$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Op8xqx_fwdvQxw5wb2p77viEMlg.roa File: Op8xqx_fwdvQxw5wb2p77viEMlg.roa (raw, json) Hash identifier: hloz7VtyRDIT2Q9t/YrDm0cunQaHHYsEokq+1H7r3TE= Subject key identifier: 3A:9F:31:AB:1F:DF:C1:DB:D0:C7:0E:70:6F:6A:7B:EE:F8:84:32:58 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1108 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Op8xqx_fwdvQxw5wb2p77viEMlg.roa Signing time: Mon 10 Feb 2025 13:56:44 +0000 ROA not before: Mon 10 Feb 2025 13:56:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.222.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4360 (0x1108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:44 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3A9F31AB1FDFC1DBD0C70E706F6A7BEEF8843258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:75:49:f6:a8:51:4d:5f:09:d2:41:4a:65:83: 2d:8e:d9:ca:20:04:e5:b7:4e:b8:71:82:a6:bc:64: 71:d7:e6:0c:4d:ea:5d:a1:31:ea:79:62:f4:59:0a: 78:e9:1d:4f:8d:86:21:a9:3b:0c:c2:d8:d4:36:10: 32:de:47:84:04:31:7a:ff:f9:71:a9:8e:d0:be:29: 59:83:65:94:a9:20:d9:fd:3d:e4:d2:68:fd:c2:ea: 0d:f2:97:f4:84:34:fd:46:8f:42:b5:cc:ce:8a:34: 7c:eb:08:82:bb:47:81:9d:45:cd:49:5b:94:ce:f1: fe:e5:f2:a2:30:cc:6c:fc:9e:8a:00:f9:f1:06:e4: 5d:e8:b7:02:36:c1:c1:f2:ef:00:29:30:05:c5:99: 18:b8:41:34:c7:f2:eb:e0:78:84:98:85:ea:0e:7c: 26:f8:0c:40:52:7b:b9:a9:da:b4:ac:18:10:68:f5: dd:24:5b:ba:e7:24:92:65:fa:21:f0:9f:fa:2f:65: af:ce:29:d3:66:fa:18:37:e1:f3:14:8b:c1:71:4a: c3:bf:ef:c1:40:61:7f:26:68:c8:d0:59:39:87:51: d4:8f:4e:09:b9:50:c2:20:22:c5:fc:71:89:59:35: f2:a1:1f:55:ce:a9:9b:48:bd:c3:65:42:9e:39:ca: 44:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9F:31:AB:1F:DF:C1:DB:D0:C7:0E:70:6F:6A:7B:EE:F8:84:32:58 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Op8xqx_fwdvQxw5wb2p77viEMlg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.8.0/22 Signature Algorithm: sha256WithRSAEncryption ac:1f:32:f7:5b:d3:a8:1f:11:6a:16:54:32:74:d6:2d:23:d0: f5:cd:51:ea:35:c7:b8:cf:1d:1b:e7:f7:b5:9c:15:89:11:a9: 84:c6:57:d4:7f:54:3a:46:12:8b:53:28:a4:62:9b:22:29:ca: 2a:1d:a9:cb:26:8f:1c:42:5b:d5:2b:ee:be:f4:51:45:ae:2b: 8a:15:ab:9c:22:fb:59:3b:68:be:e6:a1:31:17:98:5f:00:42: 97:5e:25:e6:0d:86:e2:36:20:ca:2e:db:6c:09:5e:ab:96:18: ac:1f:4e:2b:3f:27:41:be:fd:08:7d:89:65:c3:6f:d5:6d:d4: 33:c2:0b:37:b2:ea:10:b0:fe:99:51:0e:71:47:b5:0f:d1:fb: 72:84:72:c9:3d:2a:a2:24:80:9f:fd:c2:ce:37:04:93:a7:85: e9:a5:fe:6c:eb:57:5a:88:b7:8c:65:1b:86:90:3a:6b:8c:e1: fe:87:d5:9a:b9:24:26:b3:a2:a2:2f:79:e6:65:1e:5d:dc:53: 65:c9:5a:62:3b:5c:4b:2e:40:b0:71:1f:8c:b9:ea:59:3b:af: 3b:5e:c4:9c:d5:79:f6:03:14:bf:83:39:54:69:80:51:48:ed: 0c:a2:32:a9:e5:a9:b2:d4:cc:46:66:79:fa:30:49:03:e2:fe: e5:6e:d3:47 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEQgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNBOUYzMUFCMUZERkMx REJEMEM3MEU3MDZGNkE3QkVFRjg4NDMyNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCydUn2qFFNXwnSQUplgy2O2cogBOW3Trhxgqa8ZHHX5gxN6l2h Mep5YvRZCnjpHU+NhiGpOwzC2NQ2EDLeR4QEMXr/+XGpjtC+KVmDZZSpINn9PeTS aP3C6g3yl/SENP1Gj0K1zM6KNHzrCIK7R4GdRc1JW5TO8f7l8qIwzGz8nooA+fEG 5F3otwI2wcHy7wApMAXFmRi4QTTH8uvgeISYheoOfCb4DEBSe7mp2rSsGBBo9d0k W7rnJJJl+iHwn/ovZa/OKdNm+hg34fMUi8FxSsO/78FAYX8maMjQWTmHUdSPTgm5 UMIgIsX8cYlZNfKhH1XOqZtIvcNlQp45ykS5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUOp8xqx/fwdvQxw5wb2p77viEMlgwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvT3A4eHF4X2Z3ZHZReHc1d2IycDc3 dmlFTWxnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsveCDAN BgkqhkiG9w0BAQsFAAOCAQEArB8y91vTqB8RahZUMnTWLSPQ9c1R6jXHuM8dG+f3 tZwViRGphMZX1H9UOkYSi1MopGKbIinKKh2pyyaPHEJb1SvuvvRRRa4rihWrnCL7 WTtovuahMReYXwBCl14l5g2G4jYgyi7bbAleq5YYrB9OKz8nQb79CH2JZcNv1W3U M8ILN7LqELD+mVEOcUe1D9H7coRyyT0qoiSAn/3CzjcEk6eF6aX+bOtXWoi3jGUb hpA6a4zh/ofVmrkkJrOioi955mUeXdxTZclaYjtcSy5AsHEfjLnqWTuvO17EnNV5 9gMUv4M5VGmAUUjtDKIyqeWpstTMRmZ5+jBJA+L+5W7TRw== -----END CERTIFICATE-----Generated at Tue Apr 8 18:07:49 2025 by rpki-client