$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/bMkgJoQvm3ISuyKRBsAYzB2u-eI.roa File: bMkgJoQvm3ISuyKRBsAYzB2u-eI.roa (raw, json) Hash identifier: OVsWRRO+jTxEBt9WG65qNUX/2c+J3NvKnMjpyrmfdUs= Subject key identifier: 6C:C9:20:26:84:2F:9B:72:12:BB:22:91:06:C0:18:CC:1D:AE:F9:E2 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 125B Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/bMkgJoQvm3ISuyKRBsAYzB2u-eI.roa Signing time: Fri 22 Aug 2025 08:49:15 +0000 ROA not before: Fri 22 Aug 2025 08:49:15 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 38851 IP address blocks: 119.15.216.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4699 (0x125b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:15 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6CC92026842F9B7212BB229106C018CC1DAEF9E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0c:6c:d7:75:38:73:46:08:07:e3:a2:90:2a: b2:93:98:5d:b8:68:74:b7:b9:78:87:48:5e:ab:f4: 64:8a:0b:70:65:15:21:d5:1f:6c:69:3c:1c:76:36: 6c:d9:6d:f8:42:1d:19:2c:d0:b1:50:13:2e:a9:37: de:5a:fe:9e:80:1a:5c:54:d9:0f:2d:64:06:71:ce: e7:ed:f5:85:26:42:ec:2b:be:ca:55:b3:93:81:2d: 0b:0c:93:13:d3:d5:f0:23:2c:7b:c4:9f:ff:9d:fb: 4a:29:d4:0d:e9:00:05:c2:2d:75:69:b0:30:78:b2: 5a:95:f2:2a:ab:53:3e:12:43:a6:a8:7e:4d:6d:92: 49:f4:26:32:af:fa:e3:4e:66:4e:03:65:24:d2:6b: 47:0b:7b:74:b0:32:9b:61:7a:f6:1f:a9:36:68:f0: 48:95:98:35:c6:0b:f0:34:c6:a3:7c:af:ab:72:90: 67:e1:a3:9e:a6:6d:d6:cf:ae:91:a5:5a:7b:6e:d9: bb:cc:e3:c0:d1:a6:78:ab:eb:04:12:31:b6:e5:8b: ff:9f:03:91:a3:c4:e4:00:6d:59:d1:01:68:de:15: 99:34:28:09:09:3f:98:11:a3:40:1f:e7:b4:39:5d: 25:42:01:86:b3:e1:82:37:18:50:f2:f7:3e:d1:cb: 57:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:C9:20:26:84:2F:9B:72:12:BB:22:91:06:C0:18:CC:1D:AE:F9:E2 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/bMkgJoQvm3ISuyKRBsAYzB2u-eI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.15.216.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:8b:b4:bf:56:8b:df:06:9f:8d:c7:e1:36:04:42:fe:bf:0c: d6:0a:db:aa:89:e6:c6:a1:a9:f3:27:8b:d4:7a:33:38:4f:c2: 7a:83:34:06:66:0f:2e:e1:5b:5a:a1:57:42:6b:6d:90:2f:ad: 86:79:e9:ce:d3:bd:b3:03:32:61:cc:a2:37:bf:2e:f0:14:76: f8:a3:12:5f:41:40:98:1c:ff:da:f1:7b:ac:8e:13:dd:1b:19: d1:7e:93:14:e6:2f:a5:46:9c:64:0b:20:f6:ef:34:d6:65:33: 45:a3:6a:e8:db:de:a0:e7:b3:b2:45:26:3d:5b:72:88:a2:70: fb:47:39:fc:f2:c4:fb:89:c8:1e:1f:73:a9:20:05:c4:fc:5d: cc:e2:5f:45:81:d1:fa:45:20:00:1b:2b:97:87:ec:39:87:ff: 50:7b:af:58:9d:62:2b:80:ad:5a:2c:57:74:23:67:d2:d2:1e: 5b:1c:2f:61:87:dd:69:11:61:21:3b:54:c0:aa:db:53:7d:e6: e2:82:e3:50:64:a9:04:6d:3a:c1:84:5b:d9:f7:03:7d:77:8e: 18:3f:49:21:16:13:8e:4d:3d:67:f9:51:c9:b5:7d:8c:96:cc: dd:18:1e:7d:d4:50:05:03:88:21:2b:0b:90:b4:80:50:7e:12: 24:7f:ea:7f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICElswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZDQzkyMDI2ODQyRjlC NzIxMkJCMjI5MTA2QzAxOENDMURBRUY5RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqDGzXdThzRggH46KQKrKTmF24aHS3uXiHSF6r9GSKC3BlFSHV H2xpPBx2NmzZbfhCHRks0LFQEy6pN95a/p6AGlxU2Q8tZAZxzuft9YUmQuwrvspV s5OBLQsMkxPT1fAjLHvEn/+d+0op1A3pAAXCLXVpsDB4slqV8iqrUz4SQ6aofk1t kkn0JjKv+uNOZk4DZSTSa0cLe3SwMpthevYfqTZo8EiVmDXGC/A0xqN8r6tykGfh o56mbdbPrpGlWntu2bvM48DRpnir6wQSMbbli/+fA5GjxOQAbVnRAWjeFZk0KAkJ P5gRo0Af57Q5XSVCAYaz4YI3GFDy9z7Ry1dfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUbMkgJoQvm3ISuyKRBsAYzB2u+eIwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvYk1rZ0pvUXZtM0lTdXlLUkJzQVl6 QjJ1LWVJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3cP2DAN BgkqhkiG9w0BAQsFAAOCAQEATYu0v1aL3wafjcfhNgRC/r8M1grbqonmxqGp8yeL 1HozOE/CeoM0BmYPLuFbWqFXQmttkC+thnnpztO9swMyYcyiN78u8BR2+KMSX0FA mBz/2vF7rI4T3RsZ0X6TFOYvpUacZAsg9u801mUzRaNq6NveoOezskUmPVtyiKJw +0c5/PLE+4nIHh9zqSAFxPxdzOJfRYHR+kUgABsrl4fsOYf/UHuvWJ1iK4CtWixX dCNn0tIeWxwvYYfdaRFhITtUwKrbU33m4oLjUGSpBG06wYRb2fcDfXeOGD9JIRYT jk09Z/lRybV9jJbM3RgefdRQBQOIISsLkLSAUH4SJH/qfw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:06:35 2025 by rpki-client