$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/AFvBIZy6d_dbN8hFEgQdl_JTKbs.roa File: AFvBIZy6d_dbN8hFEgQdl_JTKbs.roa (raw, json) Hash identifier: PGJLFUh2GI647w/XohFkJrleB/vFOpXE2zE0iDRYF5c= Subject key identifier: 00:5B:C1:21:9C:BA:77:F7:5B:37:C8:45:12:04:1D:97:F2:53:29:BB Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 11ED Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/AFvBIZy6d_dbN8hFEgQdl_JTKbs.roa Signing time: Tue 03 Jun 2025 06:12:27 +0000 ROA not before: Tue 03 Jun 2025 06:12:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 210.209.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 02:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4589 (0x11ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Jun 3 06:12:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=005BC1219CBA77F75B37C84512041D97F25329BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ca:46:7e:dc:09:39:70:e7:22:8c:0d:db:74: 17:9e:1b:da:df:ab:eb:10:b7:10:38:3d:5e:9c:f9: 9e:9f:71:1a:4b:64:90:4d:17:37:6b:b2:7e:e0:f4: bf:a5:c9:e7:b0:bd:50:17:4b:c3:08:49:5c:8a:9e: bf:77:d9:85:a6:a9:f3:ca:a9:cb:32:81:12:6f:49: e6:b0:f8:c6:91:63:c6:7b:7f:53:ce:b4:da:dd:d8: a9:95:f2:51:21:24:99:7c:67:c7:86:ba:a1:06:b9: 66:59:d9:ab:a1:d7:8f:77:3d:e3:67:98:26:b0:f9: 13:13:cd:c4:2a:3b:ba:e3:5d:60:75:07:06:04:0a: 0a:5e:92:9f:77:f3:86:25:c6:2b:c2:9f:f2:95:f0: 3b:0e:33:70:4b:1c:9d:91:3e:4d:a9:a6:9c:c9:b4: ae:d3:05:3b:5c:d8:29:da:0f:23:a6:65:91:47:8b: 0b:af:ae:7a:ca:0c:4e:ef:61:af:3c:7b:f1:63:d5: 98:16:47:2c:30:8f:e3:e5:07:b4:ca:f4:1a:a3:a8: 91:8f:05:c6:5c:1b:e8:7d:45:a1:0a:86:10:b1:5e: dd:65:42:36:dc:8b:2e:bf:f0:9f:07:73:21:ca:3f: 58:51:52:84:41:d8:1e:d9:d9:bb:7f:43:41:47:81: 87:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:5B:C1:21:9C:BA:77:F7:5B:37:C8:45:12:04:1D:97:F2:53:29:BB X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/AFvBIZy6d_dbN8hFEgQdl_JTKbs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.209.224.0/20 Signature Algorithm: sha256WithRSAEncryption 2a:08:f6:23:fd:c5:a5:f6:da:e5:d1:1a:19:7c:96:1e:eb:19: 92:69:b4:ee:cc:78:53:a8:6f:4f:7e:47:e6:65:19:02:f7:12: a3:bb:99:2e:36:59:38:23:8e:8d:fc:1f:ea:12:7c:be:ea:eb: d9:ec:90:49:a0:ab:0b:f3:e2:14:51:9c:84:33:96:90:03:8b: 5c:9d:8c:32:42:df:8c:92:31:fa:d6:2e:bf:76:70:51:89:9e: c6:ba:f8:72:3a:b2:68:4b:1e:15:c0:98:4e:dc:4e:67:95:9b: 45:a4:16:02:95:90:91:d8:8f:6f:0e:3c:7c:d0:19:bf:e7:86: 22:88:86:8b:03:1b:5f:f3:d1:48:15:34:73:85:63:b1:9e:96: 85:43:15:87:bb:95:5f:8f:ce:56:8f:21:cd:7b:31:c5:86:15: 77:08:01:0b:03:af:70:aa:0c:db:32:b4:23:ca:fb:03:1a:51: 5c:b3:c4:de:e5:87:96:62:c3:ea:5f:72:eb:ef:34:f7:75:2c: 99:35:5c:1e:5d:ae:87:ce:c9:ec:5e:95:63:d2:36:4c:4c:a2: f8:7c:31:ae:78:ce:52:21:38:86:48:87:25:47:db:99:52:75: 3a:11:76:47:7b:d4:f2:83:00:1d:87:7e:dc:6c:23:9d:f8:e9: 72:e4:d7:9b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA2MDMw NjEyMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAwNUJDMTIxOUNCQTc3 Rjc1QjM3Qzg0NTEyMDQxRDk3RjI1MzI5QkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmykZ+3Ak5cOcijA3bdBeeG9rfq+sQtxA4PV6c+Z6fcRpLZJBN Fzdrsn7g9L+lyeewvVAXS8MISVyKnr932YWmqfPKqcsygRJvSeaw+MaRY8Z7f1PO tNrd2KmV8lEhJJl8Z8eGuqEGuWZZ2auh1493PeNnmCaw+RMTzcQqO7rjXWB1BwYE Cgpekp9384YlxivCn/KV8DsOM3BLHJ2RPk2pppzJtK7TBTtc2CnaDyOmZZFHiwuv rnrKDE7vYa88e/Fj1ZgWRywwj+PlB7TK9BqjqJGPBcZcG+h9RaEKhhCxXt1lQjbc iy6/8J8HcyHKP1hRUoRB2B7Z2bt/Q0FHgYeVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUAFvBIZy6d/dbN8hFEgQdl/JTKbswHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvQUZ2QklaeTZkX2RiTjhoRkVnUWRs X0pUS2JzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNLR4DAN BgkqhkiG9w0BAQsFAAOCAQEAKgj2I/3Fpfba5dEaGXyWHusZkmm07sx4U6hvT35H 5mUZAvcSo7uZLjZZOCOOjfwf6hJ8vurr2eyQSaCrC/PiFFGchDOWkAOLXJ2MMkLf jJIx+tYuv3ZwUYmexrr4cjqyaEseFcCYTtxOZ5WbRaQWApWQkdiPbw48fNAZv+eG IoiGiwMbX/PRSBU0c4VjsZ6WhUMVh7uVX4/OVo8hzXsxxYYVdwgBCwOvcKoM2zK0 I8r7AxpRXLPE3uWHlmLD6l9y6+8093UsmTVcHl2uh87J7F6VY9I2TEyi+HwxrnjO UiE4hkiHJUfbmVJ1OhF2R3vU8oMAHYd+3GwjnfjpcuTXmw== -----END CERTIFICATE-----Generated at Wed Jun 25 02:26:10 2025 by rpki-client