$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/plIqn_Z-NyPpJlQ3zwufhMohlVA.roa File: plIqn_Z-NyPpJlQ3zwufhMohlVA.roa (raw, json) Hash identifier: qLufIj/QU0eTEBfh4eVhRVrvXsV+WkHZDnH0t5dAMmQ= Subject key identifier: A6:52:2A:9F:F6:7E:37:23:E9:26:54:37:CF:0B:9F:84:CA:21:95:50 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1112 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/plIqn_Z-NyPpJlQ3zwufhMohlVA.roa Signing time: Mon 10 Feb 2025 13:56:47 +0000 ROA not before: Mon 10 Feb 2025 13:56:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 182.155.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4370 (0x1112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A6522A9FF67E3723E9265437CF0B9F84CA219550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f8:f5:46:40:e5:97:12:53:e6:67:da:06:b8: d8:07:42:2b:d4:f7:7c:c4:e0:8a:b1:24:23:c4:e8: 64:2f:09:c0:71:91:e4:e3:98:6d:f7:c1:08:54:80: 46:3b:7a:2c:14:00:e9:97:6b:16:76:ac:db:39:de: d2:23:d0:d2:7f:e4:43:7a:41:e5:b2:f7:98:c4:2d: 30:56:83:ea:f4:27:c9:cf:08:8d:0f:40:a7:a4:1b: 9c:4a:1f:0b:59:03:7e:b8:73:9f:8c:2b:aa:95:23: 76:0d:50:94:43:c9:71:e7:63:58:58:0b:0e:20:3b: 43:04:ed:d6:d8:60:c2:e9:84:e2:2e:a3:f5:9f:e4: 84:8c:e5:3c:58:af:e4:33:a8:7d:f0:32:a2:42:e3: e7:3c:cf:29:c8:cf:9c:ad:4e:a8:b1:54:74:a1:c5: 77:fa:72:b9:45:4c:70:41:05:da:0d:8e:ba:11:58: 0f:fb:14:0a:7d:b5:07:91:7f:2a:ea:bf:c8:58:dc: 84:aa:0e:51:22:81:78:c2:6a:4f:1f:e4:29:f6:d3: 93:e1:04:aa:54:9d:7b:a7:cd:89:cb:1e:87:8a:88: 54:e1:53:ef:dd:db:31:2c:b2:d2:e9:6a:d4:e9:94: 59:71:69:5e:a6:7f:fd:8f:e6:21:e3:57:ff:4d:1d: d6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:52:2A:9F:F6:7E:37:23:E9:26:54:37:CF:0B:9F:84:CA:21:95:50 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/plIqn_Z-NyPpJlQ3zwufhMohlVA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.192.0/19 Signature Algorithm: sha256WithRSAEncryption b3:7a:56:43:99:29:24:0c:71:d3:0d:98:90:07:d8:f3:92:9c: 28:05:e3:7a:47:29:54:d5:da:29:cc:32:01:03:e7:f7:90:e2: 03:19:d7:7e:90:3d:f8:cb:64:23:34:82:67:4f:f1:44:a3:2b: 70:bf:de:8b:a5:6b:e5:24:46:ec:ce:8c:4b:6b:6d:e5:33:e3: 39:ff:d1:1a:a9:6a:f8:5e:be:6b:7e:c3:5e:ef:29:18:de:f6: 15:2c:b4:9b:d2:9d:7a:da:34:88:59:54:71:03:f5:79:34:a3: 11:48:9a:20:1e:9a:8b:15:50:3d:53:3b:97:f8:20:5d:37:c6: 31:9c:cb:e0:8c:c1:a5:7e:39:3d:85:69:8c:c5:82:ab:e0:bf: c0:de:55:9f:e0:e0:72:fd:7a:15:66:15:a2:69:ed:d0:a0:11: c4:a9:ca:ff:24:7a:ec:bb:fa:b3:ec:96:27:49:43:b1:fa:5f: 15:bb:a5:56:ea:7f:6c:f8:79:91:e7:40:f2:03:50:ee:a3:e5: d9:e0:02:01:0d:e7:38:e3:bf:ec:34:b4:83:35:74:a6:46:12: 89:0c:79:81:74:63:fd:92:88:4c:cc:d7:82:da:a1:5a:21:c4: ef:e2:ca:07:66:a0:a2:27:86:6d:f8:5d:06:41:c8:34:3f:ea: 6a:48:3f:59 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICERIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE2NTIyQTlGRjY3RTM3 MjNFOTI2NTQzN0NGMEI5Rjg0Q0EyMTk1NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCi+PVGQOWXElPmZ9oGuNgHQivU93zE4IqxJCPE6GQvCcBxkeTj mG33wQhUgEY7eiwUAOmXaxZ2rNs53tIj0NJ/5EN6QeWy95jELTBWg+r0J8nPCI0P QKekG5xKHwtZA364c5+MK6qVI3YNUJRDyXHnY1hYCw4gO0ME7dbYYMLphOIuo/Wf 5ISM5TxYr+QzqH3wMqJC4+c8zynIz5ytTqixVHShxXf6crlFTHBBBdoNjroRWA/7 FAp9tQeRfyrqv8hY3ISqDlEigXjCak8f5Cn205PhBKpUnXunzYnLHoeKiFThU+/d 2zEsstLpatTplFlxaV6mf/2P5iHjV/9NHdZhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUplIqn/Z+NyPpJlQ3zwufhMohlVAwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvcGxJcW5fWi1OeVBwSmxRM3p3dWZo TW9obFZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabwDAN BgkqhkiG9w0BAQsFAAOCAQEAs3pWQ5kpJAxx0w2YkAfY85KcKAXjekcpVNXaKcwy AQPn95DiAxnXfpA9+MtkIzSCZ0/xRKMrcL/ei6Vr5SRG7M6MS2tt5TPjOf/RGqlq +F6+a37DXu8pGN72FSy0m9Kdeto0iFlUcQP1eTSjEUiaIB6aixVQPVM7l/ggXTfG MZzL4IzBpX45PYVpjMWCq+C/wN5Vn+Dgcv16FWYVomnt0KARxKnK/yR67Lv6s+yW J0lDsfpfFbulVup/bPh5kedA8gNQ7qPl2eACAQ3nOOO/7DS0gzV0pkYSiQx5gXRj /ZKITMzXgtqhWiHE7+LKB2agoieGbfhdBkHIND/qakg/WQ== -----END CERTIFICATE-----Generated at Tue Apr 8 18:07:48 2025 by rpki-client