$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/VSCK1gSVKmaaOo8wFcOmZJq3UkI.roa File: VSCK1gSVKmaaOo8wFcOmZJq3UkI.roa (raw, json) Hash identifier: tSy+xCcFuAfwD/7soiZ46ZofCRh9sG7tHn7NbsZWubk= Subject key identifier: 55:20:8A:D6:04:95:2A:66:9A:3A:8F:30:15:C3:A6:64:9A:B7:52:42 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1110 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/VSCK1gSVKmaaOo8wFcOmZJq3UkI.roa Signing time: Mon 10 Feb 2025 13:56:47 +0000 ROA not before: Mon 10 Feb 2025 13:56:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 182.155.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4368 (0x1110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=55208AD604952A669A3A8F3015C3A6649AB75242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:24:07:fa:72:87:ff:0a:77:80:81:1c:c9:03: a0:5a:3b:ae:8f:50:59:6c:6b:b8:05:31:c9:b6:9f: 09:10:ea:25:93:53:df:95:cb:5d:a9:a4:e7:38:99: 75:9b:89:c1:85:e6:12:c6:94:75:03:96:4f:ae:6b: 8a:c1:9b:47:f0:6b:8b:f8:05:76:c5:4e:ae:b7:1b: 70:af:70:d9:a0:c1:11:ce:67:74:db:f9:2c:98:59: eb:36:15:a5:ef:30:4e:71:1c:7c:21:9c:51:ed:5d: 32:96:9e:86:43:d7:4f:32:ff:52:4d:4a:75:35:1b: 33:11:1c:24:b2:87:f8:ed:b0:29:76:a2:df:e3:a2: a3:82:e5:4a:d1:e3:89:a6:03:fe:41:59:50:ce:99: f9:2b:94:4a:7e:a7:6b:c1:66:f6:68:04:d9:21:5d: 10:ac:0a:28:00:71:85:ee:19:ba:06:1a:c1:cb:26: 9d:2f:c8:4a:e6:cf:4e:b0:f0:3f:d0:ca:cf:d3:94: fc:8b:6b:98:60:11:b2:81:67:f4:6a:0a:c8:bf:ef: c1:c7:5d:c3:5b:13:ae:e1:cc:5d:18:fc:fe:28:84: dd:56:a5:3f:df:26:56:ee:14:62:e7:5f:7e:d2:85: f1:d4:78:7f:c7:53:d3:0d:3d:4c:2e:78:71:bb:2a: 88:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:20:8A:D6:04:95:2A:66:9A:3A:8F:30:15:C3:A6:64:9A:B7:52:42 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/VSCK1gSVKmaaOo8wFcOmZJq3UkI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.64.0/19 Signature Algorithm: sha256WithRSAEncryption 59:8d:cc:88:da:8b:b5:6c:94:2c:48:cb:bc:aa:6b:57:99:0e: e6:67:53:bf:56:82:d5:54:d0:09:5a:72:3a:82:28:31:37:f3: b9:c9:b2:87:bd:34:a2:05:4c:45:6e:c4:df:e2:78:2a:cd:74: d3:ec:0b:ca:64:de:11:37:bc:b5:fe:dd:57:cb:10:27:60:0c: 72:bf:99:ae:4b:a1:af:c2:61:a0:51:09:74:54:62:2f:ca:68: 86:90:18:d3:2e:81:b8:7f:22:71:63:a8:d2:5e:60:a2:0f:b7: 84:5f:f0:a8:60:bd:c8:f6:ba:25:40:66:13:ab:64:21:e2:56: 68:31:26:89:6c:7c:79:5d:1b:80:4e:73:33:0b:f0:ff:21:1e: cc:c4:55:e8:49:da:36:5e:db:f8:d1:19:a1:c0:05:f9:cc:3b: a7:b9:0b:d4:ea:90:10:0f:38:b9:8e:bc:e8:ed:6c:f3:b4:37: 77:53:38:8b:6d:f8:3f:fd:1b:85:b8:1d:56:64:ab:be:24:a2: a0:38:c0:e1:64:75:6f:32:51:57:6b:26:73:94:23:89:b4:42: 47:68:76:74:57:b1:0f:d0:a7:8e:fb:ed:42:ea:ca:b4:03:1f: 58:34:4d:f0:69:76:d5:39:86:09:91:15:d5:e3:d8:1e:85:a7: 35:36:40:8d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICERAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1MjA4QUQ2MDQ5NTJB NjY5QTNBOEYzMDE1QzNBNjY0OUFCNzUyNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLJAf6cof/CneAgRzJA6BaO66PUFlsa7gFMcm2nwkQ6iWTU9+V y12ppOc4mXWbicGF5hLGlHUDlk+ua4rBm0fwa4v4BXbFTq63G3CvcNmgwRHOZ3Tb +SyYWes2FaXvME5xHHwhnFHtXTKWnoZD108y/1JNSnU1GzMRHCSyh/jtsCl2ot/j oqOC5UrR44mmA/5BWVDOmfkrlEp+p2vBZvZoBNkhXRCsCigAcYXuGboGGsHLJp0v yErmz06w8D/Qys/TlPyLa5hgEbKBZ/RqCsi/78HHXcNbE67hzF0Y/P4ohN1WpT/f JlbuFGLnX37ShfHUeH/HU9MNPUwueHG7KohZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUVSCK1gSVKmaaOo8wFcOmZJq3UkIwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvVlNDSzFnU1ZLbWFhT284d0ZjT21a SnEzVWtJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabQDAN BgkqhkiG9w0BAQsFAAOCAQEAWY3MiNqLtWyULEjLvKprV5kO5mdTv1aC1VTQCVpy OoIoMTfzucmyh700ogVMRW7E3+J4Ks100+wLymTeETe8tf7dV8sQJ2AMcr+Zrkuh r8JhoFEJdFRiL8pohpAY0y6BuH8icWOo0l5gog+3hF/wqGC9yPa6JUBmE6tkIeJW aDEmiWx8eV0bgE5zMwvw/yEezMRV6EnaNl7b+NEZocAF+cw7p7kL1OqQEA84uY68 6O1s87Q3d1M4i234P/0bhbgdVmSrviSioDjA4WR1bzJRV2smc5QjibRCR2h2dFex D9CnjvvtQurKtAMfWDRN8Gl21TmGCZEV1ePYHoWnNTZAjQ== -----END CERTIFICATE-----Generated at Tue Apr 8 18:07:52 2025 by rpki-client