$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/LnH98ZEnK1Tjh8VSa9C18vFfJt8.roa File: LnH98ZEnK1Tjh8VSa9C18vFfJt8.roa (raw, json) Hash identifier: 79GatDY0xatrfq+EKB+4ZS3lRkqn/xlJ8qMdHmCE9hA= Subject key identifier: 2E:71:FD:F1:91:27:2B:54:E3:87:C5:52:6B:D0:B5:F2:F1:5F:26:DF Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 10CA Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/LnH98ZEnK1Tjh8VSa9C18vFfJt8.roa Signing time: Mon 10 Feb 2025 13:56:30 +0000 ROA not before: Mon 10 Feb 2025 13:56:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.222.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4298 (0x10ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2E71FDF191272B54E387C5526BD0B5F2F15F26DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:48:5e:51:2b:9c:84:9a:3f:46:45:a1:bc:25: d8:47:37:7e:b6:89:02:08:79:5b:4f:62:b6:5f:ea: cd:3c:aa:35:33:12:1a:a5:66:e8:00:84:97:ed:7a: dc:a8:00:46:c0:5f:43:e1:1e:b9:f3:cd:86:ad:e3: 5a:32:e2:9d:5a:e8:75:de:c1:19:4d:cd:37:36:b0: 15:63:19:38:ec:d7:97:e5:f0:ab:bb:3a:48:0a:c9: 3c:ed:26:25:11:16:13:71:c1:da:fd:ce:a0:3c:8f: 84:df:d2:f5:48:fa:a2:2b:5b:79:87:ae:dc:5a:44: 75:14:26:e6:0f:60:b3:51:f6:c3:17:f9:af:21:ab: e5:22:1c:53:9f:35:ad:e2:77:2f:49:23:39:6e:75: bf:13:e9:c6:f6:b9:83:5f:a2:9b:a1:58:92:97:33: 90:60:5e:c0:5b:b6:88:72:7a:b3:16:02:90:a0:24: 2a:50:2d:35:2f:33:1e:b3:9e:3b:88:bc:68:60:e9: 14:8c:91:aa:42:46:b5:c5:a0:6d:c8:a3:e9:38:8b: b7:ee:c7:6e:05:05:b9:2c:e9:64:02:12:9f:e6:19: f9:4a:59:9e:51:e2:e1:be:af:3e:2e:96:90:2a:32: cd:ec:62:cd:c9:2f:51:79:ec:cd:b8:7d:ea:ae:ef: 1c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:71:FD:F1:91:27:2B:54:E3:87:C5:52:6B:D0:B5:F2:F1:5F:26:DF X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/LnH98ZEnK1Tjh8VSa9C18vFfJt8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.12.0/22 Signature Algorithm: sha256WithRSAEncryption 07:f6:e3:a0:e7:91:40:77:05:7e:ee:c2:68:b1:c0:5d:53:a0: 0e:cb:88:1d:5d:bf:71:9c:a4:f2:7c:c5:4b:38:69:90:58:ad: de:99:8e:f2:b2:a9:8b:76:f9:bc:a2:db:39:05:d2:d5:93:d0: 20:58:f2:19:5c:78:47:e4:bf:78:40:d5:6e:4f:54:8f:cc:f4: ae:38:72:49:6f:23:ad:87:6e:22:98:66:3d:e4:88:34:59:f7: 52:0e:67:d7:3e:f0:a6:06:b7:6e:ea:52:eb:42:40:98:68:45: d4:20:7e:42:ba:1b:d9:e6:04:1e:c5:d2:79:e8:c3:d7:70:8c: 42:1f:b1:95:ef:9b:f7:a9:df:c9:60:47:24:5b:d5:a2:70:bd: 2d:c1:b7:f2:16:9b:e0:4e:ae:73:f5:6d:4c:45:9f:22:e6:f6: 35:a8:bc:6e:72:87:fd:e3:5a:7a:66:5c:35:6a:0a:70:80:e0: b2:a7:ab:e0:ea:14:33:ba:69:86:51:47:9d:9c:78:58:a7:ae: 6e:0a:ca:4d:62:20:02:67:52:8a:d1:5a:bb:26:15:e0:d2:57: 39:3b:ab:b1:6e:ca:94:0e:7b:b2:b6:af:59:9a:26:54:b2:41: e4:aa:11:86:db:2e:9c:76:8a:85:4f:35:1e:1c:43:ef:bb:73: 05:e3:4a:46 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEMowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFNzFGREYxOTEyNzJC NTRFMzg3QzU1MjZCRDBCNUYyRjE1RjI2REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhSF5RK5yEmj9GRaG8JdhHN362iQIIeVtPYrZf6s08qjUzEhql ZugAhJftetyoAEbAX0PhHrnzzYat41oy4p1a6HXewRlNzTc2sBVjGTjs15fl8Ku7 OkgKyTztJiURFhNxwdr9zqA8j4Tf0vVI+qIrW3mHrtxaRHUUJuYPYLNR9sMX+a8h q+UiHFOfNa3idy9JIzludb8T6cb2uYNfopuhWJKXM5BgXsBbtohyerMWApCgJCpQ LTUvMx6znjuIvGhg6RSMkapCRrXFoG3Io+k4i7fux24FBbks6WQCEp/mGflKWZ5R 4uG+rz4ulpAqMs3sYs3JL1F57M24fequ7xxhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQULnH98ZEnK1Tjh8VSa9C18vFfJt8wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvTG5IOThaRW5LMVRqaDhWU2E5QzE4 dkZmSnQ4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsveDDAN BgkqhkiG9w0BAQsFAAOCAQEAB/bjoOeRQHcFfu7CaLHAXVOgDsuIHV2/cZyk8nzF SzhpkFit3pmO8rKpi3b5vKLbOQXS1ZPQIFjyGVx4R+S/eEDVbk9Uj8z0rjhySW8j rYduIphmPeSINFn3Ug5n1z7wpga3bupS60JAmGhF1CB+Qrob2eYEHsXSeejD13CM Qh+xle+b96nfyWBHJFvVonC9LcG38hab4E6uc/VtTEWfIub2Nai8bnKH/eNaemZc NWoKcIDgsqer4OoUM7pphlFHnZx4WKeubgrKTWIgAmdSitFauyYV4NJXOTursW7K lA57sravWZomVLJB5KoRhtsunHaKhU81HhxD77tzBeNKRg== -----END CERTIFICATE-----Generated at Tue Apr 8 18:09:57 2025 by rpki-client