$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/iXWwJqu0PreptiAURIRywwckrdY.roa File: iXWwJqu0PreptiAURIRywwckrdY.roa (raw, json) Hash identifier: bJOhCCkiUmWwK0EoGzKJR6B3wdmRq89tKrxbC/EoRfI= Subject key identifier: 89:75:B0:26:AB:B4:3E:B7:A9:B6:20:14:44:84:72:C3:07:24:AD:D6 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 10DE Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/iXWwJqu0PreptiAURIRywwckrdY.roa Signing time: Mon 10 Feb 2025 13:56:34 +0000 ROA not before: Mon 10 Feb 2025 13:56:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 119.15.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4318 (0x10de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Feb 10 13:56:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8975B026ABB43EB7A9B62014448472C30724ADD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:81:bb:a7:a5:0b:91:f1:c9:a3:68:e2:95:ac: 86:7d:4b:c9:ca:47:65:35:94:88:a8:3b:d6:63:d9: 4d:b5:33:ab:0a:87:14:72:3d:39:ee:4c:7d:ef:0a: 22:c4:07:d7:75:6c:e7:b5:5a:29:65:9d:49:52:cf: ca:5b:d4:79:f7:28:f7:75:d8:d6:29:64:1b:86:4a: a1:82:07:a5:98:b1:9f:fa:5a:cf:d4:15:9f:f7:e8: 48:d1:71:e7:b7:46:cd:a0:30:03:c8:df:c7:14:40: 8e:17:53:1a:ed:52:a6:33:5e:b9:11:ea:c1:7b:44: 52:38:1c:99:fe:fc:bc:45:b1:cb:13:ee:ff:d1:22: 3d:c7:a9:0d:92:4e:89:65:e9:fd:89:9e:a1:f0:6f: 31:47:3a:d0:9f:6e:7c:03:7a:d7:c8:81:2d:e6:3d: 1b:51:84:fc:e1:8d:6d:cd:2b:45:94:5c:02:46:60: 61:2b:69:89:d5:5e:e9:4e:e3:4c:51:fb:4a:4e:5d: 36:ae:6d:c8:38:c2:83:a4:b2:1d:45:50:a4:0d:44: d5:40:9e:de:23:e2:e7:1d:55:5e:5d:19:d8:9b:73: 93:f9:0c:01:5f:7b:ed:fe:d2:3d:7e:b0:3c:5a:17: 99:97:5c:c0:e8:1f:37:ae:00:cf:5b:38:76:d3:fe: 9a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:75:B0:26:AB:B4:3E:B7:A9:B6:20:14:44:84:72:C3:07:24:AD:D6 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/iXWwJqu0PreptiAURIRywwckrdY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.15.192.0/21 Signature Algorithm: sha256WithRSAEncryption 65:72:a8:38:c2:98:e3:35:25:ad:b5:80:b6:ba:2e:ce:c0:71: ce:b2:1d:5f:cf:69:f6:2b:69:80:a8:36:e9:2d:fd:ba:34:87: e2:da:ae:b5:c5:2f:41:c9:b9:12:55:c9:76:e2:e2:bc:d6:e5: 9e:72:34:1a:33:7a:d4:ef:a1:2a:c6:d4:92:b9:44:00:ce:97: 09:b4:db:2f:69:8c:01:a9:46:44:1d:1f:f3:79:dc:dc:1c:0d: 79:43:0e:9c:9a:a0:7d:6b:8c:11:5d:fd:2f:df:6d:82:1a:3f: 0c:9e:a7:85:d6:a9:c6:8a:0a:cf:69:3e:1b:e0:62:b2:40:a8: a7:c6:b3:d4:f2:92:cb:cc:42:e9:80:82:49:28:21:3e:23:5f: e5:70:d1:ad:44:f5:b6:a3:81:45:bb:74:8f:f9:ab:4f:0a:85: 64:ba:44:db:79:3d:74:18:4b:4a:dd:60:13:8d:58:65:18:88: f3:94:06:51:17:59:78:fd:d2:a2:c4:d7:5d:53:ed:31:4a:5f: 28:3a:31:8c:25:6d:19:08:4d:68:81:08:d5:c7:08:71:2d:5f: 6d:eb:e2:99:59:cd:4a:de:35:3d:22:27:30:c9:9d:d1:1d:b0: 85:bf:f8:4a:64:22:20:f4:7f:b8:98:37:bd:e8:14:24:07:64: fc:f3:63:76 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEN4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTAyMTAx MzU2MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5NzVCMDI2QUJCNDNF QjdBOUI2MjAxNDQ0ODQ3MkMzMDcyNEFERDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtgbunpQuR8cmjaOKVrIZ9S8nKR2U1lIioO9Zj2U21M6sKhxRy PTnuTH3vCiLEB9d1bOe1WillnUlSz8pb1Hn3KPd12NYpZBuGSqGCB6WYsZ/6Ws/U FZ/36EjRcee3Rs2gMAPI38cUQI4XUxrtUqYzXrkR6sF7RFI4HJn+/LxFscsT7v/R Ij3HqQ2SToll6f2JnqHwbzFHOtCfbnwDetfIgS3mPRtRhPzhjW3NK0WUXAJGYGEr aYnVXulO40xR+0pOXTaubcg4woOksh1FUKQNRNVAnt4j4ucdVV5dGdibc5P5DAFf e+3+0j1+sDxaF5mXXMDoHzeuAM9bOHbT/ppDAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUiXWwJqu0PreptiAURIRywwckrdYwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvaVhXd0pxdTBQcmVwdGlBVVJJUnl3 d2NrcmRZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3cPwDAN BgkqhkiG9w0BAQsFAAOCAQEAZXKoOMKY4zUlrbWAtrouzsBxzrIdX89p9itpgKg2 6S39ujSH4tqutcUvQcm5ElXJduLivNblnnI0GjN61O+hKsbUkrlEAM6XCbTbL2mM AalGRB0f83nc3BwNeUMOnJqgfWuMEV39L99tgho/DJ6nhdapxooKz2k+G+BiskCo p8az1PKSy8xC6YCCSSghPiNf5XDRrUT1tqOBRbt0j/mrTwqFZLpE23k9dBhLSt1g E41YZRiI85QGURdZeP3SosTXXVPtMUpfKDoxjCVtGQhNaIEI1ccIcS1fbevimVnN St41PSInMMmd0R2whb/4SmQiIPR/uJg3vegUJAdk/PNjdg== -----END CERTIFICATE-----Generated at Sun Apr 6 19:59:18 2025 by rpki-client