XVonP3RhMMQkdZxhoK+KTdpt/FdFv R39vaRFvVHDCIwPRBKtYfvZk0ZXa03n09PbO8mGVjX7txjegNiG0aCsVO8EXfrdz g1WG7dn0qp1UsJI1aOaS3LsnHCOQCtVIPAVw6VhHu0LCvQ== -----END CERTIFICATE-----Generated at Tue Apr 8 18:07:47 2025 by rpki-client