$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/zmCJFYJmjtoZiGx93ryvFWdzYD0.roa File: zmCJFYJmjtoZiGx93ryvFWdzYD0.roa (raw, json) Hash identifier: i8jYjDLOHyRz9x5CLRM5SDfwC9mDsXREkwG2D+5ilG0= Subject key identifier: CE:60:89:15:82:66:8E:DA:19:88:6C:7D:DE:BC:AF:15:67:73:60:3D Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1257 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zmCJFYJmjtoZiGx93ryvFWdzYD0.roa Signing time: Fri 22 Aug 2025 08:49:14 +0000 ROA not before: Fri 22 Aug 2025 08:49:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 113.61.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4695 (0x1257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CE60891582668EDA19886C7DDEBCAF156773603D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5e:dd:01:03:e1:08:4a:4a:00:48:25:20:0b: 42:93:e6:0b:da:ee:a4:8d:c2:c4:e7:20:9d:d9:f3: f6:86:2a:c5:10:77:20:aa:8c:fc:da:03:75:cd:b5: ce:3d:7a:a8:f8:06:b8:ec:a3:9d:e4:b1:85:92:42: 1a:11:2e:dd:a8:15:7d:bc:d9:5a:38:ef:1c:ff:89: 99:d2:80:5d:ae:50:04:6f:92:89:58:ad:98:a7:0a: 58:ea:99:29:66:34:bb:9a:8c:15:84:f4:d2:49:1d: 7c:ef:29:c6:fa:d0:dc:0b:90:84:af:e1:f5:12:d9: 09:52:7c:f8:9c:38:e2:58:c7:56:5e:b7:12:64:ea: 91:4f:da:cb:b0:4d:37:18:09:a7:df:e4:b7:4e:b9: 11:41:dd:91:79:84:00:1d:59:2e:cd:38:81:ed:a7: ad:cf:b3:b9:c5:6a:1c:9d:8b:51:f9:ef:34:ca:7d: 6b:b9:82:94:aa:82:20:0e:f1:75:44:39:aa:47:99: 19:08:7b:df:06:1d:a3:1e:65:3b:0e:92:55:f3:63: 84:fa:4d:1e:c0:d9:ad:2c:c8:97:a4:67:99:61:cb: a1:f5:59:7c:5e:9a:bc:5e:44:7e:0a:58:da:e2:6c: 02:0d:87:00:ac:cf:de:a9:59:e2:02:fc:bc:63:1a: 0b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:60:89:15:82:66:8E:DA:19:88:6C:7D:DE:BC:AF:15:67:73:60:3D X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zmCJFYJmjtoZiGx93ryvFWdzYD0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.128.0/20 Signature Algorithm: sha256WithRSAEncryption b5:f5:66:ab:ec:a0:88:5f:20:07:dc:56:25:50:f7:52:e5:22: 5b:9a:1a:ff:0f:e9:b2:c8:d2:fc:72:f8:b6:72:3f:c2:6a:54: 8c:8c:33:7b:99:ed:3d:d9:ab:18:5c:24:aa:59:cd:51:b3:8a: 4c:c8:ac:7f:e9:d2:0e:93:21:0c:b8:33:ec:5b:70:55:76:0d: e3:8c:13:d5:47:10:07:e7:7b:ac:5c:7c:da:42:b7:6a:5b:97: 4a:74:4b:86:3e:1e:07:7c:5d:dc:71:bb:21:39:d3:e9:bb:fb: ad:45:bc:45:ee:fc:a9:b1:86:06:45:c8:d0:a5:e4:ab:0f:a8: b0:03:e4:3f:23:18:96:fc:f6:cc:25:ee:69:c5:54:ca:97:03: 30:3d:7c:83:30:07:2f:59:21:9e:c9:2e:a0:e9:fa:c3:0e:b1: 19:57:a2:26:76:75:05:00:ea:3d:c0:c8:12:4b:66:d5:1c:f8: 4c:0b:2b:21:5d:d7:91:5f:b6:92:1f:e6:d4:34:0b:77:27:f0: 1f:52:6a:bd:7b:21:15:b3:91:76:23:06:c3:26:2f:39:ae:f5: 0e:5d:57:09:eb:d0:e4:ec:40:c1:f2:b4:b5:f7:f9:a6:f9:b6: 8d:62:d6:b3:32:3c:2b:b0:f9:46:51:cb:cc:ab:f8:4b:a0:54: 2a:5b:e0:23 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICElcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENFNjA4OTE1ODI2NjhF REExOTg4NkM3RERFQkNBRjE1Njc3MzYwM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQXt0BA+EISkoASCUgC0KT5gva7qSNwsTnIJ3Z8/aGKsUQdyCq jPzaA3XNtc49eqj4Brjso53ksYWSQhoRLt2oFX282Vo47xz/iZnSgF2uUARvkolY rZinCljqmSlmNLuajBWE9NJJHXzvKcb60NwLkISv4fUS2QlSfPicOOJYx1ZetxJk 6pFP2suwTTcYCaff5LdOuRFB3ZF5hAAdWS7NOIHtp63Ps7nFahydi1H57zTKfWu5 gpSqgiAO8XVEOapHmRkIe98GHaMeZTsOklXzY4T6TR7A2a0syJekZ5lhy6H1WXxe mrxeRH4KWNribAINhwCsz96pWeIC/LxjGgsrAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUzmCJFYJmjtoZiGx93ryvFWdzYD0wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvem1DSkZZSm1qdG9aaUd4OTNyeXZG V2R6WUQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHE9gDAN BgkqhkiG9w0BAQsFAAOCAQEAtfVmq+ygiF8gB9xWJVD3UuUiW5oa/w/pssjS/HL4 tnI/wmpUjIwze5ntPdmrGFwkqlnNUbOKTMisf+nSDpMhDLgz7FtwVXYN44wT1UcQ B+d7rFx82kK3aluXSnRLhj4eB3xd3HG7ITnT6bv7rUW8Re78qbGGBkXI0KXkqw+o sAPkPyMYlvz2zCXuacVUypcDMD18gzAHL1khnskuoOn6ww6xGVeiJnZ1BQDqPcDI Ektm1Rz4TAsrIV3XkV+2kh/m1DQLdyfwH1JqvXshFbORdiMGwyYvOa71Dl1XCevQ 5OxAwfK0tff5pvm2jWLWszI8K7D5RlHLzKv4S6BUKlvgIw== -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:18 2025 by rpki-client