$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/mKicpSPdAIW5X6_KuDEmtaJspCw.roa File: mKicpSPdAIW5X6_KuDEmtaJspCw.roa (raw, json) Hash identifier: GDsqvA+6ezHJUjpj9hC2iZUEV/ua2MLxYMqmmtS/jag= Subject key identifier: 98:A8:9C:A5:23:DD:00:85:B9:5F:AF:CA:B8:31:26:B5:A2:6C:A4:2C Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1234 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/mKicpSPdAIW5X6_KuDEmtaJspCw.roa Signing time: Fri 22 Aug 2025 08:49:06 +0000 ROA not before: Fri 22 Aug 2025 08:49:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 182.155.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4660 (0x1234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=98A89CA523DD0085B95FAFCAB83126B5A26CA42C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:40:95:07:13:39:19:5b:e3:3c:e7:bb:cc:89: 54:a8:da:39:7b:10:29:b5:d4:d0:aa:54:5c:05:e8: b6:99:d6:c3:e7:f3:93:f8:65:43:ab:58:2c:ea:4a: 6f:26:56:42:cd:64:14:fd:06:2e:17:1c:20:f3:b3: 78:81:8d:24:c6:4b:65:62:ee:13:82:66:66:15:f2: ce:06:d7:53:b2:62:2a:6e:14:6a:d7:44:19:be:0e: 87:1f:76:eb:c0:2e:e3:17:03:12:6a:b5:0b:f8:2d: 16:73:ae:c9:68:51:4f:7e:af:94:d6:66:8b:72:5e: 9a:8b:e9:46:14:a9:c3:56:2e:5e:8b:99:e0:ba:0c: ad:7f:6d:b5:96:14:3e:bf:8c:34:3e:ae:77:7e:b0: 52:1d:e3:30:b9:b5:e2:93:d5:1f:69:dc:82:ab:f0: 0f:ee:d1:d3:0d:00:7f:61:ae:a5:24:36:d8:59:52: 99:58:b3:ba:c2:c6:e8:a9:ba:90:54:e3:e3:ba:36: 0d:36:f8:1f:7b:3b:b1:71:f6:7e:99:bd:69:44:50: 8c:d0:0f:2c:b2:a5:57:ba:08:0f:e8:ad:e1:45:79: 96:70:81:cc:e7:44:5e:46:1d:fb:30:9b:07:24:93: 89:33:f4:71:c3:6d:ba:4e:50:d3:a5:cc:2a:d8:62: b7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A8:9C:A5:23:DD:00:85:B9:5F:AF:CA:B8:31:26:B5:A2:6C:A4:2C X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/mKicpSPdAIW5X6_KuDEmtaJspCw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.0.0/19 Signature Algorithm: sha256WithRSAEncryption 80:5d:09:6f:f3:fc:42:91:4b:be:1a:9f:da:ec:22:d6:41:b9: 46:42:8d:3b:68:56:ad:33:21:3c:58:d3:36:e8:f8:30:22:bf: 20:d9:5f:4e:e4:6d:2e:3d:27:93:c1:5b:2b:ff:74:a2:2b:39: fa:f6:93:aa:0a:8d:c3:4c:f8:65:1d:5a:fc:2b:3f:e7:0f:cb: 7d:0f:28:fe:77:76:ae:99:82:d2:4a:30:2d:7a:fc:8e:a4:9f: dc:70:81:65:f3:03:08:6e:48:20:6b:1b:6e:66:ba:62:9f:f3: a1:b6:40:7c:92:ec:c3:d1:8e:ad:be:7d:64:50:01:47:29:c8: 58:a9:c8:d8:84:83:73:8d:fa:0d:00:8b:6b:3b:94:86:9f:8c: 07:07:a0:a9:4f:bd:4e:85:5e:bb:8a:a8:cd:8b:0a:d7:05:73: 4b:a7:d9:91:c8:02:38:6c:43:80:f7:0f:a3:28:50:69:71:4e: 01:e9:7c:b5:96:2d:f7:35:a8:f0:4d:3c:7e:88:60:ff:7f:95: b3:db:67:50:8c:67:02:b8:28:27:22:1c:4c:4b:0a:c9:4d:cd: 5b:ae:29:e2:da:08:2b:14:ca:99:9b:6e:c2:6d:02:1c:81:eb: fd:30:9d:3a:28:36:c8:f3:5f:d1:29:5f:68:c2:c9:24:86:89: d6:68:81:d8 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEjQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk4QTg5Q0E1MjNERDAw ODVCOTVGQUZDQUI4MzEyNkI1QTI2Q0E0MkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdQJUHEzkZW+M857vMiVSo2jl7ECm11NCqVFwF6LaZ1sPn85P4 ZUOrWCzqSm8mVkLNZBT9Bi4XHCDzs3iBjSTGS2Vi7hOCZmYV8s4G11OyYipuFGrX RBm+DocfduvALuMXAxJqtQv4LRZzrsloUU9+r5TWZotyXpqL6UYUqcNWLl6LmeC6 DK1/bbWWFD6/jDQ+rnd+sFId4zC5teKT1R9p3IKr8A/u0dMNAH9hrqUkNthZUplY s7rCxuipupBU4+O6Ng02+B97O7Fx9n6ZvWlEUIzQDyyypVe6CA/oreFFeZZwgczn RF5GHfswmwckk4kz9HHDbbpOUNOlzCrYYrc7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUmKicpSPdAIW5X6/KuDEmtaJspCwwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvbUtpY3BTUGRBSVc1WDZfS3VERW10 YUpzcEN3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabADAN BgkqhkiG9w0BAQsFAAOCAQEAgF0Jb/P8QpFLvhqf2uwi1kG5RkKNO2hWrTMhPFjT Nuj4MCK/INlfTuRtLj0nk8FbK/90ois5+vaTqgqNw0z4ZR1a/Cs/5w/LfQ8o/nd2 rpmC0kowLXr8jqSf3HCBZfMDCG5IIGsbbma6Yp/zobZAfJLsw9GOrb59ZFABRynI WKnI2ISDc436DQCLazuUhp+MBwegqU+9ToVeu4qozYsK1wVzS6fZkcgCOGxDgPcP oyhQaXFOAel8tZYt9zWo8E08fohg/3+Vs9tnUIxnArgoJyIcTEsKyU3NW64p4toI KxTKmZtuwm0CHIHr/TCdOig2yPNf0SlfaMLJJIaJ1miB2A== -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:09 2025 by rpki-client