$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Nopja89MOsivvJd3MC9s4HtcH_o.roa File: Nopja89MOsivvJd3MC9s4HtcH_o.roa (raw, json) Hash identifier: svQRxaXQKWs2TPVQN2bpfQ7S3pPNGYtBNYNPQTOVjjI= Subject key identifier: 36:8A:63:6B:CF:4C:3A:C8:AF:BC:97:77:30:2F:6C:E0:7B:5C:1F:FA Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 10F8 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Nopja89MOsivvJd3MC9s4HtcH_o.roa Signing time: Mon 10 Feb 2025 13:56:40 +0000 ROA not before: Mon 10 Feb 2025 13:56:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 210.209.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4344 (0x10f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=368A636BCF4C3AC8AFBC9777302F6CE07B5C1FFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:27:58:17:c3:ce:f0:b8:99:08:3c:a1:66:b2: f2:b8:bc:ba:3e:f3:f7:a3:71:71:c0:ba:f8:3d:52: ee:ed:53:0f:23:88:07:63:18:10:f3:59:33:14:9b: b6:ac:2c:e3:64:a8:4a:f0:5a:05:3f:76:23:ac:92: 66:69:e9:e5:c7:22:37:73:71:a7:0c:52:f2:33:7c: bc:ff:ec:b2:b7:cc:09:f1:bf:66:cb:77:65:d8:04: b7:bd:32:cc:f3:6c:92:a4:13:3e:1e:b0:15:6a:03: 6f:33:91:ea:d1:62:ff:01:f7:80:be:8f:63:ce:47: f8:f2:43:1e:d2:c2:25:f7:e1:33:e5:e9:49:ac:74: 76:e1:22:8b:4f:7d:c0:a0:c6:a8:e6:e7:c2:0a:05: da:f5:1a:90:5f:83:06:ac:ce:2c:45:fb:78:73:61: 3f:0c:06:d0:79:90:a2:56:7f:22:f1:1d:fe:e4:b7: a9:e0:5e:ef:a3:ec:af:a2:ca:ee:05:3e:ae:b4:09: 0f:58:62:91:99:06:1f:5a:d5:16:90:4d:3f:01:fa: 02:0b:23:0c:b1:77:d0:88:a2:c5:81:21:ee:bb:bb: d3:3e:c7:30:08:13:cb:b1:c3:54:2e:7f:63:fc:6a: d7:32:3c:55:00:c4:9c:28:10:a5:bf:50:97:d9:85: 0c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8A:63:6B:CF:4C:3A:C8:AF:BC:97:77:30:2F:6C:E0:7B:5C:1F:FA X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Nopja89MOsivvJd3MC9s4HtcH_o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.209.192.0/19 Signature Algorithm: sha256WithRSAEncryption 80:19:3c:8c:e8:c4:28:9f:00:43:5e:f5:5c:0b:d6:5d:32:de: df:2d:6a:7b:6a:5a:ea:da:f9:2c:36:f0:a3:7e:b1:b8:5e:10: d2:d4:c8:ba:5f:e7:0c:90:bf:af:59:93:48:f5:0c:1e:53:08: bf:93:89:88:dc:9f:b0:3f:26:a6:80:cb:73:d9:9f:ef:ca:c2: 1b:16:25:a7:6b:c8:ea:55:2d:da:1f:99:77:54:91:29:0c:2c: 1d:bd:e8:6d:2e:be:03:55:a2:88:5f:8e:1e:5c:08:83:38:16: 8f:bf:f3:95:a1:0b:77:c9:c4:37:a7:85:c0:29:01:62:e0:75: 8b:6b:90:3e:ef:38:24:b1:cc:f7:46:ef:cf:4c:e4:14:bf:22: bf:ff:ce:dc:ba:28:d6:82:97:d9:16:a3:07:60:2f:2d:98:25: ed:0e:f3:62:6b:b6:bd:50:c9:80:e4:9e:ab:92:89:ea:ca:cb: 8b:bc:2a:90:1e:fe:84:dc:c6:69:94:8f:0f:f7:22:ca:87:95: da:6e:2a:c5:f3:1e:78:93:d0:7f:e7:2d:b2:8d:c1:ae:75:7a: d8:f7:c4:9c:09:5e:c6:97:10:6f:4e:ff:11:c2:87:35:98:0a: 1d:d2:d9:fb:fe:e6:bb:68:85:46:40:5c:4b:20:56:25:db:3c: c3:3e:c5:40 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM2OEE2MzZCQ0Y0QzNB QzhBRkJDOTc3NzMwMkY2Q0UwN0I1QzFGRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSJ1gXw87wuJkIPKFmsvK4vLo+8/ejcXHAuvg9Uu7tUw8jiAdj GBDzWTMUm7asLONkqErwWgU/diOskmZp6eXHIjdzcacMUvIzfLz/7LK3zAnxv2bL d2XYBLe9MszzbJKkEz4esBVqA28zkerRYv8B94C+j2POR/jyQx7SwiX34TPl6Ums dHbhIotPfcCgxqjm58IKBdr1GpBfgwaszixF+3hzYT8MBtB5kKJWfyLxHf7kt6ng Xu+j7K+iyu4FPq60CQ9YYpGZBh9a1RaQTT8B+gILIwyxd9CIosWBIe67u9M+xzAI E8uxw1Quf2P8atcyPFUAxJwoEKW/UJfZhQzfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUNopja89MOsivvJd3MC9s4HtcH/owHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvTm9wamE4OU1Pc2l2dkpkM01DOXM0 SHRjSF9vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdLRwDAN BgkqhkiG9w0BAQsFAAOCAQEAgBk8jOjEKJ8AQ171XAvWXTLe3y1qe2pa6tr5LDbw o36xuF4Q0tTIul/nDJC/r1mTSPUMHlMIv5OJiNyfsD8mpoDLc9mf78rCGxYlp2vI 6lUt2h+Zd1SRKQwsHb3obS6+A1WiiF+OHlwIgzgWj7/zlaELd8nEN6eFwCkBYuB1 i2uQPu84JLHM90bvz0zkFL8iv//O3Loo1oKX2RajB2AvLZgl7Q7zYmu2vVDJgOSe q5KJ6srLi7wqkB7+hNzGaZSPD/ciyoeV2m4qxfMeeJPQf+ctso3BrnV62PfEnAle xpcQb07/EcKHNZgKHdLZ+/7mu2iFRkBcSyBWJds8wz7FQA== -----END CERTIFICATE-----Generated at Tue Apr 8 18:02:38 2025 by rpki-client