$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/6MmY4vY_Dx3Tne3RQd6i82N1Qks.roa File: 6MmY4vY_Dx3Tne3RQd6i82N1Qks.roa (raw, json) Hash identifier: tJ44Rs/pUdvfslsJRMWhJsbvONVs3S1tZRlLEk2E8a4= Subject key identifier: E8:C9:98:E2:F6:3F:0F:1D:D3:9D:ED:D1:41:DE:A2:F3:63:75:42:4B Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1031 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/6MmY4vY_Dx3Tne3RQd6i82N1Qks.roa Signing time: Mon 26 Aug 2024 05:13:28 +0000 ROA not before: Mon 26 Aug 2024 05:13:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 27.96.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4145 (0x1031) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E8C998E2F63F0F1DD39DEDD141DEA2F36375424B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:87:e4:33:c8:9f:07:f9:04:40:67:52:c7:06: 74:c1:e0:2a:b8:67:1b:96:01:c1:d9:d0:91:b5:aa: 1a:c4:8c:b7:34:bf:c0:bd:e9:0c:82:33:a7:fc:08: cf:07:a4:3e:c7:b2:d1:0e:eb:7b:f7:7f:6c:5c:a1: 50:f7:37:5e:32:31:72:02:ec:ac:97:f2:39:4d:1f: 1a:58:4c:a9:04:a2:54:e3:59:e6:ac:89:b0:a1:70: 94:b6:76:57:16:4d:7a:9d:18:df:de:b0:dc:13:48: 7e:cb:af:38:50:81:b0:fd:bb:66:c6:88:d7:ac:48: de:a7:22:6d:c2:a6:79:5d:de:be:b0:ba:e9:16:53: 40:fc:de:b0:44:df:18:40:46:33:ac:8c:ca:56:f4: 58:ef:74:09:60:b6:61:f2:2c:91:3c:06:d1:83:ab: 12:cc:d0:6b:3f:97:94:ba:be:90:6a:f4:d0:c1:f6: a2:61:99:a3:ea:3f:a9:d3:6d:16:35:e4:68:40:ca: fd:c8:33:f2:c4:35:af:4c:6e:81:b5:b2:26:db:74: 8e:9a:c0:5c:2b:19:73:ef:f7:36:b6:c7:55:69:71: b7:28:0f:1a:8b:ea:94:37:31:48:c0:d1:8f:2e:5d: e2:c9:d0:03:78:56:fa:cb:e6:fd:b6:eb:6c:b8:c2: a3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C9:98:E2:F6:3F:0F:1D:D3:9D:ED:D1:41:DE:A2:F3:63:75:42:4B X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/6MmY4vY_Dx3Tne3RQd6i82N1Qks.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.224.0/21 Signature Algorithm: sha256WithRSAEncryption 07:4d:45:83:b6:4b:7f:6c:df:5d:03:8b:e3:40:97:78:fe:71: fe:af:3f:51:a9:ce:72:61:a4:a6:a9:36:84:8e:11:52:e7:2e: 68:06:cf:67:dc:aa:ac:52:f0:31:46:e7:a7:fc:88:7a:46:62: d6:2f:93:48:b2:42:38:51:1f:47:32:62:b8:cc:27:40:6f:bf: 50:21:cb:f4:a4:f4:65:73:c8:c0:29:fe:f6:27:de:d5:76:a7: 24:c8:bf:c5:69:53:18:f0:f2:fc:51:70:93:af:64:69:70:ab: 50:b9:9c:ac:0f:8b:78:a0:10:4d:50:7a:07:c9:6a:35:6b:b0: 76:8f:1a:10:c3:0c:70:10:81:99:07:e1:e7:0c:ba:74:f8:a5: a6:e2:2c:72:34:7f:59:8a:4b:f2:b2:47:00:9e:a4:3b:51:f6: bb:70:81:40:d9:8e:da:32:f2:55:d2:4a:42:51:96:0c:43:24: 5d:01:23:3a:23:b0:27:af:36:46:2b:a4:b3:e1:3a:9a:6d:5a: 61:d9:87:13:29:33:50:b0:4a:0e:e1:0e:a8:15:89:6e:46:29: 24:52:d8:04:b6:27:1a:e8:93:58:bc:63:ac:1a:b6:25:76:d6: f5:5a:b7:59:3f:85:8b:06:06:ce:00:bc:b1:70:b6:17:59:98: 2f:1a:2c:88 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEDEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU4Qzk5OEUyRjYzRjBG MUREMzlERUREMTQxREVBMkYzNjM3NTQyNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+h+QzyJ8H+QRAZ1LHBnTB4Cq4ZxuWAcHZ0JG1qhrEjLc0v8C9 6QyCM6f8CM8HpD7HstEO63v3f2xcoVD3N14yMXIC7KyX8jlNHxpYTKkEolTjWeas ibChcJS2dlcWTXqdGN/esNwTSH7LrzhQgbD9u2bGiNesSN6nIm3Cpnld3r6wuukW U0D83rBE3xhARjOsjMpW9FjvdAlgtmHyLJE8BtGDqxLM0Gs/l5S6vpBq9NDB9qJh maPqP6nTbRY15GhAyv3IM/LENa9MboG1sibbdI6awFwrGXPv9za2x1VpcbcoDxqL 6pQ3MUjA0Y8uXeLJ0AN4VvrL5v2262y4wqM5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU6MmY4vY/Dx3Tne3RQd6i82N1QkswHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvNk1tWTR2WV9EeDNUbmUzUlFkNmk4 Mk4xUWtzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAxtg4DAN BgkqhkiG9w0BAQsFAAOCAQEAB01Fg7ZLf2zfXQOL40CXeP5x/q8/UanOcmGkpqk2 hI4RUucuaAbPZ9yqrFLwMUbnp/yIekZi1i+TSLJCOFEfRzJiuMwnQG+/UCHL9KT0 ZXPIwCn+9ife1XanJMi/xWlTGPDy/FFwk69kaXCrULmcrA+LeKAQTVB6B8lqNWuw do8aEMMMcBCBmQfh5wy6dPilpuIscjR/WYpL8rJHAJ6kO1H2u3CBQNmO2jLyVdJK QlGWDEMkXQEjOiOwJ682Riuks+E6mm1aYdmHEykzULBKDuEOqBWJbkYpJFLYBLYn GuiTWLxjrBq2JXbW9Vq3WT+FiwYGzgC8sXC2F1mYLxosiA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org