$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/22KxQdMt5keDfSropISVMjj1evY.roa File: 22KxQdMt5keDfSropISVMjj1evY.roa (raw, json) Hash identifier: BhlzKXjH9uPW5Uk+8Z/8D3lnyjpJDKP0/WAsdUP4N6w= Subject key identifier: DB:62:B1:41:D3:2D:E6:47:83:7D:2A:E8:A4:84:95:32:38:F5:7A:F6 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1003 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/22KxQdMt5keDfSropISVMjj1evY.roa Signing time: Mon 26 Aug 2024 05:13:18 +0000 ROA not before: Mon 26 Aug 2024 05:13:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 113.61.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4099 (0x1003) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DB62B141D32DE647837D2AE8A484953238F57AF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:de:ae:34:f6:8c:58:af:7d:52:03:23:f7:7d: 43:8c:37:2f:c4:4c:25:7e:c1:1f:08:fe:5f:09:5f: 9e:28:4e:4b:59:70:31:1a:dd:5f:92:1c:5f:75:be: 67:fc:26:3a:8c:f3:6d:6b:d7:6c:39:99:94:4e:93: 1d:bd:46:13:c0:1b:13:cd:b6:1e:3b:f2:25:8c:8a: 67:e2:bc:76:9c:0a:f4:e9:91:15:08:d9:57:c1:41: 38:cb:e7:cc:04:2a:05:1f:87:c7:9d:e3:b2:fc:88: ce:9e:02:c2:53:75:0c:e3:20:60:b9:8f:b7:98:4c: 74:12:51:bd:39:87:20:9d:63:83:da:55:cf:15:ed: 12:98:2e:94:91:04:7b:e4:bc:0b:5a:5f:6e:9a:b4: dc:42:9b:6f:d6:57:79:ca:35:ae:4c:84:e7:8a:19: f1:de:cf:bd:dd:ec:50:1e:2f:5f:a3:b6:83:07:7e: df:6c:09:e9:8e:4b:01:f9:84:eb:65:53:05:62:35: df:95:c9:d9:70:f6:1f:10:ce:2b:a3:2a:1b:2c:36: 7d:75:b0:f7:c3:43:ed:19:56:23:4e:3d:62:51:d6: 87:cf:6e:6a:10:0f:a9:31:62:a3:52:b2:f9:c3:88: dd:c4:36:2d:e6:f3:8e:99:4d:15:98:9a:02:82:aa: 8e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:62:B1:41:D3:2D:E6:47:83:7D:2A:E8:A4:84:95:32:38:F5:7A:F6 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/22KxQdMt5keDfSropISVMjj1evY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.240.0/20 Signature Algorithm: sha256WithRSAEncryption 09:22:76:93:78:5c:1c:a6:f8:b9:a4:dd:f5:82:e9:5b:ab:ac: 44:af:69:2e:7e:1d:c7:36:f6:ff:70:a0:1e:00:a8:6b:dc:a4: 3d:9c:f0:f8:5e:cf:b9:43:95:68:ff:81:87:be:68:76:55:8c: 9e:78:2c:5c:90:45:c5:f6:fb:46:50:57:70:20:8b:ac:7b:fa: de:32:4f:02:04:b8:21:a2:32:0c:18:37:ba:81:0f:d2:00:a4: 93:d5:b0:b6:6a:ab:e0:05:95:79:58:8c:42:04:f6:d7:de:35: c5:5a:c9:30:0a:31:29:f2:c0:8c:fc:da:b3:23:5e:1e:6d:ba: c7:d5:ea:c4:4f:32:b3:d2:35:2a:d3:81:b8:39:85:7a:d8:c8: b0:1c:9b:39:4c:5e:7f:23:2f:f5:c1:da:f5:91:e5:4d:a1:47: 4f:33:b7:de:96:ad:c0:b3:26:f6:71:f2:d5:fd:91:c3:e5:1d: a3:fb:7f:f6:10:1b:e9:ab:85:b4:3a:a2:ff:4b:99:b2:59:58: 12:51:12:4e:67:9d:00:35:92:cb:5e:dd:53:d2:45:b7:10:6e: 56:d0:18:fa:0e:ce:c3:d2:66:02:dc:2c:3c:f8:21:fa:a1:fc: 1b:bc:4b:ca:88:a7:8e:c2:5d:af:af:33:53:a6:bf:e6:da:14: a6:1e:ef:85 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERCNjJCMTQxRDMyREU2 NDc4MzdEMkFFOEE0ODQ5NTMyMzhGNTdBRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDt3q409oxYr31SAyP3fUOMNy/ETCV+wR8I/l8JX54oTktZcDEa 3V+SHF91vmf8JjqM821r12w5mZROkx29RhPAGxPNth478iWMimfivHacCvTpkRUI 2VfBQTjL58wEKgUfh8ed47L8iM6eAsJTdQzjIGC5j7eYTHQSUb05hyCdY4PaVc8V 7RKYLpSRBHvkvAtaX26atNxCm2/WV3nKNa5MhOeKGfHez73d7FAeL1+jtoMHft9s CemOSwH5hOtlUwViNd+Vydlw9h8QziujKhssNn11sPfDQ+0ZViNOPWJR1ofPbmoQ D6kxYqNSsvnDiN3ENi3m846ZTRWYmgKCqo59AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU22KxQdMt5keDfSropISVMjj1evYwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvMjJLeFFkTXQ1a2VEZlNyb3BJU1ZN amoxZXZZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHE98DAN BgkqhkiG9w0BAQsFAAOCAQEACSJ2k3hcHKb4uaTd9YLpW6usRK9pLn4dxzb2/3Cg HgCoa9ykPZzw+F7PuUOVaP+Bh75odlWMnngsXJBFxfb7RlBXcCCLrHv63jJPAgS4 IaIyDBg3uoEP0gCkk9Wwtmqr4AWVeViMQgT21941xVrJMAoxKfLAjPzasyNeHm26 x9XqxE8ys9I1KtOBuDmFetjIsBybOUxefyMv9cHa9ZHlTaFHTzO33patwLMm9nHy 1f2Rw+Udo/t/9hAb6auFtDqi/0uZsllYElESTmedADWSy17dU9JFtxBuVtAY+g7O w9JmAtwsPPgh+qH8G7xLyoinjsJdr68zU6a/5toUph7vhQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org