$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/c_G2jdkVIoRhCn-0BBhLJynGFdk.roa File: c_G2jdkVIoRhCn-0BBhLJynGFdk.roa (raw, json) Hash identifier: YEpsnpMsumTk2TGoNg+g+rJ8D1QYQi/ymsR4TLVUFQI= Subject key identifier: 73:F1:B6:8D:D9:15:22:84:61:0A:7F:B4:04:18:4B:27:29:C6:15:D9 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1117 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/c_G2jdkVIoRhCn-0BBhLJynGFdk.roa Signing time: Mon 10 Feb 2025 13:56:49 +0000 ROA not before: Mon 10 Feb 2025 13:56:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 27.96.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 16:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4375 (0x1117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=73F1B68DD9152284610A7FB404184B2729C615D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2b:9e:f4:b6:b3:e0:5d:15:65:4f:6b:eb:f0: 28:65:aa:08:a9:21:47:80:22:1a:46:b0:89:67:ee: de:58:ec:5e:4c:fe:2e:26:86:36:17:d8:ae:ac:5f: c5:39:3c:4e:2e:32:1b:ea:bd:ea:19:dc:44:5b:1f: e7:cf:36:2a:43:37:6b:dd:ab:d8:fd:3c:e3:f2:72: 1f:de:60:6e:cb:c5:f5:af:2e:33:7b:83:d0:a8:a0: 4b:70:6f:87:8f:a7:7c:92:69:b9:cf:34:4f:8b:03: 91:88:eb:5d:9d:a5:8c:54:3f:9c:ae:ee:98:c1:a3: 7f:26:58:ef:ad:71:fc:82:e5:1c:d1:ed:74:0e:b5: 98:9b:26:f0:a4:21:4d:78:25:26:b6:c5:62:3b:1c: 9b:68:3a:14:4b:14:89:23:66:51:a1:81:3e:27:8d: dd:97:83:a3:26:aa:69:eb:b6:09:a8:40:8f:49:07: 4b:f4:47:e7:db:19:2c:32:ef:89:0a:99:45:d7:29: 03:f0:01:54:5d:34:87:d3:e1:2a:0c:91:df:a2:4a: 12:7c:9c:8d:66:db:9a:af:87:c8:43:2e:23:3a:02: 76:dd:d0:f9:ca:02:93:87:f5:dd:32:ae:20:45:8c: 8b:ce:22:b0:18:11:d6:26:9e:4b:3c:ad:5f:3a:b4: 96:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F1:B6:8D:D9:15:22:84:61:0A:7F:B4:04:18:4B:27:29:C6:15:D9 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/c_G2jdkVIoRhCn-0BBhLJynGFdk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.232.0/22 Signature Algorithm: sha256WithRSAEncryption 10:35:24:c1:70:57:f2:15:dc:49:8b:61:79:ae:7c:d4:6a:d7: e4:b7:68:dc:7e:50:44:b8:3a:a3:cd:2f:46:ed:be:fc:54:1e: a4:13:31:54:4e:fe:ae:f3:83:82:07:23:84:39:69:28:45:84: d6:13:c0:30:e8:32:1a:83:77:5b:9a:92:18:3f:a0:ed:3f:eb: 3b:f0:26:e2:b4:de:73:47:75:14:3e:32:5f:3b:24:f2:b7:37: b7:00:b6:80:36:4a:65:ca:4d:58:13:a0:86:f0:e7:84:b6:b6: ac:0d:93:87:71:7d:e4:0b:85:3d:fb:d8:4a:d0:d1:91:b0:e2: 21:a6:54:dc:ec:4a:98:cd:e7:c0:2d:7e:08:67:4d:70:98:d5: 3e:4f:06:c6:cf:f4:df:75:61:c8:79:41:06:20:1d:9a:84:73: 1a:cf:de:d6:05:b5:53:cd:e4:56:dd:d9:61:d4:86:5d:8c:de: ab:02:4c:da:dd:35:5a:57:68:ad:8c:af:a2:f5:ff:e0:dc:e7: ce:b3:5f:8a:ff:7d:6d:5b:2d:c5:a9:75:8b:e3:83:8c:83:71: 86:80:65:a4:57:15:6a:a9:0c:f8:33:a8:cf:4b:ae:e7:b3:ab: 34:70:82:86:88:09:24:a7:c4:f6:ae:f2:8f:71:de:c6:cb:8b: 0f:45:ca:bd -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICERcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDczRjFCNjhERDkxNTIy ODQ2MTBBN0ZCNDA0MTg0QjI3MjlDNjE1RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1K570trPgXRVlT2vr8ChlqgipIUeAIhpGsIln7t5Y7F5M/i4m hjYX2K6sX8U5PE4uMhvqveoZ3ERbH+fPNipDN2vdq9j9POPych/eYG7LxfWvLjN7 g9CooEtwb4ePp3ySabnPNE+LA5GI612dpYxUP5yu7pjBo38mWO+tcfyC5RzR7XQO tZibJvCkIU14JSa2xWI7HJtoOhRLFIkjZlGhgT4njd2Xg6MmqmnrtgmoQI9JB0v0 R+fbGSwy74kKmUXXKQPwAVRdNIfT4SoMkd+iShJ8nI1m25qvh8hDLiM6Anbd0PnK ApOH9d0yriBFjIvOIrAYEdYmnks8rV86tJYtAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUc/G2jdkVIoRhCn+0BBhLJynGFdkwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvY19HMmpka1ZJb1JoQ24tMEJCaExK eW5HRmRrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhtg6DAN BgkqhkiG9w0BAQsFAAOCAQEAEDUkwXBX8hXcSYthea581GrX5Ldo3H5QRLg6o80v Ru2+/FQepBMxVE7+rvODggcjhDlpKEWE1hPAMOgyGoN3W5qSGD+g7T/rO/Am4rTe c0d1FD4yXzsk8rc3twC2gDZKZcpNWBOghvDnhLa2rA2Th3F95AuFPfvYStDRkbDi IaZU3OxKmM3nwC1+CGdNcJjVPk8Gxs/033VhyHlBBiAdmoRzGs/e1gW1U83kVt3Z YdSGXYzeqwJM2t01WldorYyvovX/4NznzrNfiv99bVstxal1i+ODjINxhoBlpFcV aqkM+DOoz0uu57OrNHCChogJJKfE9q7yj3HexsuLD0XKvQ== -----END CERTIFICATE-----Generated at Tue Apr 8 15:01:02 2025 by rpki-client