$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Nq70DmIuodAJunffRoVjRfmR8Aw.roa File: Nq70DmIuodAJunffRoVjRfmR8Aw.roa (raw, json) Hash identifier: RpK3NEqunxonkPZbnzYYEgExJXlSgQ/oX5o5F9o2uYQ= Subject key identifier: 36:AE:F4:0E:62:2E:A1:D0:09:BA:77:DF:46:85:63:45:F9:91:F0:0C Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 111F Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Nq70DmIuodAJunffRoVjRfmR8Aw.roa Signing time: Mon 10 Feb 2025 13:56:50 +0000 ROA not before: Mon 10 Feb 2025 13:56:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 211.79.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4383 (0x111f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=36AEF40E622EA1D009BA77DF46856345F991F00C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:29:16:3d:c4:ec:2c:52:fa:57:20:5b:c1:f7: 86:b4:42:dc:7d:a3:59:23:0d:0f:90:6d:71:80:2b: fe:c2:6e:3d:b6:16:f7:5b:21:41:77:39:73:e3:75: 81:b2:f0:49:3a:96:10:25:b1:2c:bf:98:24:73:f2: f5:8b:f1:f3:5a:cf:4f:b6:40:ec:33:c6:a5:7a:d7: 6f:ca:4d:6d:15:a8:df:3e:10:cd:61:78:38:94:f7: b7:c5:51:a5:b2:ea:18:fb:53:d2:38:d7:96:5e:c0: e3:22:50:e2:2e:3e:b1:a9:9a:a4:bf:1c:15:6e:3f: 09:83:9e:c5:5f:18:ea:74:5a:df:f8:71:ef:19:b7: d5:9a:ab:09:35:2f:00:23:c0:d4:60:a1:46:41:83: 18:be:0e:1b:dc:7e:6d:62:bd:f6:7b:93:04:62:7b: c9:26:18:f6:2d:14:ba:48:e1:66:1c:11:b5:c1:fe: 1f:dd:6c:90:26:e3:9e:62:e6:4e:d5:af:3c:83:28: 5d:84:37:90:5e:74:e3:85:02:5f:fe:b8:fc:b4:e2: 6f:fc:54:94:eb:6a:0f:8a:d4:f8:c6:aa:56:d9:ef: 6c:d1:f5:42:02:17:a8:e8:85:9a:a1:e3:d0:54:8a: 24:df:61:59:25:48:97:ed:12:ee:f5:d2:12:79:68: 89:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:AE:F4:0E:62:2E:A1:D0:09:BA:77:DF:46:85:63:45:F9:91:F0:0C X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Nq70DmIuodAJunffRoVjRfmR8Aw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.112.0/21 Signature Algorithm: sha256WithRSAEncryption 08:83:42:0b:2f:fa:64:0f:bb:96:3b:a1:8c:78:c3:3f:cb:b4: 7c:17:67:be:43:16:a2:95:9e:8c:72:7e:3d:04:e4:3d:f6:03: cd:23:3b:7f:5f:54:81:9a:cc:81:ad:9a:97:10:47:4c:75:46: 97:15:dc:1d:b7:9f:45:d1:67:d3:ff:8b:b7:7b:22:cc:24:43: c2:f1:c6:e9:4b:ab:d5:44:25:3e:81:9b:37:62:83:4c:1b:c3: 1d:2c:28:70:b0:b1:db:c4:2f:b8:86:68:74:f4:75:6c:83:ab: 6c:40:51:5b:c0:96:7b:ba:d7:82:0d:93:e4:04:5a:ca:51:4e: 5e:8a:49:37:84:fe:c8:c5:4a:76:5e:7e:ad:9f:70:6b:68:84: 1e:ff:02:bf:48:48:52:38:8e:99:3b:74:15:0e:11:2e:a9:0e: 02:39:97:5a:37:d4:d7:cb:b4:10:8a:a3:15:12:f2:4f:34:09: a3:77:14:26:cb:9a:12:01:d5:0b:f6:13:42:3b:57:f3:f2:6f: 79:ae:fc:dc:d4:58:39:36:49:e9:75:97:a1:dc:a5:44:a1:37: 73:58:c6:77:c7:e5:62:c6:4e:3b:e8:99:3c:70:8b:9a:83:d1: 33:0f:5c:37:2a:3d:29:77:26:05:f5:24:b5:ae:d9:c2:ec:cc: fe:4c:45:09 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICER8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM2QUVGNDBFNjIyRUEx RDAwOUJBNzdERjQ2ODU2MzQ1Rjk5MUYwMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkKRY9xOwsUvpXIFvB94a0Qtx9o1kjDQ+QbXGAK/7Cbj22Fvdb IUF3OXPjdYGy8Ek6lhAlsSy/mCRz8vWL8fNaz0+2QOwzxqV612/KTW0VqN8+EM1h eDiU97fFUaWy6hj7U9I415ZewOMiUOIuPrGpmqS/HBVuPwmDnsVfGOp0Wt/4ce8Z t9Waqwk1LwAjwNRgoUZBgxi+Dhvcfm1ivfZ7kwRie8kmGPYtFLpI4WYcEbXB/h/d bJAm455i5k7VrzyDKF2EN5BedOOFAl/+uPy04m/8VJTrag+K1PjGqlbZ72zR9UIC F6johZqh49BUiiTfYVklSJftEu710hJ5aImnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUNq70DmIuodAJunffRoVjRfmR8AwwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvTnE3MERtSXVvZEFKdW5mZlJvVmpS Zm1SOEF3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9NPcDAN BgkqhkiG9w0BAQsFAAOCAQEACINCCy/6ZA+7ljuhjHjDP8u0fBdnvkMWopWejHJ+ PQTkPfYDzSM7f19UgZrMga2alxBHTHVGlxXcHbefRdFn0/+Lt3sizCRDwvHG6Uur 1UQlPoGbN2KDTBvDHSwocLCx28QvuIZodPR1bIOrbEBRW8CWe7rXgg2T5ARaylFO XopJN4T+yMVKdl5+rZ9wa2iEHv8Cv0hIUjiOmTt0FQ4RLqkOAjmXWjfU18u0EIqj FRLyTzQJo3cUJsuaEgHVC/YTQjtX8/Jvea783NRYOTZJ6XWXodylRKE3c1jGd8fl YsZOO+iZPHCLmoPRMw9cNyo9KXcmBfUkta7ZwuzM/kxFCQ== -----END CERTIFICATE-----Generated at Tue Apr 8 20:38:47 2025 by rpki-client