$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/SRjERtuSf5yj5mMd70IsnlEXBhw.roa File: SRjERtuSf5yj5mMd70IsnlEXBhw.roa (raw, json) Hash identifier: qn2IReNXIeqvMQMxhsCYf30o3BFf5HkoP8uYsjFGhPQ= Subject key identifier: 49:18:C4:46:DB:92:7F:9C:A3:E6:63:1D:EF:42:2C:9E:51:17:06:1C Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1286 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/SRjERtuSf5yj5mMd70IsnlEXBhw.roa Signing time: Fri 22 Aug 2025 08:49:25 +0000 ROA not before: Fri 22 Aug 2025 08:49:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 203.222.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4742 (0x1286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4918C446DB927F9CA3E6631DEF422C9E5117061C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a8:a5:47:72:b0:c1:d6:9f:81:5d:f2:9c:e0: dd:7d:e3:db:20:a2:b2:aa:70:30:63:28:a1:ad:cc: 96:96:8c:50:c5:b6:41:06:3a:03:8f:14:da:ba:d9: b3:10:c7:76:8e:ef:0c:ed:a2:f1:1d:ce:88:4b:1f: fe:cc:7e:68:27:eb:bf:86:bd:a9:a1:57:7a:63:2c: 40:e7:7f:c4:65:12:0e:9e:dc:87:ce:a0:71:95:d7: 2f:a6:cf:f6:1d:6c:4e:ec:08:a7:21:a4:41:2f:cc: 5c:c6:c7:76:6b:9e:15:64:18:da:8b:63:84:31:8a: d3:35:13:2a:d6:46:c8:78:99:4c:bd:a6:14:b6:50: 7d:c2:98:69:ce:c7:ec:ff:01:9e:80:e0:61:a1:f9: 6e:9d:a9:4c:cf:9f:3c:4f:23:00:a8:a4:2b:d3:54: 0a:64:4a:9d:4f:db:0e:68:61:52:c9:79:fe:47:be: c5:eb:39:63:61:f3:01:81:b4:b5:34:b1:46:c7:b0: 11:5f:97:01:50:cb:b2:fa:23:a4:6c:1d:66:c5:1b: 07:ff:1a:ac:43:b9:c2:3d:db:21:e5:a5:99:eb:d7: 2e:b2:72:13:53:46:a2:7e:49:e8:86:7c:4d:dc:d0: 0b:74:d4:6d:cc:14:ff:c2:a6:1b:26:86:fa:fd:c8: 3f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:18:C4:46:DB:92:7F:9C:A3:E6:63:1D:EF:42:2C:9E:51:17:06:1C X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/SRjERtuSf5yj5mMd70IsnlEXBhw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.12.0/22 Signature Algorithm: sha256WithRSAEncryption b2:7d:e6:33:da:28:c5:a5:bf:ab:de:28:f7:e8:c7:2c:18:87: 0f:88:01:88:6a:35:ca:bb:09:57:22:95:69:22:04:cd:cf:4f: 22:29:d6:1a:9f:8e:a1:16:94:5a:14:5f:35:d5:b6:ff:9e:7c: 19:b8:2f:b3:0f:8d:72:e9:e5:c0:c8:64:6c:09:23:39:db:4d: 71:24:ab:97:a6:a2:ec:67:cb:95:34:25:df:b2:6b:ef:a5:1c: 07:a2:93:5d:f0:99:b2:22:b5:1c:73:b4:c1:ab:8a:b5:da:ae: e1:22:3b:c9:8b:7c:91:df:b9:14:b0:bd:f4:89:47:4a:a8:60: f6:69:c8:a0:a5:f6:2a:3f:c5:3e:c4:d2:fa:5d:4b:c7:cb:47: bb:0c:b1:2a:89:f6:1f:a3:b0:b3:b2:a7:cf:e2:05:09:cb:b6: 29:47:a8:a2:de:e5:e7:73:15:8d:38:1a:52:b6:61:18:95:61: d0:c0:e4:24:63:92:25:b8:ef:07:f8:42:4e:ef:0c:4d:a5:d8: f3:2f:30:6f:61:32:45:ec:4b:e0:cc:fe:32:a4:b3:82:83:9b: 13:87:80:c4:e2:90:89:3d:43:af:5f:03:4f:9a:95:95:74:cb: 65:ad:17:d9:7c:af:d7:92:34:78:94:14:4b:af:a8:45:8b:db: 28:e5:7e:fe -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ5MThDNDQ2REI5MjdG OUNBM0U2NjMxREVGNDIyQzlFNTExNzA2MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFqKVHcrDB1p+BXfKc4N1949sgorKqcDBjKKGtzJaWjFDFtkEG OgOPFNq62bMQx3aO7wztovEdzohLH/7Mfmgn67+GvamhV3pjLEDnf8RlEg6e3IfO oHGV1y+mz/YdbE7sCKchpEEvzFzGx3ZrnhVkGNqLY4QxitM1EyrWRsh4mUy9phS2 UH3CmGnOx+z/AZ6A4GGh+W6dqUzPnzxPIwCopCvTVApkSp1P2w5oYVLJef5HvsXr OWNh8wGBtLU0sUbHsBFflwFQy7L6I6RsHWbFGwf/GqxDucI92yHlpZnr1y6ychNT RqJ+SeiGfE3c0At01G3MFP/Cphsmhvr9yD/JAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUSRjERtuSf5yj5mMd70IsnlEXBhwwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvU1JqRVJ0dVNmNXlqNW1NZDcwSXNu bEVYQmh3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsveDDAN BgkqhkiG9w0BAQsFAAOCAQEAsn3mM9ooxaW/q94o9+jHLBiHD4gBiGo1yrsJVyKV aSIEzc9PIinWGp+OoRaUWhRfNdW2/558Gbgvsw+NcunlwMhkbAkjOdtNcSSrl6ai 7GfLlTQl37Jr76UcB6KTXfCZsiK1HHO0wauKtdqu4SI7yYt8kd+5FLC99IlHSqhg 9mnIoKX2Kj/FPsTS+l1Lx8tHuwyxKon2H6Ows7Knz+IFCcu2KUeoot7l53MVjTga UrZhGJVh0MDkJGOSJbjvB/hCTu8MTaXY8y8wb2EyRexL4Mz+MqSzgoObE4eAxOKQ iT1Dr18DT5qVlXTLZa0X2Xyv15I0eJQUS6+oRYvbKOV+/g== -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:18 2025 by rpki-client