$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Kr53ajsWhEJNibFh05l9SbUMClc.roa File: Kr53ajsWhEJNibFh05l9SbUMClc.roa (raw, json) Hash identifier: MgTKWWSXYx5oPmg+Du7it34EdeUJWlduNF5dGBnObgg= Subject key identifier: 2A:BE:77:6A:3B:16:84:42:4D:89:B1:61:D3:99:7D:49:B5:0C:0A:57 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1287 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Kr53ajsWhEJNibFh05l9SbUMClc.roa Signing time: Fri 22 Aug 2025 08:49:26 +0000 ROA not before: Fri 22 Aug 2025 08:49:26 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 210.209.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4743 (0x1287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:26 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2ABE776A3B1684424D89B161D3997D49B50C0A57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d6:f9:16:bf:08:5b:2b:41:2e:3b:c7:38:58: 34:06:54:4d:f9:c6:4a:bb:93:b5:c7:57:8f:7e:42: e0:dc:75:2c:9e:82:38:b6:7f:98:9e:26:eb:4e:85: e2:75:06:2e:3a:27:5e:8a:8f:7f:53:e3:fc:1f:07: 9b:61:7f:80:63:c5:25:b3:02:0c:23:c9:2e:05:76: 44:03:1b:71:35:98:fb:06:cf:17:f5:6c:6b:f5:c9: 98:f0:d0:40:93:89:f0:54:fe:66:b1:69:86:ca:7d: 61:0e:5b:35:5e:9a:01:37:5c:6b:d7:a9:fa:40:82: 8b:67:8f:4a:d3:48:99:69:ea:55:0b:8c:39:ce:d7: 2c:ca:5e:57:51:03:29:f1:cb:2f:1e:5c:f4:dc:98: 99:65:29:fc:83:4a:53:1c:bc:49:9e:75:fa:b3:8c: e8:bf:27:38:25:ad:d8:eb:80:d3:4a:28:58:a0:6c: 8e:e0:0e:fe:92:45:4a:07:32:e5:75:d2:c2:2f:44: 53:00:87:6b:4c:01:80:19:19:f3:d2:47:79:e7:94: 23:ea:73:c3:6e:14:da:f2:a5:cf:c5:88:a5:ef:54: ab:f1:e5:c7:4a:ef:c6:87:d2:8e:f0:50:ff:60:cf: 32:af:1c:83:41:a0:e7:31:78:63:c9:31:b4:5a:cb: b4:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:BE:77:6A:3B:16:84:42:4D:89:B1:61:D3:99:7D:49:B5:0C:0A:57 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Kr53ajsWhEJNibFh05l9SbUMClc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.209.192.0/18 Signature Algorithm: sha256WithRSAEncryption 7b:7b:c4:77:a1:ea:b2:60:bd:cd:8f:7f:f5:11:50:ef:db:e5: 22:03:a0:8c:93:ec:e6:3c:98:a5:92:6d:e2:59:f2:6e:b7:04: 7a:0b:23:47:28:bf:f4:01:d7:22:6f:cb:c1:ea:6c:5f:ac:11: 71:76:1f:79:87:11:87:8c:cb:f6:82:25:2e:3b:b0:57:41:56: 25:16:60:d4:cb:71:36:4d:f2:dc:6a:72:c9:07:7d:75:b8:a6: 70:22:67:7a:a8:da:a9:b8:32:33:2a:d1:49:b7:84:3c:62:88: 0a:a5:08:ac:41:93:74:24:48:0f:4d:14:e0:67:3a:6d:1d:6e: 53:53:32:6c:63:87:9a:28:2c:2a:ea:a4:93:c0:20:8b:58:2b: 36:15:3e:51:80:6c:1f:c8:85:56:82:e3:f7:f1:21:09:d2:e8: dd:21:6a:bd:9e:dd:26:e6:5c:7c:53:f8:73:83:fb:11:61:9a: ae:bd:ba:16:56:48:45:17:98:97:2d:90:d9:e4:90:7e:36:9f: 04:fe:6d:b5:ff:9c:de:3f:b0:f2:f3:31:37:ad:dd:81:0b:ef: 88:2f:58:ed:8a:80:76:8a:ba:5e:3e:d2:54:4c:81:98:57:b9: 17:e9:78:e0:54:9d:b4:01:ab:86:3a:4f:a8:5b:ff:65:61:15: 1a:a7:cc:f6 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJBQkU3NzZBM0IxNjg0 NDI0RDg5QjE2MUQzOTk3RDQ5QjUwQzBBNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb1vkWvwhbK0EuO8c4WDQGVE35xkq7k7XHV49+QuDcdSyegji2 f5ieJutOheJ1Bi46J16Kj39T4/wfB5thf4BjxSWzAgwjyS4FdkQDG3E1mPsGzxf1 bGv1yZjw0ECTifBU/maxaYbKfWEOWzVemgE3XGvXqfpAgotnj0rTSJlp6lULjDnO 1yzKXldRAynxyy8eXPTcmJllKfyDSlMcvEmedfqzjOi/JzglrdjrgNNKKFigbI7g Dv6SRUoHMuV10sIvRFMAh2tMAYAZGfPSR3nnlCPqc8NuFNrypc/FiKXvVKvx5cdK 78aH0o7wUP9gzzKvHINBoOcxeGPJMbRay7RDAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUKr53ajsWhEJNibFh05l9SbUMClcwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvS3I1M2Fqc1doRUpOaWJGaDA1bDlT YlVNQ2xjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLRwDAN BgkqhkiG9w0BAQsFAAOCAQEAe3vEd6HqsmC9zY9/9RFQ79vlIgOgjJPs5jyYpZJt 4lnybrcEegsjRyi/9AHXIm/LwepsX6wRcXYfeYcRh4zL9oIlLjuwV0FWJRZg1Mtx Nk3y3GpyyQd9dbimcCJneqjaqbgyMyrRSbeEPGKICqUIrEGTdCRID00U4Gc6bR1u U1MybGOHmigsKuqkk8Agi1grNhU+UYBsH8iFVoLj9/EhCdLo3SFqvZ7dJuZcfFP4 c4P7EWGarr26FlZIRReYly2Q2eSQfjafBP5ttf+c3j+w8vMxN63dgQvviC9Y7YqA doq6Xj7SVEyBmFe5F+l44FSdtAGrhjpPqFv/ZWEVGqfM9g== -----END CERTIFICATE-----Generated at Sun Aug 24 09:22:23 2025 by rpki-client