$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/_UwyKC71qoHffUmkTIkYQ9jOyWI.roa File: _UwyKC71qoHffUmkTIkYQ9jOyWI.roa (raw, json) Hash identifier: LYGBHYBIA/4sfhTvCZSWAdfV0yfmPv/r6Nrl02f0SXw= Subject key identifier: FD:4C:32:28:2E:F5:AA:81:DF:7D:49:A4:4C:89:18:43:D8:CE:C9:62 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 112A Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_UwyKC71qoHffUmkTIkYQ9jOyWI.roa Signing time: Mon 10 Feb 2025 13:56:53 +0000 ROA not before: Mon 10 Feb 2025 13:56:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 113.61.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4394 (0x112a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FD4C32282EF5AA81DF7D49A44C891843D8CEC962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7a:39:ed:c4:55:ce:6f:87:cb:f7:23:8d:ff: 87:65:df:73:ed:2a:70:47:95:14:95:67:7e:97:eb: a8:2c:04:09:2c:d9:99:e0:50:c7:a8:8e:03:77:1e: 8c:a6:f7:51:24:3e:1d:53:fd:39:52:3c:31:db:35: e1:58:4d:35:1d:96:81:e3:fd:23:f9:16:4c:89:62: 42:83:e4:9a:0e:45:6d:97:de:48:3f:3b:c4:ed:fd: e1:2b:66:d6:ac:d0:78:72:ae:21:42:3f:31:7f:1c: a7:8f:ed:08:7d:9b:89:c0:b2:e9:00:f1:3b:91:6c: 76:19:29:d4:9d:34:5a:0b:5b:5d:dd:60:e1:e1:59: 9a:bf:7d:d3:95:25:29:2e:ea:44:52:55:fe:01:52: 11:21:96:e7:c2:9c:a7:99:8d:8d:59:cf:c4:0a:bb: 62:16:03:46:5b:90:43:35:e5:3f:9e:fa:02:82:9c: 2f:22:97:d1:e7:a5:13:13:51:35:ac:c8:93:ea:6c: cb:ee:1b:41:19:7e:ce:2f:77:ea:f6:1b:a8:0d:b0: a2:df:30:91:42:33:57:7a:9d:57:b9:b2:cd:6f:8c: 9c:c7:04:c5:fc:1e:47:a0:8b:a7:6f:92:e8:6c:62: 47:11:1b:de:de:4a:ea:cc:20:39:81:67:25:63:11: bd:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4C:32:28:2E:F5:AA:81:DF:7D:49:A4:4C:89:18:43:D8:CE:C9:62 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_UwyKC71qoHffUmkTIkYQ9jOyWI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.174.0/24 Signature Algorithm: sha256WithRSAEncryption 13:bd:df:e9:14:cb:cc:a7:bb:67:1b:4d:28:95:9b:f6:9d:77: f4:8e:d7:20:6a:a6:e8:8b:a9:84:75:19:3d:aa:a6:24:2b:6d: 12:75:1b:89:84:aa:a3:d7:5b:12:b2:bd:a5:d2:4c:1c:69:1a: 5b:72:65:c0:7a:be:40:b6:9a:93:b7:85:0e:f6:b3:c4:f6:c0: e3:e8:5a:5e:72:e8:fd:70:ef:8e:69:5f:47:30:3c:70:19:96: 45:8e:1b:74:52:1f:33:0c:9d:37:dd:b2:89:3c:d4:0e:d1:dc: 75:85:59:2c:9b:b6:2b:27:77:ad:6e:68:d8:9d:25:13:cc:10: 30:ab:a9:99:7d:62:c2:43:8c:7a:a3:4c:70:f8:f8:3c:88:f8: 0b:a6:ff:dc:73:6a:68:61:c5:df:e2:0a:4d:2e:b0:f1:ce:84: 01:bb:b9:89:3c:fc:7a:c0:4a:cc:6e:a5:53:56:b4:9d:b1:a1: 37:2e:f3:fe:48:c1:75:61:71:32:2a:44:ec:94:ba:0b:8a:c6: 17:b3:a6:34:18:bb:78:34:5c:61:19:2c:5e:c3:3c:ee:da:4b: 32:ce:f9:6e:63:0c:b4:46:1b:7e:d2:16:09:bb:7c:59:fe:72: c5:bd:df:38:84:67:67:6e:0c:a5:65:95:2b:e7:91:56:74:7e: e6:2e:97:4e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICESowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZENEMzMjI4MkVGNUFB ODFERjdENDlBNDRDODkxODQzRDhDRUM5NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlejntxFXOb4fL9yON/4dl33PtKnBHlRSVZ36X66gsBAks2Zng UMeojgN3Hoym91EkPh1T/TlSPDHbNeFYTTUdloHj/SP5FkyJYkKD5JoORW2X3kg/ O8Tt/eErZtas0HhyriFCPzF/HKeP7Qh9m4nAsukA8TuRbHYZKdSdNFoLW13dYOHh WZq/fdOVJSku6kRSVf4BUhEhlufCnKeZjY1Zz8QKu2IWA0ZbkEM15T+e+gKCnC8i l9HnpRMTUTWsyJPqbMvuG0EZfs4vd+r2G6gNsKLfMJFCM1d6nVe5ss1vjJzHBMX8 Hkegi6dvkuhsYkcRG97eSurMIDmBZyVjEb3jAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU/UwyKC71qoHffUmkTIkYQ9jOyWIwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvX1V3eUtDNzFxb0hmZlVta1RJa1lR OWpPeVdJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHE9rjAN BgkqhkiG9w0BAQsFAAOCAQEAE73f6RTLzKe7ZxtNKJWb9p139I7XIGqm6IuphHUZ PaqmJCttEnUbiYSqo9dbErK9pdJMHGkaW3JlwHq+QLaak7eFDvazxPbA4+haXnLo /XDvjmlfRzA8cBmWRY4bdFIfMwydN92yiTzUDtHcdYVZLJu2Kyd3rW5o2J0lE8wQ MKupmX1iwkOMeqNMcPj4PIj4C6b/3HNqaGHF3+IKTS6w8c6EAbu5iTz8esBKzG6l U1a0nbGhNy7z/kjBdWFxMipE7JS6C4rGF7OmNBi7eDRcYRksXsM87tpLMs75bmMM tEYbftIWCbt8Wf5yxb3fOIRnZ24MpWWVK+eRVnR+5i6XTg== -----END CERTIFICATE-----Generated at Tue Apr 8 18:10:25 2025 by rpki-client