$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/tZ4iMmA_4IQws36benRu5pqZa_I.roa File: tZ4iMmA_4IQws36benRu5pqZa_I.roa (raw, json) Hash identifier: 1lOfpxhxl1gKmX7GwkHdvwJQcghQ3WNZ9LbT75Tyf1A= Subject key identifier: B5:9E:22:32:60:3F:E0:84:30:B3:7E:9B:7A:74:6E:E6:9A:99:6B:F2 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1272 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tZ4iMmA_4IQws36benRu5pqZa_I.roa Signing time: Fri 22 Aug 2025 08:49:21 +0000 ROA not before: Fri 22 Aug 2025 08:49:21 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18046 IP address blocks: 119.15.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4722 (0x1272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:21 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B59E2232603FE08430B37E9B7A746EE69A996BF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:63:a3:cb:c7:e8:de:ad:cf:8e:0f:a6:1f:30: 51:d4:8f:a5:83:da:10:da:a7:3a:b7:75:34:99:f2: b6:60:c1:43:75:ab:a8:d5:47:1f:e0:ca:20:ff:8e: 4f:6a:14:3c:55:3d:4e:bc:52:cf:91:40:58:b5:89: e4:55:4b:fe:42:15:39:d7:01:c1:4c:77:f2:5f:d6: 7f:57:f0:19:cf:8c:05:ab:58:12:b2:60:9f:8f:28: 5d:ea:26:2a:6d:de:a8:fa:18:7d:12:52:89:1b:be: 1f:81:dc:9f:e5:05:95:89:cb:6a:ec:32:1d:85:a8: 3c:9e:81:39:bc:e7:41:3c:47:94:c5:ad:53:31:e4: 82:82:33:e5:5c:34:45:e9:97:7d:cb:4e:82:c0:b8: 85:ee:11:13:24:aa:9d:a3:10:19:e7:84:5f:37:0a: f5:b8:53:ab:7e:09:55:2b:d4:e8:ec:dd:90:4f:2e: 78:44:65:15:36:de:94:1f:42:24:67:a1:00:ee:39: 7b:92:2e:2f:e5:9c:3c:a1:29:e9:28:ca:ff:f0:8f: ac:f5:88:de:99:65:f0:2d:84:29:e3:39:13:0e:7a: 47:c7:52:45:90:18:90:6b:bd:6e:7a:8f:69:d3:6d: 34:b3:3e:8b:ce:32:3a:fe:af:8b:08:42:c5:a2:af: 05:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:9E:22:32:60:3F:E0:84:30:B3:7E:9B:7A:74:6E:E6:9A:99:6B:F2 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tZ4iMmA_4IQws36benRu5pqZa_I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.15.192.0/21 Signature Algorithm: sha256WithRSAEncryption 1e:7b:53:ef:d4:77:d7:46:35:b8:30:f5:3d:80:c4:74:db:20: 27:cf:9c:4d:c3:c5:e7:87:77:cc:81:e7:f8:8d:0c:d6:1f:92: d0:d2:62:19:0e:5b:d8:26:23:8c:d6:4f:48:5e:27:f0:19:ab: 7c:d5:fa:7d:f6:ab:4a:56:6d:f0:dd:a2:ba:39:38:38:b9:f6: 8a:e7:d1:41:90:55:5f:40:1d:56:40:56:af:74:54:f1:ce:63: 6f:93:16:d0:87:14:35:0a:44:d2:eb:20:a8:01:89:37:7b:86: c7:89:66:3d:2c:3b:14:3c:51:df:91:f1:b2:53:d5:b8:a5:68: 05:79:b2:0d:26:ac:1e:56:ef:b5:8d:2d:de:c6:87:d6:49:cb: 73:89:65:ec:2b:e4:b1:11:cc:cc:1a:9e:ab:ce:45:70:d4:04: f1:f5:90:26:f1:bb:ef:e2:b4:6f:e9:ff:49:d3:73:02:28:6c: 96:0a:ed:12:72:50:dd:ef:c6:32:d6:a5:33:65:6b:6c:c7:c7: 8c:a4:98:bc:b8:e3:5f:2a:c0:c0:25:ba:08:6a:d5:36:28:b6: 55:f3:63:f4:23:54:c2:b8:29:08:e1:7e:09:19:75:aa:9e:ab: 6d:c8:1e:80:b1:7a:39:2e:fe:af:f2:85:d5:f4:4e:61:9e:10: 15:79:83:d5 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEnIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI1OUUyMjMyNjAzRkUw ODQzMEIzN0U5QjdBNzQ2RUU2OUE5OTZCRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcY6PLx+jerc+OD6YfMFHUj6WD2hDapzq3dTSZ8rZgwUN1q6jV Rx/gyiD/jk9qFDxVPU68Us+RQFi1ieRVS/5CFTnXAcFMd/Jf1n9X8BnPjAWrWBKy YJ+PKF3qJipt3qj6GH0SUokbvh+B3J/lBZWJy2rsMh2FqDyegTm850E8R5TFrVMx 5IKCM+VcNEXpl33LToLAuIXuERMkqp2jEBnnhF83CvW4U6t+CVUr1Ojs3ZBPLnhE ZRU23pQfQiRnoQDuOXuSLi/lnDyhKekoyv/wj6z1iN6ZZfAthCnjORMOekfHUkWQ GJBrvW56j2nTbTSzPovOMjr+r4sIQsWirwVLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUtZ4iMmA/4IQws36benRu5pqZa/IwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvdFo0aU1tQV80SVF3czM2YmVuUnU1 cHFaYV9JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3cPwDAN BgkqhkiG9w0BAQsFAAOCAQEAHntT79R310Y1uDD1PYDEdNsgJ8+cTcPF54d3zIHn +I0M1h+S0NJiGQ5b2CYjjNZPSF4n8BmrfNX6ffarSlZt8N2iujk4OLn2iufRQZBV X0AdVkBWr3RU8c5jb5MW0IcUNQpE0usgqAGJN3uGx4lmPSw7FDxR35HxslPVuKVo BXmyDSasHlbvtY0t3saH1knLc4ll7CvksRHMzBqeq85FcNQE8fWQJvG77+K0b+n/ SdNzAihslgrtEnJQ3e/GMtalM2VrbMfHjKSYvLjjXyrAwCW6CGrVNii2VfNj9CNU wrgpCOF+CRl1qp6rbcgegLF6OS7+r/KF1fROYZ4QFXmD1Q== -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:16 2025 by rpki-client