$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/iTSVytCE2ODFuEi5pSkN7qNQz0s.roa File: iTSVytCE2ODFuEi5pSkN7qNQz0s.roa (raw, json) Hash identifier: 2sunvExp2BMDx7zPpJRGR/7TrDszwvq0UftCwRI5B7o= Subject key identifier: 89:34:95:CA:D0:84:D8:E0:C5:B8:48:B9:A5:29:0D:EE:A3:50:CF:4B Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1285 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/iTSVytCE2ODFuEi5pSkN7qNQz0s.roa Signing time: Fri 22 Aug 2025 08:49:25 +0000 ROA not before: Fri 22 Aug 2025 08:49:25 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 113.61.128.0/17 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4741 (0x1285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:25 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=893495CAD084D8E0C5B848B9A5290DEEA350CF4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:92:33:bc:9e:e5:06:10:84:09:41:be:60:8c: d5:66:56:9b:27:45:cb:9d:6f:18:3a:94:61:3c:fc: 52:21:e5:4c:e8:8d:4f:67:4b:65:07:e4:5f:26:82: b7:9b:09:ed:90:0d:1b:11:e3:5a:47:54:41:d5:2e: 92:77:6e:a3:ea:47:95:22:ca:63:71:5c:bc:79:08: 9e:88:33:b5:fa:99:8f:f3:a9:55:e6:2c:22:e0:ed: d2:d1:a9:2d:1b:5c:15:dc:7b:67:89:35:6e:d7:da: 06:1a:3b:cd:2d:4d:fe:ab:76:5f:d7:2d:2e:8c:7a: 33:5e:14:dc:07:b3:a2:55:a4:18:57:be:37:1d:e3: 24:a5:cd:12:03:bd:72:c7:77:54:37:1a:c5:89:03: 3f:0c:66:9b:96:49:a3:78:7b:80:51:d5:58:db:34: d3:f1:06:3c:da:6b:51:03:fc:c9:9f:1f:db:dc:66: 5d:d9:3e:31:68:b7:ed:cb:d0:ff:a3:5d:d6:37:70: e6:d8:20:3a:5d:12:da:ff:90:84:99:73:b9:15:58: de:20:60:1c:23:79:3c:be:3a:32:c2:7d:86:17:fa: 75:87:5b:71:8a:c8:d8:7d:5a:2d:f7:81:d2:18:ca: 49:57:1e:ee:f4:64:b9:0b:6b:8b:1e:a0:e5:d2:6a: 65:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:34:95:CA:D0:84:D8:E0:C5:B8:48:B9:A5:29:0D:EE:A3:50:CF:4B X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/iTSVytCE2ODFuEi5pSkN7qNQz0s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.128.0/17 Signature Algorithm: sha256WithRSAEncryption 85:7c:3c:8e:b8:ca:3f:76:9d:8c:a7:ca:8d:ba:c5:7b:cd:52: 17:11:ef:6d:8c:dc:23:57:ac:a6:b0:77:a5:10:0b:15:65:40: 18:a3:34:f3:a3:91:b9:d8:27:87:1e:73:61:2d:77:cd:4d:1c: a5:77:50:b0:1c:a8:bc:22:c2:21:ef:f5:85:a9:6d:3e:8e:38: cd:0b:ee:43:3b:c2:93:c7:d9:f9:4f:c8:bf:8b:23:35:5c:ea: c9:9e:c3:49:c1:e3:1e:9d:94:58:79:7f:ed:0f:05:ce:fc:6b: d3:96:50:dc:21:96:93:06:59:0c:f2:7b:32:a8:8a:83:08:37: 3d:5b:8b:40:10:7e:a9:55:75:3e:95:a0:b9:f9:46:ff:e4:e5: a9:d6:68:36:08:de:7c:47:18:f6:cb:83:ca:a9:cf:6f:3a:39: 15:40:32:02:f8:89:bf:85:ce:d3:88:7e:f7:45:4c:17:f6:21: 55:ed:a4:76:6a:af:b3:21:a9:0f:9f:52:cc:0c:55:5a:4e:e1: f4:3d:14:bb:68:d8:c5:52:d7:a2:44:40:17:52:9f:90:06:fe: 62:74:56:fa:fa:15:58:23:9e:27:32:8f:f2:92:ed:1e:f9:5d: 1a:11:b4:78:5b:e4:b0:a4:42:90:49:27:09:fe:67:65:f0:94: 1d:21:8a:da -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEoUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg5MzQ5NUNBRDA4NEQ4 RTBDNUI4NDhCOUE1MjkwREVFQTM1MENGNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/kjO8nuUGEIQJQb5gjNVmVpsnRcudbxg6lGE8/FIh5UzojU9n S2UH5F8mgrebCe2QDRsR41pHVEHVLpJ3bqPqR5UiymNxXLx5CJ6IM7X6mY/zqVXm LCLg7dLRqS0bXBXce2eJNW7X2gYaO80tTf6rdl/XLS6MejNeFNwHs6JVpBhXvjcd 4ySlzRIDvXLHd1Q3GsWJAz8MZpuWSaN4e4BR1VjbNNPxBjzaa1ED/MmfH9vcZl3Z PjFot+3L0P+jXdY3cObYIDpdEtr/kISZc7kVWN4gYBwjeTy+OjLCfYYX+nWHW3GK yNh9Wi33gdIYyklXHu70ZLkLa4seoOXSamVZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUiTSVytCE2ODFuEi5pSkN7qNQz0swHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvaVRTVnl0Q0UyT0RGdUVpNXBTa043 cU5RejBzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3E9gDAN BgkqhkiG9w0BAQsFAAOCAQEAhXw8jrjKP3adjKfKjbrFe81SFxHvbYzcI1esprB3 pRALFWVAGKM086ORudgnhx5zYS13zU0cpXdQsByovCLCIe/1haltPo44zQvuQzvC k8fZ+U/Iv4sjNVzqyZ7DScHjHp2UWHl/7Q8Fzvxr05ZQ3CGWkwZZDPJ7MqiKgwg3 PVuLQBB+qVV1PpWguflG/+TlqdZoNgjefEcY9suDyqnPbzo5FUAyAviJv4XO04h+ 90VMF/YhVe2kdmqvsyGpD59SzAxVWk7h9D0Uu2jYxVLXokRAF1KfkAb+YnRW+voV WCOeJzKP8pLtHvldGhG0eFvksKRCkEknCf5nZfCUHSGK2g== -----END CERTIFICATE-----Generated at Sun Aug 24 09:22:25 2025 by rpki-client