$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/aWvufHHIfrzHZn5hUMpKZmD4s8o.roa File: aWvufHHIfrzHZn5hUMpKZmD4s8o.roa (raw, json) Hash identifier: F3NSImyEO6Nem5JO/jvAg/QMxBR6KMsrFAe15rAyb+c= Subject key identifier: 69:6B:EE:7C:71:C8:7E:BC:C7:66:7E:61:50:CA:4A:66:60:F8:B3:CA Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1248 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/aWvufHHIfrzHZn5hUMpKZmD4s8o.roa Signing time: Fri 22 Aug 2025 08:49:10 +0000 ROA not before: Fri 22 Aug 2025 08:49:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 182.155.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4680 (0x1248) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=696BEE7C71C87EBCC7667E6150CA4A6660F8B3CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e5:30:f6:6f:00:6d:c8:f4:c1:7d:db:c2:02: 5b:87:62:e1:69:7e:35:b0:98:5c:9c:9f:a6:fe:19: 5f:5d:f8:7c:89:aa:db:64:f2:1a:96:14:14:04:c0: a9:f0:24:df:78:5f:35:66:81:ae:ce:30:2f:60:31: dd:f3:ec:a2:38:62:79:69:6f:1d:81:dc:9b:8a:31: 4e:f5:cf:26:9c:53:59:25:17:8f:a6:a6:85:59:5d: 78:7b:56:c2:43:b0:9d:b3:4a:60:bc:4f:2e:81:6a: 8f:db:5f:de:69:01:ea:f2:8a:79:d2:76:bd:21:e8: cd:c1:10:c7:a6:48:41:c4:fc:df:c4:a2:88:d6:47: ab:32:4f:7e:4b:44:2e:4e:2c:94:5c:68:eb:1e:47: 21:b3:73:3d:0d:6b:b5:67:4d:ee:94:dd:b7:e2:51: d6:4f:4a:4d:30:71:5a:96:9e:88:7b:7d:cf:ed:fa: 4a:af:4e:cf:96:d1:1e:f4:e5:70:9f:d9:7c:e3:58: c9:42:2c:2d:58:fb:77:b3:4a:32:22:c2:71:a0:2f: 04:b6:61:0c:eb:e5:52:a0:d5:5d:77:36:86:51:8f: f5:b8:26:44:ff:1e:a2:d9:2d:67:d4:db:8d:82:84: 73:20:72:99:06:bb:93:24:b7:7a:82:29:85:fd:12: 2c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6B:EE:7C:71:C8:7E:BC:C7:66:7E:61:50:CA:4A:66:60:F8:B3:CA X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/aWvufHHIfrzHZn5hUMpKZmD4s8o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.128.0/19 Signature Algorithm: sha256WithRSAEncryption 0a:4e:54:a6:af:85:1c:2a:7a:9f:7a:14:8b:c1:de:94:e1:e5: 19:52:4a:fb:3d:5c:ff:3e:74:89:56:17:8b:b0:b3:41:a6:af: b1:b3:d8:75:3f:bc:15:63:60:58:99:08:27:63:64:56:b4:cc: 6e:28:30:68:83:4c:b5:21:98:0e:38:02:99:47:87:25:d5:a9: ef:f2:a1:ac:49:a8:d8:2f:da:0d:ab:1e:be:36:79:9e:c5:b4: 25:f9:ee:74:58:f1:b1:08:bf:79:14:ca:32:72:87:e2:f5:d3: 9f:55:43:91:7e:1d:09:50:4a:ca:4b:46:a2:54:e8:7d:24:a6: e3:e1:c8:15:54:f8:0e:7b:61:c5:fb:ce:54:2f:d3:37:01:41: 42:a9:a9:b2:f3:f1:bc:83:04:16:ff:11:28:5f:e1:fb:d7:37: f0:ad:3e:2b:28:05:5f:92:fb:f3:11:2a:b4:08:fd:9c:8c:2f: f8:e0:01:5f:9b:b1:65:ce:f1:fb:6d:18:54:ed:1f:d9:87:70: 1f:c4:36:11:28:e5:0c:a2:50:27:06:02:1f:dc:da:8a:2c:ae: 82:dc:ce:9c:41:92:bb:c9:cb:0f:62:8d:31:d0:19:7e:69:42: f0:0a:43:e8:a8:b4:9c:06:21:7e:1a:31:cc:5e:ed:01:2d:ac: 7a:e6:35:6b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEkgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY5NkJFRTdDNzFDODdF QkNDNzY2N0U2MTUwQ0E0QTY2NjBGOEIzQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN5TD2bwBtyPTBfdvCAluHYuFpfjWwmFycn6b+GV9d+HyJqttk 8hqWFBQEwKnwJN94XzVmga7OMC9gMd3z7KI4Ynlpbx2B3JuKMU71zyacU1klF4+m poVZXXh7VsJDsJ2zSmC8Ty6Bao/bX95pAeryinnSdr0h6M3BEMemSEHE/N/EoojW R6syT35LRC5OLJRcaOseRyGzcz0Na7VnTe6U3bfiUdZPSk0wcVqWnoh7fc/t+kqv Ts+W0R705XCf2XzjWMlCLC1Y+3ezSjIiwnGgLwS2YQzr5VKg1V13NoZRj/W4JkT/ HqLZLWfU242ChHMgcpkGu5Mkt3qCKYX9EiwLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUaWvufHHIfrzHZn5hUMpKZmD4s8owHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvYVd2dWZISElmcnpIWm41aFVNcEta bUQ0czhvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabgDAN BgkqhkiG9w0BAQsFAAOCAQEACk5Upq+FHCp6n3oUi8HelOHlGVJK+z1c/z50iVYX i7CzQaavsbPYdT+8FWNgWJkIJ2NkVrTMbigwaINMtSGYDjgCmUeHJdWp7/KhrEmo 2C/aDasevjZ5nsW0JfnudFjxsQi/eRTKMnKH4vXTn1VDkX4dCVBKyktGolTofSSm 4+HIFVT4DnthxfvOVC/TNwFBQqmpsvPxvIMEFv8RKF/h+9c38K0+KygFX5L78xEq tAj9nIwv+OABX5uxZc7x+20YVO0f2YdwH8Q2ESjlDKJQJwYCH9zaiiyugtzOnEGS u8nLD2KNMdAZfmlC8ApD6Ki0nAYhfhoxzF7tAS2seuY1aw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:15 2025 by rpki-client