$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/iMIeNxbuJ3mXwaFUXt6jZrsMRW0.roa File: iMIeNxbuJ3mXwaFUXt6jZrsMRW0.roa (raw, json) Hash identifier: PF4VKlRMy8z6AIo+7X8C3q8wu/MUgdnBS0DLls7Larw= Subject key identifier: 88:C2:1E:37:16:EE:27:79:97:C1:A1:54:5E:DE:A3:66:BB:0C:45:6D Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1296 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/iMIeNxbuJ3mXwaFUXt6jZrsMRW0.roa Signing time: Fri 22 Aug 2025 08:49:30 +0000 ROA not before: Fri 22 Aug 2025 08:49:30 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 210.209.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4758 (0x1296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=88C21E3716EE277997C1A1545EDEA366BB0C456D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3d:c2:e3:1b:82:ab:9f:db:68:07:aa:d3:c9: 93:fb:34:3c:1a:80:b8:01:5f:33:1a:0a:d6:a1:1d: 28:36:d0:24:27:b5:6c:b8:b5:bf:38:19:5e:5e:f0: 2c:72:f9:36:47:97:d9:6c:6b:7a:e1:dd:90:50:50: 73:65:0b:d2:fc:09:12:af:c8:47:91:38:2a:99:47: 04:8d:81:59:3f:94:f7:ce:6b:7a:dd:74:1a:0a:98: 4c:64:6a:79:c7:a7:48:ad:56:34:e3:b2:bb:34:49: bc:17:78:61:32:de:ec:0b:a6:94:04:37:fb:d2:63: a1:8e:50:b9:89:2e:da:0d:2c:0b:bb:20:02:8b:b9: 26:ed:39:17:a7:d1:89:54:6b:45:61:78:b2:5c:b8: 4b:e3:58:ef:09:5e:eb:27:58:f3:d1:fc:ca:71:2e: f0:d5:18:9c:3d:9a:a8:d0:a9:fa:aa:89:0e:cf:ad: 97:eb:cb:70:79:24:ae:1d:1f:17:18:ab:9c:db:8a: 7f:5b:0c:c0:4a:93:0f:5e:b7:8d:b3:d2:cc:84:ca: 98:47:c9:6e:25:b9:77:e4:82:76:d4:7f:5b:25:2e: 06:20:ae:66:96:7a:04:3f:8a:31:c4:53:cd:45:17: 33:da:2c:10:f1:b1:d2:94:23:08:19:35:32:06:7f: 46:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C2:1E:37:16:EE:27:79:97:C1:A1:54:5E:DE:A3:66:BB:0C:45:6D X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/iMIeNxbuJ3mXwaFUXt6jZrsMRW0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.209.224.0/20 Signature Algorithm: sha256WithRSAEncryption 99:89:2e:3b:81:fe:00:a8:40:c2:0e:c8:c1:be:33:0d:55:06: 68:a2:be:19:97:b5:14:77:f6:38:7f:96:87:74:56:71:a5:02: 9b:c8:44:bb:21:89:f2:1b:b4:61:dd:e4:78:df:7a:5c:e1:1a: 02:e9:c5:6f:1e:b9:87:ca:af:a4:2d:77:e1:a8:77:86:36:40: 29:dd:4b:3e:74:4c:f3:e3:c0:ec:f6:bd:5d:14:cc:b2:f2:f5: 4d:40:2d:a7:f1:b7:b7:4c:25:3b:1d:89:7e:84:84:98:ce:e4: 86:59:87:80:76:0f:a3:1f:c0:e9:07:f5:21:f0:da:e2:25:32: 3e:4b:e5:bf:6c:37:81:ec:a6:aa:ce:ea:23:e5:56:9d:9a:49: 80:73:db:b7:c1:79:dc:3c:5e:a0:3e:38:af:6e:21:ae:8b:85: 0c:1f:9f:56:47:05:df:2a:90:50:37:5d:42:f0:3f:2c:83:fa: dc:c3:7b:8c:a8:ad:f7:29:9b:68:04:03:b5:76:a9:cc:61:05: c2:b7:5e:4b:a3:3b:70:28:4a:20:ba:92:f6:c5:b5:dc:55:26: af:57:16:d6:83:77:b5:83:db:ce:c1:43:64:2e:d9:92:a7:92: 95:37:14:9d:26:fb:f2:e3:ac:93:07:0c:d4:b7:96:c6:cb:61: c3:c8:6d:0d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEpYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg4QzIxRTM3MTZFRTI3 Nzk5N0MxQTE1NDVFREVBMzY2QkIwQzQ1NkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXPcLjG4Krn9toB6rTyZP7NDwagLgBXzMaCtahHSg20CQntWy4 tb84GV5e8Cxy+TZHl9lsa3rh3ZBQUHNlC9L8CRKvyEeROCqZRwSNgVk/lPfOa3rd dBoKmExkannHp0itVjTjsrs0SbwXeGEy3uwLppQEN/vSY6GOULmJLtoNLAu7IAKL uSbtORen0YlUa0VheLJcuEvjWO8JXusnWPPR/MpxLvDVGJw9mqjQqfqqiQ7PrZfr y3B5JK4dHxcYq5zbin9bDMBKkw9et42z0syEyphHyW4luXfkgnbUf1slLgYgrmaW egQ/ijHEU81FFzPaLBDxsdKUIwgZNTIGf0ZFAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUiMIeNxbuJ3mXwaFUXt6jZrsMRW0wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvaU1JZU54YnVKM21Yd2FGVVh0Nmpa cnNNUlcwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNLR4DAN BgkqhkiG9w0BAQsFAAOCAQEAmYkuO4H+AKhAwg7Iwb4zDVUGaKK+GZe1FHf2OH+W h3RWcaUCm8hEuyGJ8hu0Yd3keN96XOEaAunFbx65h8qvpC134ah3hjZAKd1LPnRM 8+PA7Pa9XRTMsvL1TUAtp/G3t0wlOx2JfoSEmM7khlmHgHYPox/A6Qf1IfDa4iUy Pkvlv2w3geymqs7qI+VWnZpJgHPbt8F53DxeoD44r24hrouFDB+fVkcF3yqQUDdd QvA/LIP63MN7jKit9ymbaAQDtXapzGEFwrdeS6M7cChKILqS9sW13FUmr1cW1oN3 tYPbzsFDZC7ZkqeSlTcUnSb78uOskwcM1LeWxsthw8htDQ== -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:29 2025 by rpki-client