$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/1m_z10H1JBlXKnb_6SlKymPy6Rk.roa File: 1m_z10H1JBlXKnb_6SlKymPy6Rk.roa (raw, json) Hash identifier: tuJ+DZ5PNPlUayJwFKktGqVbRsx8br0KWKfoEIcZl/U= Subject key identifier: D6:6F:F3:D7:41:F5:24:19:57:2A:76:FF:E9:29:4A:CA:63:F2:E9:19 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E2A Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1m_z10H1JBlXKnb_6SlKymPy6Rk.roa Signing time: Fri 01 Sep 2023 08:49:22 +0000 ROA not before: Fri 01 Sep 2023 08:49:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 27.96.224.0/19 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3626 (0xe2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D66FF3D741F52419572A76FFE9294ACA63F2E919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b5:50:f1:0b:35:33:cc:31:fd:a1:c0:fb:bf: ce:42:e2:19:e9:55:e9:e8:e5:5a:96:0e:48:3a:7e: f6:4b:d5:0e:41:d9:24:bb:28:c9:f7:83:84:79:58: c8:b8:a8:07:52:9c:89:5b:08:d8:4d:15:f1:74:f7: b0:b0:50:59:78:29:bf:be:48:a3:b5:75:45:5d:cc: 96:3d:e1:43:3a:9c:b8:29:0d:28:98:8a:a1:98:83: 42:f2:6e:26:50:2d:fd:16:fd:c4:77:c8:71:37:a9: 4f:f9:c0:21:1e:e4:c7:e8:50:61:c5:fc:4b:49:11: 34:63:94:f0:16:e3:02:fa:83:e4:67:11:f6:2e:1d: f4:47:17:b5:5d:7f:72:f3:e7:c6:91:59:53:3d:a9: 3d:0c:31:e7:f4:c4:74:a3:9d:cd:2c:d0:79:9d:b7: 74:49:e1:a5:ff:ea:b2:45:17:6d:da:47:2c:a8:d3: bd:e2:fc:45:e9:b3:8f:00:61:5f:31:08:cd:fb:2c: b4:7c:65:8d:a0:64:dc:13:23:b7:a9:b8:b9:81:8d: 5f:f9:6c:a4:2a:f0:23:7d:18:ad:5a:b4:f0:f5:10: 69:7c:e8:bb:c4:21:df:22:f4:83:a5:36:b4:9d:ba: 25:ce:46:0a:b6:57:2d:41:6c:94:e1:60:f1:56:15: 7a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:6F:F3:D7:41:F5:24:19:57:2A:76:FF:E9:29:4A:CA:63:F2:E9:19 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1m_z10H1JBlXKnb_6SlKymPy6Rk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.224.0/19 Signature Algorithm: sha256WithRSAEncryption 99:60:c7:48:19:93:39:b3:18:ed:0b:cf:7d:6b:1b:b6:e3:1b: 4d:49:de:22:dd:cd:8c:0b:bb:a0:9d:c1:e4:f8:70:13:c2:c2: e0:e6:a0:dc:26:55:e9:a3:94:87:21:cf:91:29:dc:8a:a5:c2: 5e:21:0c:d5:a6:b6:3f:4c:d5:c1:87:ad:63:a7:6f:90:25:51: e5:34:11:d3:ae:cf:4e:71:31:cb:57:b6:93:e1:75:bc:26:0f: 6c:03:af:84:94:79:76:e3:5b:a0:5c:70:9f:92:10:73:11:ee: 0e:a6:59:f9:bc:5b:e0:a1:dc:61:fa:e7:95:ab:9d:9f:b7:24: 8c:43:c3:8f:f0:88:42:0d:a8:1e:a4:d4:d4:48:39:f9:ba:3f: 98:11:02:7e:1e:1e:0b:f6:7a:64:a7:30:41:22:c5:26:9d:9e: 5d:de:8d:f5:86:14:d8:6c:b2:a9:c1:76:dc:ad:cb:df:30:8c: 76:45:17:75:db:3a:b0:56:2f:a4:dc:35:8e:d2:cd:9d:05:91: 6b:13:b3:c4:79:e4:38:1e:95:09:55:a9:99:38:8e:47:21:bb: 0b:31:24:0d:a5:8c:ea:e5:3c:1b:3a:43:22:de:2b:1c:71:2a: 97:ea:37:7d:3a:e7:82:f7:74:ca:44:3b:e9:d3:f2:71:6d:3a: f1:0e:65:1a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDiowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ2NkZGM0Q3NDFGNTI0 MTk1NzJBNzZGRkU5Mjk0QUNBNjNGMkU5MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZtVDxCzUzzDH9ocD7v85C4hnpVeno5VqWDkg6fvZL1Q5B2SS7 KMn3g4R5WMi4qAdSnIlbCNhNFfF097CwUFl4Kb++SKO1dUVdzJY94UM6nLgpDSiY iqGYg0LybiZQLf0W/cR3yHE3qU/5wCEe5MfoUGHF/EtJETRjlPAW4wL6g+RnEfYu HfRHF7Vdf3Lz58aRWVM9qT0MMef0xHSjnc0s0Hmdt3RJ4aX/6rJFF23aRyyo073i /EXps48AYV8xCM37LLR8ZY2gZNwTI7epuLmBjV/5bKQq8CN9GK1atPD1EGl86LvE Id8i9IOlNrSduiXORgq2Vy1BbJThYPFWFXpxAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU1m/z10H1JBlXKnb/6SlKymPy6RkwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvMW1fejEwSDFKQmxYS25iXzZTbEt5 bVB5NlJrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBRtg4DAN BgkqhkiG9w0BAQsFAAOCAQEAmWDHSBmTObMY7QvPfWsbtuMbTUneIt3NjAu7oJ3B 5PhwE8LC4Oag3CZV6aOUhyHPkSnciqXCXiEM1aa2P0zVwYetY6dvkCVR5TQR067P TnExy1e2k+F1vCYPbAOvhJR5duNboFxwn5IQcxHuDqZZ+bxb4KHcYfrnlaudn7ck jEPDj/CIQg2oHqTU1Eg5+bo/mBECfh4eC/Z6ZKcwQSLFJp2eXd6N9YYU2GyyqcF2 3K3L3zCMdkUXdds6sFYvpNw1jtLNnQWRaxOzxHnkOB6VCVWpmTiORyG7CzEkDaWM 6uU8GzpDIt4rHHEql+o3fTrngvd0ykQ76dPycW068Q5lGg== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org