$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/vSt1sKibxE2ONYe8Ba6OVdAm50A.roa File: vSt1sKibxE2ONYe8Ba6OVdAm50A.roa (raw, json) Hash identifier: SwrNvA9t0AYHBuv4QLflKHF8O5ta4Z1RruU015RmoAE= Subject key identifier: BD:2B:75:B0:A8:9B:C4:4D:8E:35:87:BC:05:AE:8E:55:D0:26:E7:40 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 10C5 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/vSt1sKibxE2ONYe8Ba6OVdAm50A.roa Signing time: Mon 10 Feb 2025 13:56:29 +0000 ROA not before: Mon 10 Feb 2025 13:56:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 182.155.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4293 (0x10c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BD2B75B0A89BC44D8E3587BC05AE8E55D026E740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9c:9a:88:9c:ce:f2:ae:77:67:62:1e:e1:63: 35:1b:ee:ef:a9:42:a1:a6:cc:3a:34:cc:b0:a6:55: e1:55:b7:d5:35:1e:43:fe:f5:08:d7:a7:40:16:f1: e3:f9:ae:85:00:a9:6a:9f:69:28:0e:1b:f1:ac:b4: d3:36:e1:b1:3e:1b:bf:64:7f:40:b5:31:a9:ee:d5: 5f:d4:4f:d6:7f:bd:e7:0a:3d:7e:ba:fe:0d:aa:05: ec:1f:bf:c4:5b:a9:a7:20:e6:9e:78:3e:0d:99:9e: 22:2c:97:c7:86:62:bf:b6:42:90:b5:f3:04:04:8d: bb:6c:d8:91:e1:cf:c0:92:4f:12:22:8a:7e:1c:56: 5a:50:b3:e3:3e:2b:34:3a:3a:dd:f0:90:13:fa:8e: e9:0f:3b:1d:cf:46:66:e3:13:26:8e:9c:b3:36:37: 03:c5:00:69:57:55:6a:2c:dd:73:25:1c:68:19:95: b3:ce:66:9b:1b:a5:b6:b8:45:6b:1d:d8:9b:16:ff: 3a:7a:b5:2e:11:bc:d2:df:fe:f3:21:00:82:5b:88: 2b:63:e0:0e:1e:74:9f:54:07:2c:0b:ab:8d:09:5c: 4e:3e:b5:70:b1:41:96:24:0a:76:c0:ae:32:25:97: df:2c:92:a3:dc:2d:ee:0a:a5:47:8a:15:ba:ce:b8: db:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:2B:75:B0:A8:9B:C4:4D:8E:35:87:BC:05:AE:8E:55:D0:26:E7:40 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/vSt1sKibxE2ONYe8Ba6OVdAm50A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.128.0/17 Signature Algorithm: sha256WithRSAEncryption 92:9a:92:cc:89:04:51:c6:4d:ee:0c:88:f6:95:12:df:22:69: 7f:a0:6c:76:b0:04:6c:7b:75:06:3b:36:ad:d4:36:4f:6e:95: f7:f8:ac:76:7c:35:85:b1:0f:75:d1:0c:4d:4c:69:bf:bb:cb: 9d:22:ca:56:e0:a8:3f:11:4d:77:08:ae:45:01:ce:60:ad:91: 0e:92:76:27:f7:a8:d2:c8:5e:5e:cc:2a:be:2d:c7:5c:c6:0b: 6b:f3:ee:5b:33:22:3c:2f:19:5f:2b:36:f1:ad:66:b6:96:01: 05:20:b7:2d:9d:71:61:59:cb:e3:f4:60:3c:cd:9b:3e:aa:df: 77:9c:e0:6b:3c:86:f4:64:d5:aa:54:03:06:38:8a:97:df:e7: 27:40:39:dc:9c:59:6a:e1:71:40:68:4d:79:77:bd:20:1b:8f: 09:e0:92:5b:a4:b3:07:16:99:2e:f4:84:33:1f:43:dc:4e:25: 39:75:45:8c:a4:de:99:5c:da:75:39:43:ed:8f:07:1f:0d:b5: 1f:78:ee:75:0a:05:9a:fc:75:d7:ed:03:3f:7c:2b:1e:0c:cc: 2f:34:34:c8:9f:e0:62:46:bd:72:d0:84:33:e1:c4:8a:60:29: ac:bb:f1:f3:b1:d3:80:46:6c:d7:d1:41:57:f2:a0:a5:a5:7d: 0a:e1:4f:79 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEMUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJEMkI3NUIwQTg5QkM0 NEQ4RTM1ODdCQzA1QUU4RTU1RDAyNkU3NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0nJqInM7yrndnYh7hYzUb7u+pQqGmzDo0zLCmVeFVt9U1HkP+ 9QjXp0AW8eP5roUAqWqfaSgOG/GstNM24bE+G79kf0C1Manu1V/UT9Z/vecKPX66 /g2qBewfv8Rbqacg5p54Pg2ZniIsl8eGYr+2QpC18wQEjbts2JHhz8CSTxIiin4c VlpQs+M+KzQ6Ot3wkBP6jukPOx3PRmbjEyaOnLM2NwPFAGlXVWos3XMlHGgZlbPO Zpsbpba4RWsd2JsW/zp6tS4RvNLf/vMhAIJbiCtj4A4edJ9UBywLq40JXE4+tXCx QZYkCnbArjIll98skqPcLe4KpUeKFbrOuNvJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUvSt1sKibxE2ONYe8Ba6OVdAm50AwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvdlN0MXNLaWJ4RTJPTlllOEJhNk9W ZEFtNTBBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB7abgDAN BgkqhkiG9w0BAQsFAAOCAQEAkpqSzIkEUcZN7gyI9pUS3yJpf6BsdrAEbHt1Bjs2 rdQ2T26V9/isdnw1hbEPddEMTUxpv7vLnSLKVuCoPxFNdwiuRQHOYK2RDpJ2J/eo 0sheXswqvi3HXMYLa/PuWzMiPC8ZXys28a1mtpYBBSC3LZ1xYVnL4/RgPM2bPqrf d5zgazyG9GTVqlQDBjiKl9/nJ0A53JxZauFxQGhNeXe9IBuPCeCSW6SzBxaZLvSE Mx9D3E4lOXVFjKTemVzadTlD7Y8HHw21H3judQoFmvx11+0DP3wrHgzMLzQ0yJ/g Yka9ctCEM+HEimAprLvx87HTgEZs19FBV/KgpaV9CuFPeQ== -----END CERTIFICATE-----Generated at Tue Apr 8 18:07:45 2025 by rpki-client