$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Yfoqx7C1iJm-Ts2hv_vxg4zMixE.roa File: Yfoqx7C1iJm-Ts2hv_vxg4zMixE.roa (raw, json) Hash identifier: RYe9Kte2AvoazWJzu66dicu9dUZpCjhxH8MlnECj53A= Subject key identifier: 61:FA:2A:C7:B0:B5:88:99:BE:4E:CD:A1:BF:FB:F1:83:8C:CC:8B:11 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1241 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Yfoqx7C1iJm-Ts2hv_vxg4zMixE.roa Signing time: Fri 22 Aug 2025 08:49:09 +0000 ROA not before: Fri 22 Aug 2025 08:49:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 182.155.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4673 (0x1241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=61FA2AC7B0B58899BE4ECDA1BFFBF1838CCC8B11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4d:ee:58:f4:f6:cd:a4:ba:85:32:45:5a:54: 8a:9b:78:38:4d:d4:12:fc:cb:51:aa:4e:36:d0:1b: a5:1c:29:87:f9:f6:52:71:73:1e:57:04:25:b0:97: 2a:b8:95:56:ea:1d:23:87:18:15:0a:42:7a:2d:36: ba:44:bc:be:f5:ae:1d:76:61:65:b6:91:39:d2:ec: 07:c0:2e:9b:6e:fb:d4:92:1f:bd:9e:0f:24:bd:71: a4:3b:26:69:18:c9:c5:7a:75:a0:99:36:b6:a4:00: d6:bd:be:0b:2f:3a:ec:2d:f1:38:56:3f:55:75:a9: 9e:59:0e:ff:be:79:0a:21:9f:f5:a9:82:5f:51:be: 0c:09:27:38:0d:b9:3d:45:88:97:a7:a9:38:73:df: 83:a9:4c:4c:f0:fb:63:14:6c:dd:1b:87:9e:6d:62: 13:10:a9:03:03:aa:cb:f6:e7:f7:3d:9d:07:90:70: 2f:71:1f:f9:b1:97:66:09:42:72:e5:7e:36:96:f1: 08:c8:2c:dc:2e:3c:01:3d:f3:1d:88:3d:b0:a5:e2: 6c:45:7d:5d:83:c4:23:9f:16:eb:05:f0:96:4f:79: 4d:90:28:c7:6b:99:72:cf:b2:6f:c4:3b:7a:62:01: d6:63:70:f5:7d:fb:36:85:4d:25:8c:17:71:38:33: 4b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:FA:2A:C7:B0:B5:88:99:BE:4E:CD:A1:BF:FB:F1:83:8C:CC:8B:11 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Yfoqx7C1iJm-Ts2hv_vxg4zMixE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.64.0/19 Signature Algorithm: sha256WithRSAEncryption 10:90:cb:df:03:45:13:4b:e0:25:50:66:42:18:b4:99:3e:ac: 20:db:83:17:2a:8a:22:47:b8:4d:30:9d:3a:3d:d4:e5:c1:e1: 8a:cb:68:a8:25:9b:17:ee:ae:af:90:5b:eb:69:04:b6:de:38: b1:d0:a3:8f:e1:51:c1:94:7a:5e:e0:51:c9:11:c7:b5:7a:1e: 79:84:b8:a1:29:99:24:52:8f:6c:8e:ce:0e:b3:b0:d8:ef:d5: 29:64:2e:f6:67:56:c8:dc:88:c0:3e:a8:59:b3:dc:94:21:c0: f0:ab:40:43:38:4a:35:6d:f9:50:e7:6a:e5:7c:c4:23:ae:9d: 16:fb:9f:aa:5a:20:e2:8f:6b:b1:f5:e6:fd:06:25:a2:d0:14: 57:ba:53:38:69:05:08:90:48:b9:a7:bd:24:f8:83:92:9f:68: 15:fb:b5:fd:d2:28:ca:8d:26:e5:46:86:b2:39:82:55:6e:9d: ce:08:ff:39:d0:5f:8c:01:e3:e2:1f:97:2f:f2:ea:51:2d:7f: 10:14:63:4f:47:e3:da:05:5b:d3:5f:d4:6b:34:be:3c:67:fb: f9:ee:f5:cc:89:7b:6a:f6:dc:d9:bf:ab:f5:00:35:75:3d:6f: 42:ee:23:91:22:85:f3:e7:66:e5:39:22:b8:a1:2e:21:4f:72: e6:ed:ea:22 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYxRkEyQUM3QjBCNTg4 OTlCRTRFQ0RBMUJGRkJGMTgzOENDQzhCMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0Te5Y9PbNpLqFMkVaVIqbeDhN1BL8y1GqTjbQG6UcKYf59lJx cx5XBCWwlyq4lVbqHSOHGBUKQnotNrpEvL71rh12YWW2kTnS7AfALptu+9SSH72e DyS9caQ7JmkYycV6daCZNrakANa9vgsvOuwt8ThWP1V1qZ5ZDv++eQohn/Wpgl9R vgwJJzgNuT1FiJenqThz34OpTEzw+2MUbN0bh55tYhMQqQMDqsv25/c9nQeQcC9x H/mxl2YJQnLlfjaW8QjILNwuPAE98x2IPbCl4mxFfV2DxCOfFusF8JZPeU2QKMdr mXLPsm/EO3piAdZjcPV9+zaFTSWMF3E4M0u7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUYfoqx7C1iJm+Ts2hv/vxg4zMixEwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvWWZvcXg3QzFpSm0tVHMyaHZfdnhn NHpNaXhFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabQDAN BgkqhkiG9w0BAQsFAAOCAQEAEJDL3wNFE0vgJVBmQhi0mT6sINuDFyqKIke4TTCd Oj3U5cHhistoqCWbF+6ur5Bb62kEtt44sdCjj+FRwZR6XuBRyRHHtXoeeYS4oSmZ JFKPbI7ODrOw2O/VKWQu9mdWyNyIwD6oWbPclCHA8KtAQzhKNW35UOdq5XzEI66d Fvufqlog4o9rsfXm/QYlotAUV7pTOGkFCJBIuae9JPiDkp9oFfu1/dIoyo0m5UaG sjmCVW6dzgj/OdBfjAHj4h+XL/LqUS1/EBRjT0fj2gVb01/UazS+PGf7+e71zIl7 avbc2b+r9QA1dT1vQu4jkSKF8+dm5TkiuKEuIU9y5u3qIg== -----END CERTIFICATE-----Generated at Sun Aug 24 09:22:19 2025 by rpki-client