$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/0zOj3mBH8qSnrqcOYq5nNN4nSc4.roa File: 0zOj3mBH8qSnrqcOYq5nNN4nSc4.roa (raw, json) Hash identifier: 79+A9NopwmHhi4u02LJ2NyitkbT9mSXzZxvctXgEk8Q= Subject key identifier: D3:33:A3:DE:60:47:F2:A4:A7:AE:A7:0E:62:AE:67:34:DE:27:49:CE Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FF9 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/0zOj3mBH8qSnrqcOYq5nNN4nSc4.roa Signing time: Mon 26 Aug 2024 05:13:15 +0000 ROA not before: Mon 26 Aug 2024 05:13:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 182.155.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4089 (0xff9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D333A3DE6047F2A4A7AEA70E62AE6734DE2749CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:26:92:5c:f8:6d:77:cd:94:b9:91:d7:d0:7e: c6:30:39:21:b2:13:dd:24:50:93:7c:14:3e:19:5b: 85:eb:10:b4:1f:de:65:71:74:a5:c3:e6:69:d2:da: 14:2f:a8:0a:67:75:fe:bb:17:2e:2d:c4:a1:03:96: 1e:03:4b:23:79:74:1a:6f:6a:7b:2b:b5:c2:9d:41: 8f:65:92:1a:70:ac:16:9a:de:c8:73:7b:a2:5d:4d: e7:5f:95:cf:4b:ae:7a:26:42:92:f0:17:35:61:a2: b9:ac:09:a6:dc:96:85:b9:ad:b2:b0:9d:4c:9f:19: 4e:d2:5e:30:31:45:25:c5:27:ae:76:e8:9c:b8:09: d4:6f:d4:8e:87:ec:d3:de:e7:96:2f:62:c1:68:d1: 73:4d:4d:87:7c:7b:cc:b1:27:42:ff:da:98:da:52: 89:0c:f7:81:90:98:e6:ed:3f:0d:03:2a:0a:e9:87: d6:db:aa:d4:9d:79:b2:94:52:5e:d6:58:6f:f0:2c: 85:dd:be:d0:b8:4c:34:3e:78:6a:5f:45:f7:60:48: fe:19:06:f5:06:b2:d4:ad:f5:9c:c7:1a:2f:56:a2: b4:aa:d2:8c:91:fb:fd:55:6d:cc:be:42:bf:6c:a3: 6d:61:a3:bf:7f:53:ae:ef:2b:b4:92:80:b0:8e:e7: a1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:33:A3:DE:60:47:F2:A4:A7:AE:A7:0E:62:AE:67:34:DE:27:49:CE X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/0zOj3mBH8qSnrqcOYq5nNN4nSc4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.192.0/19 Signature Algorithm: sha256WithRSAEncryption 0e:6b:31:3a:97:83:24:2b:2b:64:cf:41:5a:ca:16:74:79:de: 04:17:28:46:db:5d:f2:13:e7:a4:08:b9:27:9b:ee:0a:c3:12: 67:50:11:c7:9c:bc:83:53:b2:20:9d:c7:e1:18:be:9d:1a:df: a8:3a:ae:f8:d6:2a:cd:24:95:14:ee:cd:e1:08:7c:44:2b:23: 1d:9c:9f:e9:59:ff:79:fe:e7:e7:d1:67:a3:db:08:1d:10:79: 28:b7:ea:ea:97:f9:45:48:41:83:84:69:bb:1d:a7:d4:6e:a7: 66:9e:ca:25:cf:54:bf:90:18:d7:ae:4d:70:d2:86:ab:1f:80: 9d:d8:ca:ef:54:a8:26:1e:2f:f9:b4:ee:d0:24:4c:3a:f2:7c: f8:7b:0c:78:d0:06:ff:41:19:64:66:3b:d3:5e:d2:ff:b6:92: a8:c0:95:9d:b6:3f:b6:bb:67:75:5e:e5:ee:d6:e0:79:3f:3d: 14:ac:d7:5d:f9:41:eb:f3:3d:26:cf:79:b5:05:4e:82:e8:79: 17:32:a7:a2:bf:a7:dd:a9:18:0a:3a:77:76:3c:f8:3e:9c:62: 25:09:a5:0b:66:14:07:5a:f5:d7:16:47:d9:7a:d4:26:a8:1e: 4e:bd:45:ca:28:c4:a9:64:e0:50:95:eb:eb:3d:81:d0:79:02: 37:3d:8d:89 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQzMzNBM0RFNjA0N0Yy QTRBN0FFQTcwRTYyQUU2NzM0REUyNzQ5Q0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyJpJc+G13zZS5kdfQfsYwOSGyE90kUJN8FD4ZW4XrELQf3mVx dKXD5mnS2hQvqApndf67Fy4txKEDlh4DSyN5dBpvansrtcKdQY9lkhpwrBaa3shz e6JdTedflc9LrnomQpLwFzVhormsCabcloW5rbKwnUyfGU7SXjAxRSXFJ6526Jy4 CdRv1I6H7NPe55YvYsFo0XNNTYd8e8yxJ0L/2pjaUokM94GQmObtPw0DKgrph9bb qtSdebKUUl7WWG/wLIXdvtC4TDQ+eGpfRfdgSP4ZBvUGstSt9ZzHGi9WorSq0oyR +/1Vbcy+Qr9so21ho79/U67vK7SSgLCO56HPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU0zOj3mBH8qSnrqcOYq5nNN4nSc4wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvMHpPajNtQkg4cVNucnFjT1lxNW5O TjRuU2M0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabwDAN BgkqhkiG9w0BAQsFAAOCAQEADmsxOpeDJCsrZM9BWsoWdHneBBcoRttd8hPnpAi5 J5vuCsMSZ1ARx5y8g1OyIJ3H4Ri+nRrfqDqu+NYqzSSVFO7N4Qh8RCsjHZyf6Vn/ ef7n59Fno9sIHRB5KLfq6pf5RUhBg4Rpux2n1G6nZp7KJc9Uv5AY165NcNKGqx+A ndjK71SoJh4v+bTu0CRMOvJ8+HsMeNAG/0EZZGY7017S/7aSqMCVnbY/trtndV7l 7tbgeT89FKzXXflB6/M9Js95tQVOguh5FzKnor+n3akYCjp3djz4PpxiJQmlC2YU B1r11xZH2XrUJqgeTr1FyijEqWTgUJXr6z2B0HkCNz2NiQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org