$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/PIlTgdxB0u6o2GRS7hcGBHNH3xY.roa File: PIlTgdxB0u6o2GRS7hcGBHNH3xY.roa (raw, json) Hash identifier: Bs5vRb2QaA9yQ31Zn7Ii7X+sMpd+cow79PIAMwlnEOs= Subject key identifier: 3C:89:53:81:DC:41:D2:EE:A8:D8:64:52:EE:17:06:04:73:47:DF:16 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1391 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/PIlTgdxB0u6o2GRS7hcGBHNH3xY.roa Signing time: Thu 02 Apr 2026 03:00:14 +0000 ROA not before: Thu 02 Apr 2026 03:00:14 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9416 IP address blocks: 203.217.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 11:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5009 (0x1391) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Apr 2 03:00:14 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3C895381DC41D2EEA8D86452EE1706047347DF16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4a:05:94:08:23:88:ac:9f:6d:d7:0a:4d:49: 1f:cd:22:57:13:73:79:1a:71:e0:42:59:0d:c7:7d: 95:c4:b0:d8:3e:9a:3b:1a:5c:26:54:c1:9e:2f:2a: 4f:50:39:12:cf:c0:97:17:e4:4a:c1:70:fd:27:c6: 99:35:40:52:0c:ae:62:1f:8e:4c:fa:1a:d3:fc:b6: b1:aa:07:cc:95:97:e4:89:dd:0e:d4:08:34:d4:41: 85:4a:b7:05:a2:4a:7a:8f:93:f1:ff:6f:ba:7d:84: 32:4d:ee:fc:9b:9a:45:30:f7:87:6b:1e:f9:4a:a0: 77:6e:e0:59:aa:cb:be:4e:aa:be:18:61:74:ef:6b: 01:71:46:6e:e3:4c:7d:3b:d7:8c:36:4f:8e:1c:25: c2:3b:77:c5:61:eb:59:9b:85:5e:4c:c2:29:7c:61: 49:8c:5a:5b:5e:8d:67:d9:c8:ad:ab:85:b0:99:3b: 18:00:28:5c:7b:ec:42:5e:0a:48:3d:09:29:aa:cd: 60:2b:bd:03:d8:a0:21:f9:83:d6:1f:58:6a:22:e2: d3:6e:a7:f4:ac:60:73:9a:99:46:b9:34:d1:54:9b: aa:8c:d0:ba:8d:bb:f1:58:dd:1d:09:af:b9:dc:09: 2c:71:a0:d3:d4:ff:ab:f3:b1:19:44:6f:24:fb:80: 47:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:89:53:81:DC:41:D2:EE:A8:D8:64:52:EE:17:06:04:73:47:DF:16 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/PIlTgdxB0u6o2GRS7hcGBHNH3xY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.217.96.0/19 Signature Algorithm: sha256WithRSAEncryption 09:a9:2e:2c:f2:92:00:98:c9:88:76:9e:8c:a8:9d:99:57:ff: 05:33:9d:a1:e8:1d:57:da:f3:3e:b8:51:54:34:32:03:2d:56: d1:bd:80:3d:b3:e3:8d:9a:44:bb:e1:42:c8:fd:d1:4b:6d:f8: cf:df:51:14:c6:45:97:b8:e5:a1:bf:c2:6a:ec:ae:88:b2:d5: 72:d8:42:c3:0e:6f:18:43:1a:e7:60:1b:33:09:4f:4d:62:fa: 3b:ea:9a:36:b4:7f:0d:0c:15:bb:42:c6:c9:f5:a1:91:c7:bf: 6c:1c:e3:d6:e7:67:3f:43:a2:d3:a4:3c:98:15:74:5c:d1:7c: a8:f4:7f:18:0f:9c:44:97:80:10:23:b8:01:44:8f:9e:2d:22: 74:0f:d0:6a:b8:54:c2:46:dc:c2:47:b9:a6:da:b4:85:da:fe: 33:39:d9:82:2c:5a:8f:f3:b9:2d:f3:f3:42:26:33:36:2b:d9: 98:8e:7a:0b:c9:91:03:53:dd:28:03:43:58:d9:11:59:c6:bb: 50:9b:b9:10:b7:17:81:aa:9d:36:ac:c0:58:a9:9c:a7:c9:5e: f1:ce:f2:42:db:89:56:b8:e3:95:e8:22:d1:85:99:fd:26:b7: af:87:40:27:d1:0c:da:7f:08:0a:f5:f6:9d:93:c5:59:6a:e5: f9:23:05:6d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE5EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNjA0MDIw MzAwMTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNDODk1MzgxREM0MUQy RUVBOEQ4NjQ1MkVFMTcwNjA0NzM0N0RGMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGSgWUCCOIrJ9t1wpNSR/NIlcTc3kaceBCWQ3HfZXEsNg+mjsa XCZUwZ4vKk9QORLPwJcX5ErBcP0nxpk1QFIMrmIfjkz6GtP8trGqB8yVl+SJ3Q7U CDTUQYVKtwWiSnqPk/H/b7p9hDJN7vybmkUw94drHvlKoHdu4Fmqy75Oqr4YYXTv awFxRm7jTH0714w2T44cJcI7d8Vh61mbhV5Mwil8YUmMWltejWfZyK2rhbCZOxgA KFx77EJeCkg9CSmqzWArvQPYoCH5g9YfWGoi4tNup/SsYHOamUa5NNFUm6qM0LqN u/FY3R0Jr7ncCSxxoNPU/6vzsRlEbyT7gEd/AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUPIlTgdxB0u6o2GRS7hcGBHNH3xYwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvUElsVGdkeEIwdTZvMkdSUzdoY0dC SE5IM3hZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcvZYDAN BgkqhkiG9w0BAQsFAAOCAQEACakuLPKSAJjJiHaejKidmVf/BTOdoegdV9rzPrhR VDQyAy1W0b2APbPjjZpEu+FCyP3RS234z99RFMZFl7jlob/CauyuiLLVcthCww5v GEMa52AbMwlPTWL6O+qaNrR/DQwVu0LGyfWhkce/bBzj1udnP0Oi06Q8mBV0XNF8 qPR/GA+cRJeAECO4AUSPni0idA/QarhUwkbcwke5ptq0hdr+MznZgixaj/O5LfPz QiYzNivZmI56C8mRA1PdKANDWNkRWca7UJu5ELcXgaqdNqzAWKmcp8le8c7yQtuJ Vrjjlegi0YWZ/Sa3r4dAJ9EM2n8ICvX2nZPFWWrl+SMFbQ== -----END CERTIFICATE-----Generated at Fri Apr 17 09:29:08 2026 by rpki-client