$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/EMPs5jR7TMM0u75HyjIjJieNrC0.roa File: EMPs5jR7TMM0u75HyjIjJieNrC0.roa (raw, json) Hash identifier: 1F+FJZo91jEoOO4NPWw/R8snOoS8TCeOTIjNb7zwub0= Subject key identifier: 10:C3:EC:E6:34:7B:4C:C3:34:BB:BE:47:CA:32:23:26:27:8D:AC:2D Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 0202 Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/EMPs5jR7TMM0u75HyjIjJieNrC0.roa Signing time: Wed 14 May 2025 05:24:58 +0000 ROA not before: Wed 14 May 2025 05:24:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152609 IP address blocks: 157.20.249.65/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 08:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: May 14 05:24:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=10C3ECE6347B4CC334BBBE47CA322326278DAC2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b2:5f:6c:13:cc:38:b6:87:3f:28:c7:48:cd: fa:9a:ac:92:9b:ca:21:98:3b:7e:53:6d:51:c2:ee: 21:1c:ed:ae:41:78:1a:33:70:8a:1f:2c:04:23:95: 9d:0e:1d:ca:e8:9b:2e:f8:a8:13:42:bd:0a:0f:b3: 57:c3:c3:ed:bc:cd:5b:96:8d:01:47:91:7f:a3:29: a1:80:0d:b0:97:ca:eb:6b:cf:73:af:f1:12:bf:de: 49:4c:0b:b9:73:aa:cf:cc:85:48:64:8a:a8:e9:3d: 31:c8:49:37:bb:1e:30:ae:e2:13:94:15:ec:f1:30: 20:bd:4c:48:a3:ff:91:b3:63:1e:00:48:95:1c:de: 47:3b:39:eb:4a:f4:7c:fa:f4:d7:12:89:66:a3:cb: 76:df:f0:73:eb:dc:65:95:ce:18:54:de:2f:e5:69: b1:c4:20:a0:07:36:d9:4c:5f:22:70:36:14:e2:30: 27:ed:05:b9:e1:23:f8:e5:20:d0:65:db:27:d6:f9: d2:b2:b3:48:de:59:41:8c:e4:92:b8:05:b8:42:5f: 9a:df:36:40:3c:de:f4:a0:4e:90:06:ae:ee:76:32: cd:ee:22:dd:43:48:7e:e2:ac:10:60:c9:76:3a:c0: a0:fb:82:8b:7a:a4:9a:42:39:fe:70:ce:2e:ca:bb: c7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:C3:EC:E6:34:7B:4C:C3:34:BB:BE:47:CA:32:23:26:27:8D:AC:2D X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/EMPs5jR7TMM0u75HyjIjJieNrC0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.249.65/32 Signature Algorithm: sha256WithRSAEncryption 17:8e:04:c3:58:71:7b:00:f7:58:05:04:46:76:90:5b:1a:82: f1:ee:cf:25:9a:ff:6b:eb:62:de:b5:6e:dc:b6:bb:6a:23:24: b6:38:f4:80:61:06:da:39:a9:85:e0:74:7c:ab:ff:ff:f1:1c: 3a:a5:b3:4e:da:ad:f0:ef:5e:55:74:d2:74:7f:42:de:2f:41: f5:05:85:d7:09:78:e0:1f:cf:e5:b5:41:e6:9e:8d:65:ec:05: 9c:6d:4d:9a:01:d7:79:53:5c:33:03:bc:d1:c7:05:d7:46:96: 5a:83:fc:6d:3f:b5:37:cc:56:1e:e2:f6:47:18:be:04:ad:4d: 88:7e:20:dd:85:78:d8:a4:3f:cc:37:dc:84:12:30:42:6f:cd: 5c:65:bb:28:32:21:8b:81:a5:b5:68:c4:6b:85:9c:1f:e2:ec: 2e:89:47:44:7a:5c:ba:47:10:4f:b0:a4:75:d4:e2:03:45:8b: 33:44:63:38:cc:11:44:9e:fa:0f:62:d5:8f:b1:77:80:95:1a: 1c:df:fa:21:fa:c9:c0:84:a9:7c:67:a3:cf:30:91:b9:ac:d5: 3b:bf:91:77:13:7f:eb:d0:0a:21:c5:d4:89:67:97:5e:b1:7b: 86:7f:09:72:64:c5:bd:65:74:c1:ef:03:a2:fa:88:b2:22:3b: 79:0a:3f:eb -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA1MTQw NTI0NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEwQzNFQ0U2MzQ3QjRD QzMzNEJCQkU0N0NBMzIyMzI2Mjc4REFDMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9sl9sE8w4toc/KMdIzfqarJKbyiGYO35TbVHC7iEc7a5BeBoz cIofLAQjlZ0OHcromy74qBNCvQoPs1fDw+28zVuWjQFHkX+jKaGADbCXyutrz3Ov 8RK/3klMC7lzqs/MhUhkiqjpPTHISTe7HjCu4hOUFezxMCC9TEij/5GzYx4ASJUc 3kc7OetK9Hz69NcSiWajy3bf8HPr3GWVzhhU3i/labHEIKAHNtlMXyJwNhTiMCft BbnhI/jlINBl2yfW+dKys0jeWUGM5JK4BbhCX5rfNkA83vSgTpAGru52Ms3uIt1D SH7irBBgyXY6wKD7got6pJpCOf5wzi7Ku8e3AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUEMPs5jR7TMM0u75HyjIjJieNrC0wHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84 enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvRU1QczVqUjdUTU0wdTc1SHlqSWpK aWVOckMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+UEw DQYJKoZIhvcNAQELBQADggEBABeOBMNYcXsA91gFBEZ2kFsagvHuzyWa/2vrYt61 bty2u2ojJLY49IBhBto5qYXgdHyr///xHDqls07arfDvXlV00nR/Qt4vQfUFhdcJ eOAfz+W1QeaejWXsBZxtTZoB13lTXDMDvNHHBddGllqD/G0/tTfMVh7i9kcYvgSt TYh+IN2FeNikP8w33IQSMEJvzVxluygyIYuBpbVoxGuFnB/i7C6JR0R6XLpHEE+w pHXU4gNFizNEYzjMEUSe+g9i1Y+xd4CVGhzf+iH6ycCEqXxno88wkbms1Tu/kXcT f+vQCiHF1Ilnl16xe4Z/CXJkxb1ldMHvA6L6iLIiO3kKP+s= -----END CERTIFICATE-----Generated at Mon May 19 07:35:45 2025 by rpki-client