$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/BL5Sy2TetdjprTbowLAjjaMCGUw.roa File: BL5Sy2TetdjprTbowLAjjaMCGUw.roa (raw, json) Hash identifier: Jp2mPXQr8SvImLUJKo3et9RSCE431heGxCObs71t1ZM= Subject key identifier: 04:BE:52:CB:64:DE:B5:D8:E9:AD:36:E8:C0:B0:23:8D:A3:02:19:4C Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 124D Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/BL5Sy2TetdjprTbowLAjjaMCGUw.roa Signing time: Fri 22 Aug 2025 08:49:11 +0000 ROA not before: Fri 22 Aug 2025 08:49:11 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 203.222.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4685 (0x124d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:11 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=04BE52CB64DEB5D8E9AD36E8C0B0238DA302194C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:10:a2:a0:6c:5d:e5:87:11:73:96:bb:38:6c: 04:74:e9:2e:35:da:36:d3:cf:2b:d0:f2:bd:19:f6: 84:97:ec:b0:bf:70:3d:af:6b:1c:b3:f7:d8:88:89: 49:0a:ae:1b:42:ad:d4:a2:c3:48:2d:23:1f:2a:d2: ff:c5:49:10:0e:84:1d:49:9d:1a:b2:2b:b0:58:1b: f4:b4:bd:6a:40:fd:fe:94:3d:b8:12:b1:b0:65:75: bc:03:3f:6c:8e:4c:20:69:04:90:b8:e1:18:35:48: fd:59:fc:2b:60:88:c0:06:21:6b:0f:df:53:fe:2d: b7:c0:60:40:d3:ad:88:a2:e2:00:1e:7b:9b:04:41: 4a:24:3b:c3:31:e2:17:10:51:99:a7:17:27:95:4d: 2c:a6:3b:c9:42:bb:3c:26:aa:bf:ee:8a:0a:ef:aa: ee:01:68:3c:2a:f8:3b:e2:59:3b:28:d8:33:10:1c: cc:34:13:37:7e:11:15:65:8d:5f:df:65:21:6d:c9: a0:7a:a3:af:3e:49:0e:00:2b:84:e3:6f:ae:b1:2b: f1:bc:e6:27:2a:b5:04:db:e6:04:7e:ea:53:09:32: c4:66:06:78:14:7a:dd:4b:42:f2:d2:60:a2:ca:c8: 68:aa:22:a4:8c:ac:16:e5:b8:f6:c7:a2:e2:58:1a: d3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BE:52:CB:64:DE:B5:D8:E9:AD:36:E8:C0:B0:23:8D:A3:02:19:4C X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/BL5Sy2TetdjprTbowLAjjaMCGUw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.24.0/22 Signature Algorithm: sha256WithRSAEncryption 41:c9:2c:a5:fc:eb:a5:17:82:d4:e7:2a:38:0f:08:b8:11:c9: 70:24:5d:6e:9d:38:b4:64:d8:66:ed:16:9e:8a:d6:37:f9:87: 87:d4:33:fd:f5:31:59:6d:db:b6:7d:e1:c4:d4:b6:73:24:15: d7:c4:35:55:c4:a1:5d:c3:c5:2d:de:a1:40:e8:90:4c:a6:ad: 27:77:77:01:38:36:c2:dd:99:2a:0d:1a:99:86:78:42:d4:54: a1:01:ce:a3:1f:b5:16:ed:38:fc:92:27:b5:d3:25:ab:3f:ca: 28:92:29:aa:5f:3a:4e:8d:30:8d:e8:bf:49:8e:04:d5:b9:75: 2a:4f:b5:0a:86:73:3e:ad:f7:51:61:cb:ba:ee:b8:c7:67:9b: ff:af:0f:0a:2a:da:e8:33:6f:ca:24:2c:43:95:f9:99:5b:62: 49:e7:35:68:b7:2c:42:ab:5c:d3:91:56:f3:01:cb:26:29:db: 32:26:1d:d3:83:97:d1:3f:05:df:00:8a:61:9f:43:70:82:73: 1f:80:0a:9a:fb:f0:b6:d8:e8:ef:0a:74:f6:6e:2d:af:ff:a0: 44:01:2e:f9:38:c0:17:a5:8b:81:01:7d:d9:f1:90:55:ab:66: 2e:85:55:1f:35:7d:db:cc:e3:9e:67:e0:d7:ec:b6:7e:43:fe: 63:aa:2d:8d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEk0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA0QkU1MkNCNjRERUI1 RDhFOUFEMzZFOEMwQjAyMzhEQTMwMjE5NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDEKKgbF3lhxFzlrs4bAR06S412jbTzyvQ8r0Z9oSX7LC/cD2v axyz99iIiUkKrhtCrdSiw0gtIx8q0v/FSRAOhB1JnRqyK7BYG/S0vWpA/f6UPbgS sbBldbwDP2yOTCBpBJC44Rg1SP1Z/CtgiMAGIWsP31P+LbfAYEDTrYii4gAee5sE QUokO8Mx4hcQUZmnFyeVTSymO8lCuzwmqr/uigrvqu4BaDwq+DviWTso2DMQHMw0 Ezd+ERVljV/fZSFtyaB6o68+SQ4AK4Tjb66xK/G85icqtQTb5gR+6lMJMsRmBngU et1LQvLSYKLKyGiqIqSMrBbluPbHouJYGtPRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUBL5Sy2TetdjprTbowLAjjaMCGUwwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvQkw1U3kyVGV0ZGpwclRib3dMQWpq YU1DR1V3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsveGDAN BgkqhkiG9w0BAQsFAAOCAQEAQckspfzrpReC1OcqOA8IuBHJcCRdbp04tGTYZu0W norWN/mHh9Qz/fUxWW3btn3hxNS2cyQV18Q1VcShXcPFLd6hQOiQTKatJ3d3ATg2 wt2ZKg0amYZ4QtRUoQHOox+1Fu04/JIntdMlqz/KKJIpql86To0wjei/SY4E1bl1 Kk+1CoZzPq33UWHLuu64x2eb/68PCira6DNvyiQsQ5X5mVtiSec1aLcsQqtc05FW 8wHLJinbMiYd04OX0T8F3wCKYZ9DcIJzH4AKmvvwttjo7wp09m4tr/+gRAEu+TjA F6WLgQF92fGQVatmLoVVHzV928zjnmfg1+y2fkP+Y6otjQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:24 2025 by rpki-client