$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/M3HuMrbn5AN-x04_V2eT6OOIs4s.roa File: M3HuMrbn5AN-x04_V2eT6OOIs4s.roa (raw, json) Hash identifier: 72o3sMeo/9PYVmN0NTFnDuvhMa6E3VCrhRF+YSQA4Eg= Subject key identifier: 33:71:EE:32:B6:E7:E4:03:7E:C7:4E:3F:57:67:93:E8:E3:88:B3:8B Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 122F Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/M3HuMrbn5AN-x04_V2eT6OOIs4s.roa Signing time: Fri 22 Aug 2025 08:49:05 +0000 ROA not before: Fri 22 Aug 2025 08:49:05 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 121.254.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4655 (0x122f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3371EE32B6E7E4037EC74E3F576793E8E388B38B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1e:b8:98:7f:38:77:d5:bb:cd:d3:6c:16:7a: 11:0c:da:78:e2:6f:56:3d:c5:fd:b0:50:ad:f6:b2: 78:10:ef:49:64:79:fc:36:1e:68:78:b3:c7:f8:1a: 29:85:08:9a:88:9d:78:3b:3c:5c:63:72:02:fc:65: 8f:c7:80:a8:88:45:0c:0b:04:20:36:63:80:79:54: fe:cf:5e:02:f7:d8:7f:b4:28:71:07:3d:72:74:8d: fa:80:1f:cb:0a:5e:6b:61:7e:72:62:5f:b8:2a:40: 5c:f4:30:97:23:87:52:00:c5:d9:a2:93:0c:9c:68: 55:25:b5:64:09:73:c6:3a:08:ba:66:55:12:d5:37: 08:70:50:b4:63:8c:5c:4d:d8:3c:54:74:dd:35:0b: c5:4b:03:1f:cd:06:0b:03:e3:ee:20:76:5f:5c:d4: 92:e8:1c:39:e5:1d:00:67:03:9e:87:91:bf:0f:98: 5d:f5:96:1f:e8:87:ed:6c:0f:36:f2:89:8f:f2:08: d2:80:cb:08:89:6b:cd:ec:c1:e5:5a:03:82:c9:2a: c0:1f:25:99:15:0d:b0:da:8d:a9:aa:2d:58:f3:2f: 83:6b:15:05:25:c6:27:80:ad:b8:bf:b9:6d:da:47: 73:6b:bc:73:14:23:2d:3d:a9:88:7b:d6:79:41:da: 6c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:71:EE:32:B6:E7:E4:03:7E:C7:4E:3F:57:67:93:E8:E3:88:B3:8B X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/M3HuMrbn5AN-x04_V2eT6OOIs4s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.254.64.0/19 Signature Algorithm: sha256WithRSAEncryption 3b:ed:d3:aa:6a:f2:c1:09:80:cb:d5:40:26:3d:84:04:ce:86: 78:cb:ec:83:63:21:3e:37:80:d4:c9:10:e8:c2:f0:47:9e:22: 5e:2d:1b:c7:ff:4b:a1:63:99:7f:e4:a2:c6:e2:3f:6e:97:09: 5e:dc:4b:35:8c:73:dc:bc:94:d6:c1:4b:82:40:27:a3:67:a7: db:dc:6d:3a:c8:c9:0b:0c:14:56:2a:91:52:ea:e3:7d:9a:81: b0:1a:33:54:b7:ac:ae:ea:98:06:bd:ed:6f:03:7f:b9:5d:42: da:a0:eb:87:39:3f:78:92:14:5d:97:81:1c:73:2d:99:cb:58: 71:a5:f9:dc:96:58:57:76:3f:92:a1:dd:a7:90:ea:5e:03:97: fb:bb:29:03:4b:ef:fc:40:80:12:4f:45:32:3c:f8:48:7a:f3: d9:3a:a3:0a:d1:90:58:a2:76:e2:b8:1d:15:44:2b:57:4d:0c: 5c:c8:6a:ac:1c:5c:75:a0:7c:aa:8d:13:c9:e6:86:fa:6d:fa: 02:ea:35:a3:1b:dd:23:a2:af:5f:52:39:3f:a7:2f:be:73:d1: ca:b1:6f:c6:60:2e:7b:84:23:89:4c:0f:73:33:84:03:33:0d: 48:7d:9e:d8:d8:a7:6d:8c:f1:ba:85:d4:6a:aa:71:2f:46:27: 81:b2:0a:6d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEi8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMzNzFFRTMyQjZFN0U0 MDM3RUM3NEUzRjU3Njc5M0U4RTM4OEIzOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfHriYfzh31bvN02wWehEM2njib1Y9xf2wUK32sngQ70lkefw2 Hmh4s8f4GimFCJqInXg7PFxjcgL8ZY/HgKiIRQwLBCA2Y4B5VP7PXgL32H+0KHEH PXJ0jfqAH8sKXmthfnJiX7gqQFz0MJcjh1IAxdmikwycaFUltWQJc8Y6CLpmVRLV NwhwULRjjFxN2DxUdN01C8VLAx/NBgsD4+4gdl9c1JLoHDnlHQBnA56Hkb8PmF31 lh/oh+1sDzbyiY/yCNKAywiJa83sweVaA4LJKsAfJZkVDbDajamqLVjzL4NrFQUl xieArbi/uW3aR3NrvHMUIy09qYh71nlB2myJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUM3HuMrbn5AN+x04/V2eT6OOIs4swHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvTTNIdU1yYm41QU4teDA0X1YyZVQ2 T09JczRzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXn+QDAN BgkqhkiG9w0BAQsFAAOCAQEAO+3TqmrywQmAy9VAJj2EBM6GeMvsg2MhPjeA1MkQ 6MLwR54iXi0bx/9LoWOZf+SixuI/bpcJXtxLNYxz3LyU1sFLgkAno2en29xtOsjJ CwwUViqRUurjfZqBsBozVLesruqYBr3tbwN/uV1C2qDrhzk/eJIUXZeBHHMtmctY caX53JZYV3Y/kqHdp5DqXgOX+7spA0vv/ECAEk9FMjz4SHrz2TqjCtGQWKJ24rgd FUQrV00MXMhqrBxcdaB8qo0TyeaG+m36Auo1oxvdI6KvX1I5P6cvvnPRyrFvxmAu e4QjiUwPczOEAzMNSH2e2NinbYzxuoXUaqpxL0YngbIKbQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:30 2025 by rpki-client