$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/yzxHJpeuO28j4dxDytzTRXV3p-M.roa File: yzxHJpeuO28j4dxDytzTRXV3p-M.roa (raw, json) Hash identifier: 73PcKq+iWjSg8sVjNjAXELs2DmNf7c8uxoGquFAEVpI= Subject key identifier: CB:3C:47:26:97:AE:3B:6F:23:E1:DC:43:CA:DC:D3:45:75:77:A7:E3 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1249 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/yzxHJpeuO28j4dxDytzTRXV3p-M.roa Signing time: Fri 22 Aug 2025 08:49:10 +0000 ROA not before: Fri 22 Aug 2025 08:49:10 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 203.222.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4681 (0x1249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=CB3C472697AE3B6F23E1DC43CADCD3457577A7E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e1:35:e1:31:85:e9:ef:22:f3:80:0e:9d:a4: 99:23:bf:8a:c7:c1:b0:c0:2f:da:fb:ae:c1:15:78: 3b:2f:6b:6e:1f:1d:a7:8a:88:35:ad:37:6a:88:81: 79:bd:85:25:26:df:bf:14:33:88:33:76:e5:aa:26: 9c:08:b7:3c:bb:03:5e:df:46:39:fd:bf:ad:35:d5: 5a:a3:3f:2f:6c:d0:5e:c6:2d:28:dd:f6:16:8f:68: d0:5f:5d:c4:35:83:55:f6:14:43:66:21:5a:2d:0c: 1d:a8:b9:ec:07:16:0e:55:c8:f1:67:5d:08:af:91: 03:44:8f:12:15:60:47:77:c7:14:29:1b:23:cd:06: b3:30:3b:0f:d0:f9:32:15:b5:76:4e:fa:73:ca:44: fa:4f:6f:76:eb:63:26:10:57:45:d9:d0:f1:4f:f5: 56:98:79:8a:bc:8d:f7:37:66:4e:9c:b3:44:57:3a: e2:b5:09:80:b7:30:af:cb:4e:ee:ee:50:b7:75:23: 7c:f0:7e:6a:4b:b1:85:5d:83:1a:06:62:a8:85:62: 4d:cf:f4:5d:b4:cd:0e:f1:02:1d:37:3c:a9:2b:31: be:a2:3a:b4:0b:2c:e2:46:ae:ad:29:50:b9:15:db: 4e:cd:34:28:e1:eb:35:21:a3:53:b5:dd:c6:27:fd: 92:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:3C:47:26:97:AE:3B:6F:23:E1:DC:43:CA:DC:D3:45:75:77:A7:E3 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/yzxHJpeuO28j4dxDytzTRXV3p-M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.8.0/22 Signature Algorithm: sha256WithRSAEncryption 48:12:34:bf:f6:97:66:7d:e9:64:29:31:2a:c1:c9:15:45:a2: 8a:7d:5c:33:36:8d:a1:31:a3:e1:a5:71:39:9d:f5:9d:43:4a: 19:db:91:0a:fd:2c:e7:bb:ba:ea:42:32:05:b4:64:4b:c7:29: 4c:10:b3:4e:5d:24:74:94:9e:d8:e1:58:55:a1:39:e9:9b:dd: 42:41:24:dd:de:d5:8a:66:5a:4d:50:72:1d:62:a3:97:8d:98: 3d:74:3a:92:a5:19:aa:b6:db:45:26:6d:44:99:3e:0a:fc:b9: e7:c3:a7:a6:14:a4:ee:af:0d:bb:d8:2e:75:19:c6:77:0b:e5: 57:1b:0e:f2:cc:1b:43:82:dc:6f:12:71:a6:fc:42:11:43:1c: a1:c7:a4:28:04:39:3a:64:2b:2e:0e:ac:a1:da:4c:b6:8e:31: 1e:85:40:53:fb:02:be:44:45:7c:2a:98:8e:97:fa:88:20:27: 20:ac:3c:fc:ed:5d:4a:f6:42:b5:0f:33:a9:00:04:82:ca:f4: 7b:87:e3:12:87:51:a4:35:47:17:83:0e:8f:63:a7:9f:8f:00: 0c:1e:1b:7a:21:aa:f0:97:3d:a7:30:6b:d7:b2:ef:a8:7f:c1: c1:77:79:3b:16:65:7d:4b:e8:46:ba:91:b3:65:17:54:bf:b6: 77:6d:16:9c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEkkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENCM0M0NzI2OTdBRTNC NkYyM0UxREM0M0NBRENEMzQ1NzU3N0E3RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC54TXhMYXp7yLzgA6dpJkjv4rHwbDAL9r7rsEVeDsva24fHaeK iDWtN2qIgXm9hSUm378UM4gzduWqJpwItzy7A17fRjn9v6011VqjPy9s0F7GLSjd 9haPaNBfXcQ1g1X2FENmIVotDB2ouewHFg5VyPFnXQivkQNEjxIVYEd3xxQpGyPN BrMwOw/Q+TIVtXZO+nPKRPpPb3brYyYQV0XZ0PFP9VaYeYq8jfc3Zk6cs0RXOuK1 CYC3MK/LTu7uULd1I3zwfmpLsYVdgxoGYqiFYk3P9F20zQ7xAh03PKkrMb6iOrQL LOJGrq0pULkV207NNCjh6zUho1O13cYn/ZLnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUyzxHJpeuO28j4dxDytzTRXV3p+MwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgveXp4SEpwZXVPMjhqNGR4RHl0elRS WFYzcC1NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsveCDAN BgkqhkiG9w0BAQsFAAOCAQEASBI0v/aXZn3pZCkxKsHJFUWiin1cMzaNoTGj4aVx OZ31nUNKGduRCv0s57u66kIyBbRkS8cpTBCzTl0kdJSe2OFYVaE56ZvdQkEk3d7V imZaTVByHWKjl42YPXQ6kqUZqrbbRSZtRJk+Cvy558OnphSk7q8Nu9gudRnGdwvl VxsO8swbQ4LcbxJxpvxCEUMcocekKAQ5OmQrLg6sodpMto4xHoVAU/sCvkRFfCqY jpf6iCAnIKw8/O1dSvZCtQ8zqQAEgsr0e4fjEodRpDVHF4MOj2Onn48ADB4beiGq 8Jc9pzBr17LvqH/BwXd5OxZlfUvoRrqRs2UXVL+2d20WnA== -----END CERTIFICATE-----Generated at Wed Nov 5 21:24:26 2025 by rpki-client