$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/JBe5W5WgzV8pkX2UYVHYTVj6_m0.roa File: JBe5W5WgzV8pkX2UYVHYTVj6_m0.roa (raw, json) Hash identifier: Qj0W4BTttrHvK9foOms1LJDcY9Ct0iRFHQy9uh7PrkA= Subject key identifier: 24:17:B9:5B:95:A0:CD:5F:29:91:7D:94:61:51:D8:4D:58:FA:FE:6D Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1247 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JBe5W5WgzV8pkX2UYVHYTVj6_m0.roa Signing time: Fri 22 Aug 2025 08:49:10 +0000 ROA not before: Fri 22 Aug 2025 08:49:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 113.61.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4679 (0x1247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2417B95B95A0CD5F29917D946151D84D58FAFE6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ca:98:85:4c:cc:19:a0:1d:8a:2d:61:4a:62: b8:c9:57:c5:fd:85:44:ff:72:ea:cd:51:c4:9d:83: 11:a5:58:61:3f:35:1b:d2:49:1a:e0:db:fc:25:b4: de:0d:24:db:84:28:d8:63:f1:f1:56:db:38:fc:b4: 4d:72:91:9c:84:78:62:a6:4b:8f:14:56:4c:0c:1f: ae:c1:5d:bd:c7:45:31:84:a5:13:3b:be:a5:0a:3e: 3d:f3:b3:39:49:51:2c:1f:5c:d1:d7:e1:a0:56:58: 89:6a:4b:f4:bb:bd:a1:b5:b7:03:5f:c4:cc:c6:49: f7:91:6f:b8:b2:56:94:da:a8:75:18:c5:a8:f3:c8: 72:17:92:50:2e:33:e5:4b:e6:08:26:34:72:e7:75: f8:d0:b8:d4:aa:2f:62:a5:1d:21:af:38:41:14:7f: 0d:a8:49:e4:6c:4a:0c:4d:dc:e2:05:32:db:68:d8: f7:44:48:0d:5e:55:e7:b6:4d:06:68:c3:93:c3:73: e6:58:57:33:47:63:14:98:92:ff:19:75:87:02:23: 66:d1:4d:c9:b0:27:cb:da:a1:51:83:3b:35:05:cc: 16:88:39:8a:4a:05:f0:e2:48:68:e2:31:4b:0c:49: 1a:84:7f:f0:55:66:7c:14:fa:a2:70:e5:b3:9f:29: cc:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:17:B9:5B:95:A0:CD:5F:29:91:7D:94:61:51:D8:4D:58:FA:FE:6D X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JBe5W5WgzV8pkX2UYVHYTVj6_m0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.240.0/20 Signature Algorithm: sha256WithRSAEncryption 2b:b2:d6:73:38:78:b2:1f:64:96:64:2c:c2:d7:b3:c0:7d:b9: d9:15:33:5b:72:f0:26:91:3d:f8:66:50:f2:ba:c1:c9:33:d7: 48:c7:d9:59:8d:2f:44:48:ef:74:2a:3a:96:7b:5e:79:1d:cb: 81:a1:f4:b7:3c:3b:7f:e7:96:24:91:cf:ba:52:13:a4:93:51: 02:ee:fe:92:77:21:90:e8:2c:cb:35:cd:d7:5a:8b:bc:fd:41: 36:83:f4:82:83:50:9a:80:5a:0f:97:7a:85:1a:8d:63:d1:b9: 44:1a:b4:9f:09:a1:64:a4:b4:1d:a7:d0:16:67:4d:84:68:7b: 2e:6c:b9:49:bc:c4:2a:55:1e:3f:16:1a:dd:76:36:ef:e6:e7: 50:18:eb:e4:92:14:69:71:ce:cb:57:7d:56:95:cd:ee:11:1c: b8:a7:ec:6a:a6:fe:e8:03:30:e6:37:1f:53:15:af:2f:b7:ad: dd:c6:25:af:4e:37:61:8c:32:92:f7:e8:c5:76:72:7b:a9:5b: 40:3a:50:61:93:4d:91:66:06:d2:1d:78:81:d1:45:82:0a:8e: e5:41:1d:43:e2:e0:27:7a:c1:09:ac:e7:ca:b2:2f:9e:73:09: 5a:bf:87:6e:aa:35:62:0c:73:cc:75:64:3a:16:25:b3:24:52: fe:cd:2f:2d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEkcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI0MTdCOTVCOTVBMENE NUYyOTkxN0Q5NDYxNTFEODRENThGQUZFNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfypiFTMwZoB2KLWFKYrjJV8X9hUT/curNUcSdgxGlWGE/NRvS SRrg2/wltN4NJNuEKNhj8fFW2zj8tE1ykZyEeGKmS48UVkwMH67BXb3HRTGEpRM7 vqUKPj3zszlJUSwfXNHX4aBWWIlqS/S7vaG1twNfxMzGSfeRb7iyVpTaqHUYxajz yHIXklAuM+VL5ggmNHLndfjQuNSqL2KlHSGvOEEUfw2oSeRsSgxN3OIFMtto2PdE SA1eVee2TQZow5PDc+ZYVzNHYxSYkv8ZdYcCI2bRTcmwJ8vaoVGDOzUFzBaIOYpK BfDiSGjiMUsMSRqEf/BVZnwU+qJw5bOfKcxRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUJBe5W5WgzV8pkX2UYVHYTVj6/m0wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvSkJlNVc1V2d6Vjhwa1gyVVlWSFlU Vmo2X20wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHE98DAN BgkqhkiG9w0BAQsFAAOCAQEAK7LWczh4sh9klmQswtezwH252RUzW3LwJpE9+GZQ 8rrByTPXSMfZWY0vREjvdCo6lnteeR3LgaH0tzw7f+eWJJHPulITpJNRAu7+knch kOgsyzXN11qLvP1BNoP0goNQmoBaD5d6hRqNY9G5RBq0nwmhZKS0HafQFmdNhGh7 Lmy5SbzEKlUePxYa3XY27+bnUBjr5JIUaXHOy1d9VpXN7hEcuKfsaqb+6AMw5jcf UxWvL7et3cYlr043YYwykvfoxXZye6lbQDpQYZNNkWYG0h14gdFFggqO5UEdQ+Lg J3rBCaznyrIvnnMJWr+Hbqo1YgxzzHVkOhYlsyRS/s0vLQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:22:20 2025 by rpki-client