$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/R5aFJXTkTZIBXUI6dFhmyWQbY8Y.roa File: R5aFJXTkTZIBXUI6dFhmyWQbY8Y.roa (raw, json) Hash identifier: UqZvZJIewf7X6jYgtBnP95gIsjn0+W1Jf38sI8N95jA= Subject key identifier: 47:96:85:25:74:E4:4D:92:01:5D:42:3A:74:58:66:C9:64:1B:63:C6 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1265 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/R5aFJXTkTZIBXUI6dFhmyWQbY8Y.roa Signing time: Fri 22 Aug 2025 08:49:18 +0000 ROA not before: Fri 22 Aug 2025 08:49:18 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 27.96.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4709 (0x1265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4796852574E44D92015D423A745866C9641B63C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:85:79:5f:69:d6:28:79:db:42:4c:3c:ba:ce: 45:a1:4d:66:46:19:38:b4:1e:ca:20:6a:84:1e:82: 73:b8:f0:a4:66:d5:14:24:5e:08:5f:19:55:19:9f: 03:67:c2:18:d1:bb:12:23:4f:8e:dd:99:4c:c5:1e: 8f:63:4a:0a:61:78:74:e1:a1:70:a8:8d:4a:ff:df: 2d:14:94:e3:42:e5:c5:e9:dc:3d:66:f5:2a:96:7f: 15:02:b3:a3:4f:73:50:f5:94:a4:67:6a:87:84:91: 1b:fb:26:a2:62:d4:77:16:88:e2:ad:1a:65:39:69: c8:08:60:60:e3:c0:48:cb:2c:ad:8c:50:9a:14:a1: 3c:06:7d:9e:21:34:4e:2e:02:ea:be:a9:5b:0b:63: b0:cb:f7:c4:38:ca:a3:5f:07:62:34:5b:64:06:78: 1c:bf:59:2f:0a:cb:bd:2f:1f:c9:d3:22:96:bb:40: 2f:3e:cb:39:35:b6:9e:9b:9e:99:c6:38:7f:82:59: 43:14:14:96:70:50:55:0a:eb:6c:fe:d2:37:fb:52: 4b:0b:db:14:a1:cc:09:ba:7e:4d:51:2e:fe:ec:c3: ca:bf:ca:2d:27:d4:3d:e4:d7:73:44:72:40:06:20: 64:36:c3:fb:7e:ee:43:72:ba:f6:c5:eb:5e:08:83: 20:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:96:85:25:74:E4:4D:92:01:5D:42:3A:74:58:66:C9:64:1B:63:C6 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/R5aFJXTkTZIBXUI6dFhmyWQbY8Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.248.0/22 Signature Algorithm: sha256WithRSAEncryption b5:85:be:e0:0d:55:e3:3a:65:6e:85:55:a9:51:69:17:47:0d: be:95:3e:57:b9:30:b5:e8:b6:de:0f:39:8f:39:b9:e2:19:b5: e9:b6:48:62:7f:71:54:cc:c1:03:68:89:cd:e0:1d:87:bf:bb: 2f:0d:5a:03:b5:a7:17:9d:56:40:26:7a:10:8c:9c:7a:90:d9: ca:b3:30:4c:a4:71:b2:1a:73:0d:28:86:4a:9b:38:53:ed:ec: 69:98:b0:51:46:29:45:05:51:bf:15:62:e4:cc:93:95:01:f9: 86:19:1d:05:a5:28:01:1f:7c:4e:10:98:fc:f9:1a:5f:42:98: 87:d2:db:54:a1:9b:3d:fa:10:81:62:cb:d9:f1:64:46:7d:03: 65:b6:ff:cc:24:d6:ca:06:26:a9:b4:fd:9c:d0:2b:3c:e0:47: 6a:ed:ed:6b:2e:5d:aa:40:57:8b:1f:d6:74:53:85:fa:33:8e: db:d4:76:d0:18:be:3c:7b:26:2c:5e:bf:0f:ce:a7:2a:61:dc: f4:76:d5:c0:9f:85:3e:a9:d4:71:48:ed:f3:4c:b0:de:0b:d5: 8d:4e:b2:35:fd:12:b9:b7:35:8a:76:7e:ff:fb:3f:eb:d9:42: 9a:94:39:74:55:8d:c3:9a:a5:65:b7:65:6a:b6:8b:9f:db:1c: 46:5f:6b:a6 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEmUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ3OTY4NTI1NzRFNDRE OTIwMTVENDIzQTc0NTg2NkM5NjQxQjYzQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDohXlfadYoedtCTDy6zkWhTWZGGTi0HsogaoQegnO48KRm1RQk XghfGVUZnwNnwhjRuxIjT47dmUzFHo9jSgpheHThoXCojUr/3y0UlONC5cXp3D1m 9SqWfxUCs6NPc1D1lKRnaoeEkRv7JqJi1HcWiOKtGmU5acgIYGDjwEjLLK2MUJoU oTwGfZ4hNE4uAuq+qVsLY7DL98Q4yqNfB2I0W2QGeBy/WS8Ky70vH8nTIpa7QC8+ yzk1tp6bnpnGOH+CWUMUFJZwUFUK62z+0jf7UksL2xShzAm6fk1RLv7sw8q/yi0n 1D3k13NEckAGIGQ2w/t+7kNyuvbF614IgyAXAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUR5aFJXTkTZIBXUI6dFhmyWQbY8YwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvUjVhRkpYVGtUWklCWFVJNmRGaG15 V1FiWThZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhtg+DAN BgkqhkiG9w0BAQsFAAOCAQEAtYW+4A1V4zplboVVqVFpF0cNvpU+V7kwtei23g85 jzm54hm16bZIYn9xVMzBA2iJzeAdh7+7Lw1aA7WnF51WQCZ6EIycepDZyrMwTKRx shpzDSiGSps4U+3saZiwUUYpRQVRvxVi5MyTlQH5hhkdBaUoAR98ThCY/PkaX0KY h9LbVKGbPfoQgWLL2fFkRn0DZbb/zCTWygYmqbT9nNArPOBHau3tay5dqkBXix/W dFOF+jOO29R20Bi+PHsmLF6/D86nKmHc9HbVwJ+FPqnUcUjt80yw3gvVjU6yNf0S ubc1inZ+//s/69lCmpQ5dFWNw5qlZbdlaraLn9scRl9rpg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:22:20 2025 by rpki-client