$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/c6ZkmvVu-58E-9HyGRHKJ-l-c6s.roa File: c6ZkmvVu-58E-9HyGRHKJ-l-c6s.roa (raw, json) Hash identifier: eEpEdNjbBCeI4uleQVLtj13fRk7TT7VluxnrrfECEmE= Subject key identifier: 73:A6:64:9A:F5:6E:FB:9F:04:FB:D1:F2:19:11:CA:27:E9:7E:73:AB Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 126F Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/c6ZkmvVu-58E-9HyGRHKJ-l-c6s.roa Signing time: Fri 22 Aug 2025 08:49:21 +0000 ROA not before: Fri 22 Aug 2025 08:49:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 121.254.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4719 (0x126f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=73A6649AF56EFB9F04FBD1F21911CA27E97E73AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:61:98:e7:b7:70:53:a8:02:1d:2b:3c:60:59: db:00:a3:ac:5b:e9:1e:d4:16:5b:10:fa:c5:0c:24: d3:0b:9f:fe:74:97:2f:46:78:a8:2d:cd:52:1f:d8: 6f:6e:60:ff:96:bc:85:d4:d5:01:a1:86:0f:33:65: 3f:fa:1a:67:1f:d9:26:0c:cd:2d:27:ee:e1:3e:97: 65:bb:95:27:ff:16:da:c5:ad:8f:11:e6:7a:ab:4f: 5a:c9:25:f4:3d:b7:83:d6:aa:ed:fe:19:5e:ef:a1: d2:5e:0a:2a:a7:a0:bd:86:c7:2a:a1:1d:39:0f:2f: 11:6f:37:80:a1:1a:6f:45:ad:57:3e:b3:d2:ad:78: c3:cd:5f:61:04:45:b0:20:0e:b7:2b:e5:25:ef:ac: c1:d5:11:9c:c8:26:c7:86:5d:9b:a1:f9:93:f1:a1: d7:46:f7:28:3a:e7:cb:c9:5e:53:7d:52:e5:0a:80: ed:b4:23:7e:73:a1:a0:8f:9d:f4:9d:61:31:03:82: 23:36:06:bf:25:d2:4d:7e:5d:99:9f:62:4a:15:1e: 75:b2:8a:c6:ac:7a:89:13:f5:06:21:bb:69:8c:9b: 4b:01:4f:2f:39:6d:38:21:16:c7:ae:23:6d:57:d0: f8:0f:d0:54:ad:a0:48:d2:99:75:9e:de:84:47:9a: 95:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A6:64:9A:F5:6E:FB:9F:04:FB:D1:F2:19:11:CA:27:E9:7E:73:AB X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/c6ZkmvVu-58E-9HyGRHKJ-l-c6s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.254.112.0/21 Signature Algorithm: sha256WithRSAEncryption ad:bb:6a:bd:54:c2:f0:c0:ab:a0:bc:73:64:c1:4b:5a:81:d3: 55:b7:6b:f8:da:07:51:f8:15:07:b2:63:7e:ad:62:00:d4:4d: 68:8b:a6:0f:33:3a:7b:a1:81:6d:2b:d6:78:57:93:5e:4a:25: e0:1c:cd:2a:02:50:8c:2e:53:0a:f0:be:4f:5f:5d:6f:1f:f4: 3e:a0:d0:db:06:98:5a:96:b2:00:90:f2:34:b6:f7:7d:3c:bf: 65:da:e5:0b:3c:e6:84:78:e8:10:e8:b6:be:42:bb:c3:6e:d5: c8:c0:a9:a8:d6:c8:3d:d7:08:2e:b6:c7:25:af:d9:5e:f9:0e: b7:33:88:2a:21:29:cd:b9:a2:b1:c2:ad:bd:37:0f:7c:ba:be: 82:b5:c5:66:1e:3b:7b:33:3c:f8:b9:44:52:dc:28:92:dc:99: 91:39:a9:b5:13:e2:7f:27:a6:e6:9e:ef:6c:26:5a:1a:c2:7b: 6c:c6:30:c7:96:ee:f6:37:59:fa:d4:06:55:ee:ed:6a:aa:e9: 94:aa:54:c6:e7:bd:3b:da:50:bf:b8:2b:a8:82:d6:c2:98:c4: d9:dc:cf:c5:0e:49:50:ee:f5:26:98:bf:35:5c:ba:a7:d3:93: e3:9a:b5:b3:79:f5:7b:87:3c:2f:7d:05:31:36:65:d6:e4:6b: f4:d2:a6:b9 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEm8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDczQTY2NDlBRjU2RUZC OUYwNEZCRDFGMjE5MTFDQTI3RTk3RTczQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1YZjnt3BTqAIdKzxgWdsAo6xb6R7UFlsQ+sUMJNMLn/50ly9G eKgtzVIf2G9uYP+WvIXU1QGhhg8zZT/6Gmcf2SYMzS0n7uE+l2W7lSf/FtrFrY8R 5nqrT1rJJfQ9t4PWqu3+GV7vodJeCiqnoL2GxyqhHTkPLxFvN4ChGm9FrVc+s9Kt eMPNX2EERbAgDrcr5SXvrMHVEZzIJseGXZuh+ZPxoddG9yg658vJXlN9UuUKgO20 I35zoaCPnfSdYTEDgiM2Br8l0k1+XZmfYkoVHnWyisaseokT9QYhu2mMm0sBTy85 bTghFseuI21X0PgP0FStoEjSmXWe3oRHmpXhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUc6ZkmvVu+58E+9HyGRHKJ+l+c6swHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvYzZaa212VnUtNThFLTlIeUdSSEtK LWwtYzZzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3n+cDAN BgkqhkiG9w0BAQsFAAOCAQEArbtqvVTC8MCroLxzZMFLWoHTVbdr+NoHUfgVB7Jj fq1iANRNaIumDzM6e6GBbSvWeFeTXkol4BzNKgJQjC5TCvC+T19dbx/0PqDQ2waY WpayAJDyNLb3fTy/ZdrlCzzmhHjoEOi2vkK7w27VyMCpqNbIPdcILrbHJa/ZXvkO tzOIKiEpzbmiscKtvTcPfLq+grXFZh47ezM8+LlEUtwoktyZkTmptRPifyem5p7v bCZaGsJ7bMYwx5bu9jdZ+tQGVe7taqrplKpUxue9O9pQv7grqILWwpjE2dzPxQ5J UO71Jpi/NVy6p9OT45q1s3n1e4c8L30FMTZl1uRr9NKmuQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:17:49 2025 by rpki-client