$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/5LkAK8kXcUZjwC5tRPLfNUyHTwc.roa File: 5LkAK8kXcUZjwC5tRPLfNUyHTwc.roa (raw, json) Hash identifier: WKNsPl9wYQm4Ga/mpAp+0ZopR91kZ9/Qm3Oubvcf9g8= Subject key identifier: E4:B9:00:2B:C9:17:71:46:63:C0:2E:6D:44:F2:DF:35:4C:87:4F:07 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 123C Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/5LkAK8kXcUZjwC5tRPLfNUyHTwc.roa Signing time: Fri 22 Aug 2025 08:49:08 +0000 ROA not before: Fri 22 Aug 2025 08:49:08 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 113.61.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4668 (0x123c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:08 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E4B9002BC917714663C02E6D44F2DF354C874F07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:75:f5:ac:70:cb:16:4e:fc:73:98:d0:26:b7: fb:66:65:b4:1a:02:92:a7:cb:f5:1c:39:38:43:c7: d8:1d:a7:3c:0b:9a:3d:4e:b1:e6:44:8a:7d:ea:54: e5:00:37:ea:e0:4a:60:bc:e9:0d:6a:f8:73:29:79: 5e:04:29:ff:c5:36:1d:9a:70:f5:e8:99:82:f8:a0: 6b:36:d0:ce:5a:18:64:6a:be:7f:09:f7:ad:e2:5e: cf:81:7a:df:8e:eb:29:89:b1:d2:8b:f2:e0:3b:94: d0:f7:38:65:40:92:61:b7:bd:c3:78:7c:1b:29:0a: 9f:ad:d0:d0:31:b2:f4:0d:70:90:92:e1:95:22:27: 0c:7c:02:4c:22:7e:7b:4d:aa:cf:b1:33:73:f6:13: 60:66:fa:42:e3:00:20:cd:fd:ae:69:8b:06:4a:d5: bb:09:b7:c5:e5:a1:d7:73:2d:17:ec:82:c4:53:91: cd:21:89:6b:6c:66:2f:c4:fc:1f:36:07:51:70:ec: a6:e1:3a:09:bc:c2:41:e9:18:ed:41:08:c4:a5:2c: e9:28:a4:02:49:3b:8a:0e:f7:a4:90:3c:6c:5c:37: e2:91:80:28:13:9c:41:29:0c:fd:00:9a:cb:66:63: 46:5c:43:1c:16:e2:a9:73:ee:2f:ae:dc:0c:3a:78: 5e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B9:00:2B:C9:17:71:46:63:C0:2E:6D:44:F2:DF:35:4C:87:4F:07 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/5LkAK8kXcUZjwC5tRPLfNUyHTwc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.175.0/24 Signature Algorithm: sha256WithRSAEncryption 73:24:d4:49:2c:18:8a:5f:52:d7:8c:d1:7a:61:c0:ee:16:04: 9f:6b:f4:30:35:6d:ea:47:26:89:a7:0a:a0:a5:23:d4:08:44: 59:8d:62:bf:3d:f4:70:20:69:17:2e:c6:e9:f2:f3:a6:39:98: 18:34:15:76:ab:70:3b:87:a1:13:07:18:61:ac:77:eb:b2:28: 61:51:f4:b0:d6:90:03:f6:5b:c4:88:13:f2:31:f1:bc:1d:cb: 9f:44:b2:10:06:ff:16:d4:db:f0:b5:71:54:8a:52:25:2c:d0: 3f:46:f6:20:24:75:5b:10:1e:bb:a5:69:ab:17:32:ad:26:f0: 82:9d:3d:68:75:4d:9f:95:08:4a:1e:5b:3e:5d:68:cd:c9:8f: e6:a1:d4:65:cf:c1:cd:cd:5d:e4:49:f6:ae:ec:3f:cd:a3:4a: d9:4c:ca:e4:e2:a5:d6:53:f2:3f:0b:51:ab:bd:4f:fb:8d:a0: 0e:bf:23:df:24:fa:c7:c6:64:ef:35:85:06:75:ed:8e:b4:2a: 4d:7c:fc:2f:7b:b9:45:07:b5:3b:11:a5:07:a3:0f:0f:f6:3d: 6c:25:ce:e6:72:dc:48:3c:20:0a:c0:99:b5:12:50:ed:67:59: 66:fd:b2:86:7c:74:b7:e9:c1:f9:1b:a7:b6:9c:60:a5:e7:4d: 58:ec:4a:7f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEjwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU0QjkwMDJCQzkxNzcx NDY2M0MwMkU2RDQ0RjJERjM1NEM4NzRGMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0dfWscMsWTvxzmNAmt/tmZbQaApKny/UcOThDx9gdpzwLmj1O seZEin3qVOUAN+rgSmC86Q1q+HMpeV4EKf/FNh2acPXomYL4oGs20M5aGGRqvn8J 963iXs+Bet+O6ymJsdKL8uA7lND3OGVAkmG3vcN4fBspCp+t0NAxsvQNcJCS4ZUi Jwx8AkwifntNqs+xM3P2E2Bm+kLjACDN/a5piwZK1bsJt8XloddzLRfsgsRTkc0h iWtsZi/E/B82B1Fw7KbhOgm8wkHpGO1BCMSlLOkopAJJO4oO96SQPGxcN+KRgCgT nEEpDP0AmstmY0ZcQxwW4qlz7i+u3Aw6eF6vAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU5LkAK8kXcUZjwC5tRPLfNUyHTwcwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvNUxrQUs4a1hjVVpqd0M1dFJQTGZO VXlIVHdjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHE9rzAN BgkqhkiG9w0BAQsFAAOCAQEAcyTUSSwYil9S14zRemHA7hYEn2v0MDVt6kcmiacK oKUj1AhEWY1ivz30cCBpFy7G6fLzpjmYGDQVdqtwO4ehEwcYYax367IoYVH0sNaQ A/ZbxIgT8jHxvB3Ln0SyEAb/FtTb8LVxVIpSJSzQP0b2ICR1WxAeu6VpqxcyrSbw gp09aHVNn5UISh5bPl1ozcmP5qHUZc/Bzc1d5En2ruw/zaNK2UzK5OKl1lPyPwtR q71P+42gDr8j3yT6x8Zk7zWFBnXtjrQqTXz8L3u5RQe1OxGlB6MPD/Y9bCXO5nLc SDwgCsCZtRJQ7WdZZv2yhnx0t+nB+RuntpxgpedNWOxKfw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:22:29 2025 by rpki-client