$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/jfMQwruX9IubISSQy26ub_1pFrM.roa File: jfMQwruX9IubISSQy26ub_1pFrM.roa (raw, json) Hash identifier: dFaDlHUM3ym+XFllhRPNtNM725fUOUqb0Ley/zJCszQ= Subject key identifier: 8D:F3:10:C2:BB:97:F4:8B:9B:21:24:90:CB:6E:AE:6F:FD:69:16:B3 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1242 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/jfMQwruX9IubISSQy26ub_1pFrM.roa Signing time: Fri 22 Aug 2025 08:49:09 +0000 ROA not before: Fri 22 Aug 2025 08:49:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 2401:ab00::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4674 (0x1242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8DF310C2BB97F48B9B212490CB6EAE6FFD6916B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:08:93:40:5c:ea:bc:7f:8f:cd:23:ab:8b:da: 15:8e:a9:18:df:f2:21:53:30:7a:98:04:52:47:a1: 6e:c5:57:79:c9:16:5d:50:24:98:9f:9b:65:9c:f2: e8:0e:d3:dc:25:80:8e:96:9a:77:bb:67:19:0c:ca: 65:b5:02:7d:c7:b5:8e:d6:b7:d5:5b:a0:09:c3:ab: fa:76:d8:08:55:6a:6f:c2:fc:ea:c3:e3:3a:ad:d8: db:f9:e6:37:20:e6:61:ac:6e:6a:41:2e:03:d8:f6: 54:ec:c2:22:f4:d4:2f:db:02:38:74:ba:51:15:52: c2:24:af:73:22:df:f6:68:eb:98:0d:c5:e5:f4:7a: 50:31:ee:c4:67:92:49:9d:58:98:63:22:e7:c2:73: b0:f7:ae:fa:94:51:1e:f7:a0:78:f9:e3:7f:da:a6: cf:6e:8b:4e:6b:92:c8:d9:72:b2:51:24:43:97:dd: d9:c8:61:fd:1b:15:2b:23:8f:7a:f7:4c:f0:39:4f: 64:1b:27:ca:a7:2a:33:0a:0d:53:42:fd:cf:98:78: 57:db:24:1a:33:f7:b0:5d:b7:de:5b:e7:96:54:9c: 5d:f8:f6:34:a1:d8:15:59:3e:f6:4f:ed:4d:be:8e: 51:ef:b0:3d:29:51:c9:43:f8:97:8a:5e:93:0e:64: 66:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F3:10:C2:BB:97:F4:8B:9B:21:24:90:CB:6E:AE:6F:FD:69:16:B3 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/jfMQwruX9IubISSQy26ub_1pFrM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:ab00::/32 Signature Algorithm: sha256WithRSAEncryption 4c:c0:ed:6d:03:5b:aa:01:da:5f:15:a3:70:f4:b0:27:c4:00: 2b:94:e4:5b:db:b9:8f:ff:a9:9b:b0:b4:78:fd:86:f5:db:9e: b9:a6:72:d6:33:4d:38:f9:a7:c6:d8:d3:61:4e:71:37:2e:f4: 9b:bb:76:fb:69:ba:43:99:b6:2f:56:b2:a0:87:b4:38:4f:9f: ea:ef:03:df:2f:93:22:03:44:22:5c:93:78:7a:72:c1:a9:be: 81:65:76:d3:75:28:f9:68:fd:2d:e8:0e:dc:c1:1e:7b:62:df: d9:c3:36:01:3e:1f:73:2a:e1:b1:72:3a:b5:60:5d:3d:d7:ce: 1e:7d:29:46:d1:d8:f5:ac:8e:0b:ef:09:99:ec:7f:cd:86:d5: 25:9e:bc:4b:9d:c3:53:71:da:f3:3e:9f:d3:62:00:d1:80:89: 1c:61:02:aa:be:07:c6:7c:3e:bc:81:7c:69:f9:21:93:d8:9e: 0e:bb:56:22:3c:ff:76:43:80:f0:7f:10:4a:94:9f:b9:36:78: a9:18:a7:cd:4d:4d:d3:b9:cc:2e:0f:19:3e:6f:5a:6d:08:90: 48:49:fb:74:5f:b0:c8:54:92:12:c7:6f:b1:5f:3c:b8:df:3b: 57:1b:b0:a3:0b:46:52:4d:86:f8:a8:82:b7:1a:f5:c9:ab:b9: cf:88:05:9c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEkIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhERjMxMEMyQkI5N0Y0 OEI5QjIxMjQ5MENCNkVBRTZGRkQ2OTE2QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2CJNAXOq8f4/NI6uL2hWOqRjf8iFTMHqYBFJHoW7FV3nJFl1Q JJifm2Wc8ugO09wlgI6Wmne7ZxkMymW1An3HtY7Wt9VboAnDq/p22AhVam/C/OrD 4zqt2Nv55jcg5mGsbmpBLgPY9lTswiL01C/bAjh0ulEVUsIkr3Mi3/Zo65gNxeX0 elAx7sRnkkmdWJhjIufCc7D3rvqUUR73oHj543/aps9ui05rksjZcrJRJEOX3dnI Yf0bFSsjj3r3TPA5T2QbJ8qnKjMKDVNC/c+YeFfbJBoz97Bdt95b55ZUnF349jSh 2BVZPvZP7U2+jlHvsD0pUclD+JeKXpMOZGblAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUjfMQwruX9IubISSQy26ub/1pFrMwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvamZNUXdydVg5SXViSVNTUXkyNnVi XzFwRnJNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBqwAw DQYJKoZIhvcNAQELBQADggEBAEzA7W0DW6oB2l8Vo3D0sCfEACuU5FvbuY//qZuw tHj9hvXbnrmmctYzTTj5p8bY02FOcTcu9Ju7dvtpukOZti9WsqCHtDhPn+rvA98v kyIDRCJck3h6csGpvoFldtN1KPlo/S3oDtzBHnti39nDNgE+H3Mq4bFyOrVgXT3X zh59KUbR2PWsjgvvCZnsf82G1SWevEudw1Nx2vM+n9NiANGAiRxhAqq+B8Z8PryB fGn5IZPYng67ViI8/3ZDgPB/EEqUn7k2eKkYp81NTdO5zC4PGT5vWm0IkEhJ+3Rf sMhUkhLHb7FfPLjfO1cbsKMLRlJNhviogrca9cmruc+IBZw= -----END CERTIFICATE-----Generated at Sun Aug 24 09:17:40 2025 by rpki-client