$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/-cE2F9wrgQnlAVDUgg1KCo70rD0.roa File: -cE2F9wrgQnlAVDUgg1KCo70rD0.roa (raw, json) Hash identifier: Aioqry+0+xJbrm6DqenN8XDAjgH0nM5X0ALb8X+ZUPE= Subject key identifier: F9:C1:36:17:DC:2B:81:09:E5:01:50:D4:82:0D:4A:0A:8E:F4:AC:3D Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 103D Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/-cE2F9wrgQnlAVDUgg1KCo70rD0.roa Signing time: Mon 26 Aug 2024 05:13:32 +0000 ROA not before: Mon 26 Aug 2024 05:13:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 27.96.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4157 (0x103d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F9C13617DC2B8109E50150D4820D4A0A8EF4AC3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8f:99:fd:7b:ec:49:73:23:d7:5f:86:da:59: 5e:5e:ec:63:0e:04:00:0c:5b:11:94:22:5c:55:53: c6:81:59:c6:93:fa:61:e3:e5:5c:56:ae:33:ab:d3: b4:f2:82:c3:5d:e5:80:cc:24:92:76:14:98:8c:55: 37:94:0e:0d:11:e3:90:69:0d:6c:d5:b1:fa:37:d7: 41:94:fe:e3:82:96:47:a2:fc:ce:2b:12:7c:a1:e2: a8:9c:ff:72:45:a5:17:fe:aa:a3:e8:0b:b1:48:bd: 37:62:c7:d5:1c:a9:34:b3:b9:45:d1:22:e7:11:d5: 7a:e1:f3:17:6f:e0:c4:b8:ec:6a:1f:94:0c:8e:7f: 71:01:e5:e3:d1:4b:41:f8:c1:02:67:94:16:7a:92: dd:c2:c6:0b:2e:27:c8:68:83:56:f2:38:70:fa:21: 00:53:6e:98:99:6d:c6:d8:04:62:2f:1c:2c:0d:11: 0e:32:6b:9f:0a:74:3e:99:27:cc:a1:fb:8e:d3:46: ae:9c:0b:fa:4a:43:7c:5a:17:73:0c:b5:17:34:34: 66:8d:23:f0:bd:6f:d6:09:2c:74:20:47:05:06:77: a7:68:13:28:4b:c1:ce:ee:66:5f:29:b7:43:3a:5b: 7c:95:db:82:69:cd:eb:3e:92:c0:c3:24:e4:75:b9: 26:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C1:36:17:DC:2B:81:09:E5:01:50:D4:82:0D:4A:0A:8E:F4:AC:3D X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/-cE2F9wrgQnlAVDUgg1KCo70rD0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.240.0/22 Signature Algorithm: sha256WithRSAEncryption 94:00:9c:82:bf:d4:81:98:b9:6b:64:63:24:fa:57:47:d5:9b: d6:d3:95:ea:c5:a3:f5:29:b3:2e:43:4b:b1:c4:6e:8e:e6:c7: 33:20:3e:53:e2:0a:77:3b:d6:e9:00:2f:5a:c8:7c:7e:58:55: cc:4c:c0:84:07:60:a4:ea:8f:10:b2:01:e7:fa:bd:ef:51:28: 16:b3:68:de:3d:8b:15:60:41:24:f2:6a:f1:e5:8c:fa:6f:17: c3:38:72:53:06:0c:2a:0b:53:f9:c3:b9:48:41:ca:0f:d0:c3: f2:9c:57:e5:84:6a:88:0e:e8:94:cd:d9:f4:72:13:47:b7:c2: 00:ae:31:18:2f:ef:64:a3:bb:3d:3d:55:75:00:91:24:8f:51: 0b:f7:a1:f4:eb:10:01:26:45:1b:62:d7:52:d7:55:5c:53:ad: e4:22:44:3f:90:74:d7:37:4c:05:c6:27:c4:dc:db:23:79:68: d0:c9:94:c7:17:75:31:e7:74:ac:13:7d:04:a4:82:30:21:c5: 84:13:f7:d5:2e:86:85:f7:ed:99:d4:87:fa:e4:32:90:90:40: db:3a:1d:ab:73:bf:48:45:8d:d4:ec:c9:d7:46:74:fa:ba:79: 0b:69:69:b3:24:a1:8f:5e:3e:bc:fe:26:83:b4:09:22:bb:33: 89:85:49:5d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICED0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5QzEzNjE3REMyQjgx MDlFNTAxNTBENDgyMEQ0QTBBOEVGNEFDM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDj5n9e+xJcyPXX4baWV5e7GMOBAAMWxGUIlxVU8aBWcaT+mHj 5VxWrjOr07TygsNd5YDMJJJ2FJiMVTeUDg0R45BpDWzVsfo310GU/uOClkei/M4r Enyh4qic/3JFpRf+qqPoC7FIvTdix9UcqTSzuUXRIucR1Xrh8xdv4MS47GoflAyO f3EB5ePRS0H4wQJnlBZ6kt3CxgsuJ8hog1byOHD6IQBTbpiZbcbYBGIvHCwNEQ4y a58KdD6ZJ8yh+47TRq6cC/pKQ3xaF3MMtRc0NGaNI/C9b9YJLHQgRwUGd6doEyhL wc7uZl8pt0M6W3yV24Jpzes+ksDDJOR1uSaLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU+cE2F9wrgQnlAVDUgg1KCo70rD0wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvLWNFMkY5d3JnUW5sQVZEVWdnMUtD bzcwckQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhtg8DAN BgkqhkiG9w0BAQsFAAOCAQEAlACcgr/UgZi5a2RjJPpXR9Wb1tOV6sWj9SmzLkNL scRujubHMyA+U+IKdzvW6QAvWsh8flhVzEzAhAdgpOqPELIB5/q971EoFrNo3j2L FWBBJPJq8eWM+m8XwzhyUwYMKgtT+cO5SEHKD9DD8pxX5YRqiA7olM3Z9HITR7fC AK4xGC/vZKO7PT1VdQCRJI9RC/eh9OsQASZFG2LXUtdVXFOt5CJEP5B01zdMBcYn xNzbI3lo0MmUxxd1Med0rBN9BKSCMCHFhBP31S6GhfftmdSH+uQykJBA2zodq3O/ SEWN1OzJ10Z0+rp5C2lpsyShj14+vP4mg7QJIrsziYVJXQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org