$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/dNr0bIjNS6lZCthmEexflk3W2wE.roa File: dNr0bIjNS6lZCthmEexflk3W2wE.roa (raw, json) Hash identifier: epUX1L0SMRCrB+aMKeMsazAPvmxUsRqgYNRFI0W4g1w= Subject key identifier: 74:DA:F4:6C:88:CD:4B:A9:59:0A:D8:66:11:EC:5F:96:4D:D6:DB:01 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1245 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/dNr0bIjNS6lZCthmEexflk3W2wE.roa Signing time: Fri 22 Aug 2025 08:49:10 +0000 ROA not before: Fri 22 Aug 2025 08:49:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 113.61.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4677 (0x1245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=74DAF46C88CD4BA9590AD86611EC5F964DD6DB01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:29:61:e0:3c:70:4c:18:4a:2e:54:fb:da:14: b9:95:e7:b3:46:b0:9f:22:04:61:9d:c0:69:b8:04: d1:f3:37:ad:45:dd:1d:03:7e:93:cf:0c:e2:de:67: 63:52:44:2b:23:d5:b1:6c:c1:40:3b:f7:39:23:2c: 67:00:b1:18:e6:9d:ca:24:8b:e7:5c:69:05:29:70: 03:a4:6c:90:b2:7a:bd:61:a8:4a:88:eb:be:e8:53: e5:d0:40:bc:f2:3c:15:c2:21:7d:0e:bb:25:68:d5: 24:83:35:43:e0:22:38:4e:d9:32:80:00:67:cc:8e: 47:49:cb:da:73:39:a6:9a:b6:10:8e:97:4b:0e:40: 17:fd:ff:83:04:de:5c:c7:ce:4e:0a:f8:a9:70:84: 70:2f:40:b1:5e:6d:31:0e:ad:70:cc:64:19:23:83: 29:c0:4c:39:b3:b6:5a:cf:8e:12:11:c0:fc:3f:bb: eb:6b:ac:2e:8f:97:b2:40:5e:1e:df:4e:cb:78:55: a9:e7:8d:2c:eb:3e:85:e0:ee:ba:48:dc:53:f5:0b: fc:f5:f0:46:ce:29:49:22:51:9b:08:b0:dc:dd:8f: be:0f:88:a5:a0:17:54:23:8e:9b:d7:10:d8:c0:34: 68:52:dc:05:13:bb:0b:7a:bc:75:db:f0:91:d4:3f: 19:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:DA:F4:6C:88:CD:4B:A9:59:0A:D8:66:11:EC:5F:96:4D:D6:DB:01 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/dNr0bIjNS6lZCthmEexflk3W2wE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.172.0/24 Signature Algorithm: sha256WithRSAEncryption 73:e0:b7:ea:46:88:df:db:24:9d:f5:14:29:0c:30:48:7c:a2: 34:36:78:65:27:8a:79:9f:c7:38:d7:70:89:60:d5:97:3c:c0: b0:91:ac:ec:a4:29:50:f6:7f:65:57:dc:9f:ee:ce:fb:21:81: 62:73:ee:78:96:71:71:cd:65:85:32:81:df:2c:08:fc:4e:12: e6:2c:d7:14:55:ec:8f:8e:2b:00:2e:19:cc:e7:e3:15:2a:21: ec:b4:f4:1f:ec:de:86:e8:76:51:b2:9f:ee:73:88:85:ff:f0: 9b:9a:6c:69:d2:4d:dd:7c:c5:30:29:30:f1:27:7e:c2:5f:c9: f8:29:d7:14:ca:8b:61:d5:43:26:dc:13:8b:bf:73:96:c5:aa: 04:d9:5b:93:e2:59:25:d8:a3:a5:d5:2f:27:38:d9:c6:ed:38: 7a:a3:c7:51:db:77:ad:bc:a9:41:8c:23:c7:3d:70:6e:8f:93: 94:cc:bd:92:ba:1e:68:c8:ab:51:33:2b:dd:31:c7:17:3b:03: 39:6a:06:71:0e:a7:6b:ed:3c:88:85:ca:aa:fe:01:07:09:c2: 76:a6:cf:b7:7a:cb:b0:92:d2:91:dc:29:bd:49:8a:b2:f7:d7: b1:ff:58:88:2b:26:0f:4b:82:f5:93:9a:9b:ee:75:f1:ad:de: 61:b3:39:f1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEkUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc0REFGNDZDODhDRDRC QTk1OTBBRDg2NjExRUM1Rjk2NERENkRCMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcKWHgPHBMGEouVPvaFLmV57NGsJ8iBGGdwGm4BNHzN61F3R0D fpPPDOLeZ2NSRCsj1bFswUA79zkjLGcAsRjmncoki+dcaQUpcAOkbJCyer1hqEqI 677oU+XQQLzyPBXCIX0OuyVo1SSDNUPgIjhO2TKAAGfMjkdJy9pzOaaathCOl0sO QBf9/4ME3lzHzk4K+KlwhHAvQLFebTEOrXDMZBkjgynATDmztlrPjhIRwPw/u+tr rC6Pl7JAXh7fTst4VannjSzrPoXg7rpI3FP1C/z18EbOKUkiUZsIsNzdj74PiKWg F1QjjpvXENjANGhS3AUTuwt6vHXb8JHUPxmZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUdNr0bIjNS6lZCthmEexflk3W2wEwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvZE5yMGJJak5TNmxaQ3RobUVleGZs azNXMndFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHE9rDAN BgkqhkiG9w0BAQsFAAOCAQEAc+C36kaI39sknfUUKQwwSHyiNDZ4ZSeKeZ/HONdw iWDVlzzAsJGs7KQpUPZ/ZVfcn+7O+yGBYnPueJZxcc1lhTKB3ywI/E4S5izXFFXs j44rAC4ZzOfjFSoh7LT0H+zehuh2UbKf7nOIhf/wm5psadJN3XzFMCkw8Sd+wl/J +CnXFMqLYdVDJtwTi79zlsWqBNlbk+JZJdijpdUvJzjZxu04eqPHUdt3rbypQYwj xz1wbo+TlMy9kroeaMirUTMr3THHFzsDOWoGcQ6na+08iIXKqv4BBwnCdqbPt3rL sJLSkdwpvUmKsvfXsf9YiCsmD0uC9ZOam+518a3eYbM58Q== -----END CERTIFICATE-----Generated at Sun Aug 24 09:19:42 2025 by rpki-client