$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/cuVktNqrW3uW-ggOprIrZvvxYR4.roa File: cuVktNqrW3uW-ggOprIrZvvxYR4.roa (raw, json) Hash identifier: Yuz0iUYN2vXhPiZe26/kUowZ9P/PDvigx8rrYOtnTKc= Subject key identifier: 72:E5:64:B4:DA:AB:5B:7B:96:FA:08:0E:A6:B2:2B:66:FB:F1:61:1E Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 10FE Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/cuVktNqrW3uW-ggOprIrZvvxYR4.roa Signing time: Mon 10 Feb 2025 13:56:42 +0000 ROA not before: Mon 10 Feb 2025 13:56:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 211.79.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4350 (0x10fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:42 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=72E564B4DAAB5B7B96FA080EA6B22B66FBF1611E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:57:f8:b0:64:32:48:6a:41:94:a2:74:9a:8d: 2f:5f:f7:41:78:97:b0:ed:09:f8:cf:1c:6a:8a:82: a1:24:af:58:a3:f0:ad:bf:7b:b4:e7:d9:b8:5e:bc: bc:48:e1:2a:6e:7d:7b:d1:08:5b:23:f4:0c:72:90: e2:67:f8:58:4c:25:2a:11:46:cd:70:ac:73:93:f4: 03:2f:b5:39:59:7d:95:9f:85:12:c8:24:4e:2a:3b: 0d:a9:e8:4b:53:bb:6f:2a:c4:e9:21:85:ee:43:df: f4:cc:3e:b7:b8:4d:e3:69:15:bb:a4:ca:26:d1:de: 59:9f:90:6f:77:2e:eb:36:6e:38:08:59:a8:90:04: ae:0b:0f:b0:8d:72:50:94:09:4f:01:37:d9:c9:cc: 39:02:88:8d:e4:80:c9:6c:47:9f:9f:05:19:0a:e6: 4d:bb:71:98:38:7b:a7:5b:c0:aa:c8:eb:11:de:1b: a3:50:ce:69:75:45:1a:f7:e2:83:2f:3e:f2:f9:56: 54:c4:ed:c3:30:9e:3b:b8:50:4c:8d:8e:18:01:8c: 53:17:cb:06:99:fe:2e:30:a3:1f:5f:54:af:65:f5: 37:3c:64:75:c1:66:58:19:2a:ac:33:d9:92:06:e9: ee:7a:c5:9f:fb:2d:93:70:8c:e8:13:94:92:ee:fe: fe:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:E5:64:B4:DA:AB:5B:7B:96:FA:08:0E:A6:B2:2B:66:FB:F1:61:1E X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/cuVktNqrW3uW-ggOprIrZvvxYR4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.112.0/20 Signature Algorithm: sha256WithRSAEncryption 76:3f:20:45:52:2c:ed:0b:fd:a3:45:94:6e:3f:b9:7c:81:2c: 30:02:07:cc:24:9e:8a:4f:9c:6f:01:3a:8d:44:a7:b5:28:2e: e4:df:26:57:53:22:e8:7d:e5:d9:e8:86:32:e7:7b:18:0f:c3: 54:db:b5:a4:ab:fb:d9:66:d3:8a:6a:99:fe:39:db:c4:70:1d: a2:97:fe:13:74:c9:19:8f:f2:22:3f:cb:b5:6a:e6:77:6e:e9: c7:95:73:98:2b:e1:f3:28:41:84:ed:db:28:72:b8:93:e0:aa: a3:fd:21:b6:eb:68:5d:60:cb:9a:74:6b:30:2f:e4:97:a0:37: 31:94:bc:79:88:78:a1:f3:48:be:49:f8:83:8b:f1:31:20:5b: 3c:db:e9:64:50:c6:d3:5b:d1:23:93:07:20:b5:ca:1d:73:c4: af:f9:19:9d:c4:72:f3:50:04:c2:8c:87:1f:14:52:87:96:6c: 98:39:bf:86:72:f1:59:dc:e7:ea:dd:2b:ba:1b:9a:71:0d:a5: de:70:bd:d2:61:47:ed:30:06:70:83:99:5b:1b:0b:21:66:44: a2:c9:ed:67:f3:f2:d9:b6:de:ca:57:73:92:94:39:16:4a:19: 19:b3:4b:7f:91:16:9c:9d:49:0b:52:63:a2:a8:da:21:d6:7f: ef:85:2a:de -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcyRTU2NEI0REFBQjVC N0I5NkZBMDgwRUE2QjIyQjY2RkJGMTYxMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsV/iwZDJIakGUonSajS9f90F4l7DtCfjPHGqKgqEkr1ij8K2/ e7Tn2bhevLxI4SpufXvRCFsj9AxykOJn+FhMJSoRRs1wrHOT9AMvtTlZfZWfhRLI JE4qOw2p6EtTu28qxOkhhe5D3/TMPre4TeNpFbukyibR3lmfkG93Lus2bjgIWaiQ BK4LD7CNclCUCU8BN9nJzDkCiI3kgMlsR5+fBRkK5k27cZg4e6dbwKrI6xHeG6NQ zml1RRr34oMvPvL5VlTE7cMwnju4UEyNjhgBjFMXywaZ/i4wox9fVK9l9Tc8ZHXB ZlgZKqwz2ZIG6e56xZ/7LZNwjOgTlJLu/v7NAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUcuVktNqrW3uW+ggOprIrZvvxYR4wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvY3VWa3ROcXJXM3VXLWdnT3BySXJa dnZ4WVI0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNNPcDAN BgkqhkiG9w0BAQsFAAOCAQEAdj8gRVIs7Qv9o0WUbj+5fIEsMAIHzCSeik+cbwE6 jUSntSgu5N8mV1Mi6H3l2eiGMud7GA/DVNu1pKv72WbTimqZ/jnbxHAdopf+E3TJ GY/yIj/LtWrmd27px5VzmCvh8yhBhO3bKHK4k+Cqo/0htutoXWDLmnRrMC/kl6A3 MZS8eYh4ofNIvkn4g4vxMSBbPNvpZFDG01vRI5MHILXKHXPEr/kZncRy81AEwoyH HxRSh5ZsmDm/hnLxWdzn6t0ruhuacQ2l3nC90mFH7TAGcIOZWxsLIWZEosntZ/Py 2bbeyldzkpQ5FkoZGbNLf5EWnJ1JC1JjoqjaIdZ/74Uq3g== -----END CERTIFICATE-----Generated at Tue Apr 8 18:10:24 2025 by rpki-client