$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/lgsVQp6ctzNSzV8fvqj6ViSQW4c.roa File: lgsVQp6ctzNSzV8fvqj6ViSQW4c.roa (raw, json) Hash identifier: /NSmm1iPLXVpFRJMsKHwW0kQu/0gnPlDJwuaBsdMNWs= Subject key identifier: 96:0B:15:42:9E:9C:B7:33:52:CD:5F:1F:BE:A8:FA:56:24:90:5B:87 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 123F Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/lgsVQp6ctzNSzV8fvqj6ViSQW4c.roa Signing time: Fri 22 Aug 2025 08:49:09 +0000 ROA not before: Fri 22 Aug 2025 08:49:09 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 182.155.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4671 (0x123f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=960B15429E9CB73352CD5F1FBEA8FA5624905B87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ee:c3:29:78:df:c6:e0:c9:5c:39:1a:0c:f5: 65:f4:e6:2e:55:3e:78:40:06:2b:bc:63:f0:1c:cf: 8d:39:82:f7:7f:95:43:78:83:7d:96:0a:8b:fc:93: 62:11:86:ee:a5:f2:bb:78:a0:60:11:12:9a:8a:4c: 33:2c:cd:cb:1f:36:c5:39:56:17:74:af:d8:3f:92: 87:7b:45:a5:ec:06:d7:27:fa:7f:df:7a:91:a0:e3: 2c:d3:98:d5:3c:fe:8d:8e:c7:c1:92:58:25:48:85: 9b:d2:f7:e5:1c:47:16:c1:8a:9a:c9:66:d5:ec:92: 41:f1:1d:74:15:09:e0:03:d7:c8:6e:50:50:e1:eb: f1:83:8b:13:d6:54:73:9b:da:f0:62:42:cd:55:16: 94:f0:4a:8a:84:90:48:1b:6e:f4:f2:65:86:1d:91: 67:b7:46:38:0b:2c:86:6f:97:2d:be:5a:11:4c:c4: f3:a7:c2:7f:3e:f6:a4:ca:af:75:6a:ac:c0:d8:17: 80:d1:48:03:ed:94:52:01:c8:55:83:df:e0:e6:67: a1:f1:ab:b6:99:35:84:b3:2c:7d:26:c9:b8:94:98: f1:f0:10:94:65:a4:b5:dd:a1:b8:02:b7:16:c4:8c: 78:e9:ea:31:89:82:5c:84:ee:fb:13:97:c9:d1:f6: ef:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:0B:15:42:9E:9C:B7:33:52:CD:5F:1F:BE:A8:FA:56:24:90:5B:87 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/lgsVQp6ctzNSzV8fvqj6ViSQW4c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.192.0/19 Signature Algorithm: sha256WithRSAEncryption 0f:09:9b:cb:e4:b8:cd:d8:1a:44:73:b6:02:d5:4f:5c:50:d9: 62:dd:8a:be:4a:bc:a7:74:3d:eb:84:df:84:17:f7:bf:ba:22: ad:cb:3e:5a:51:e1:3a:fb:64:2c:f7:60:30:cc:91:24:10:9f: b9:14:e8:44:6d:a4:9f:27:0b:8a:6a:69:c5:e1:e3:f4:a2:cd: 96:2c:9f:d9:b3:65:96:63:f1:42:52:fd:ff:16:cf:b2:ea:68: 66:fc:e5:f8:4d:b8:a6:39:32:09:20:f1:55:36:01:70:89:0e: 98:0c:f0:37:70:ee:cf:27:ec:68:5e:65:b0:1a:f7:52:e0:a1: 2a:9d:1c:63:45:23:5a:88:03:88:d9:80:e3:37:24:ad:57:84: e5:c3:8d:9e:f6:73:f3:3d:93:59:e8:c7:3b:22:76:54:a4:da: 77:4c:b9:c7:34:43:0b:d3:bc:ba:10:2c:02:db:8e:d9:24:7d: e9:0a:59:a1:be:be:95:06:da:95:4b:de:84:5e:8e:cc:ff:b6: c8:01:64:06:cc:da:7a:00:6e:9e:bc:9b:d9:fc:5e:3c:4d:4f: d8:86:fb:c1:95:8b:3e:e1:25:b1:64:6b:55:b7:0d:46:e9:3a: 29:dd:5e:3b:72:8c:83:ec:4a:20:13:40:a8:fd:ac:76:a3:a9: 87:ec:74:4c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEj8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk2MEIxNTQyOUU5Q0I3 MzM1MkNENUYxRkJFQThGQTU2MjQ5MDVCODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt7sMpeN/G4MlcORoM9WX05i5VPnhABiu8Y/Acz405gvd/lUN4 g32WCov8k2IRhu6l8rt4oGAREpqKTDMszcsfNsU5Vhd0r9g/kod7RaXsBtcn+n/f epGg4yzTmNU8/o2Ox8GSWCVIhZvS9+UcRxbBiprJZtXskkHxHXQVCeAD18huUFDh 6/GDixPWVHOb2vBiQs1VFpTwSoqEkEgbbvTyZYYdkWe3RjgLLIZvly2+WhFMxPOn wn8+9qTKr3VqrMDYF4DRSAPtlFIByFWD3+DmZ6Hxq7aZNYSzLH0mybiUmPHwEJRl pLXdobgCtxbEjHjp6jGJglyE7vsTl8nR9u9BAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUlgsVQp6ctzNSzV8fvqj6ViSQW4cwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvbGdzVlFwNmN0ek5TelY4ZnZxajZW aVNRVzRjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabwDAN BgkqhkiG9w0BAQsFAAOCAQEADwmby+S4zdgaRHO2AtVPXFDZYt2Kvkq8p3Q964Tf hBf3v7oircs+WlHhOvtkLPdgMMyRJBCfuRToRG2knycLimppxeHj9KLNliyf2bNl lmPxQlL9/xbPsupoZvzl+E24pjkyCSDxVTYBcIkOmAzwN3DuzyfsaF5lsBr3UuCh Kp0cY0UjWogDiNmA4zckrVeE5cONnvZz8z2TWejHOyJ2VKTad0y5xzRDC9O8uhAs AtuO2SR96QpZob6+lQbalUvehF6OzP+2yAFkBszaegBunryb2fxePE1P2Ib7wZWL PuElsWRrVbcNRuk6Kd1eO3KMg+xKIBNAqP2sdqOph+x0TA== -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:22 2025 by rpki-client