$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/9MQe6t_liB0tFM7Qj7vQLl8V_fg.roa File: 9MQe6t_liB0tFM7Qj7vQLl8V_fg.roa (raw, json) Hash identifier: fnFGB/4dH+lt11XjJBJeXX1xZmyhXMC9+NrY1BImrB8= Subject key identifier: F4:C4:1E:EA:DF:E5:88:1D:2D:14:CE:D0:8F:BB:D0:2E:5F:15:FD:F8 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FFA Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9MQe6t_liB0tFM7Qj7vQLl8V_fg.roa Signing time: Mon 26 Aug 2024 05:13:16 +0000 ROA not before: Mon 26 Aug 2024 05:13:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.222.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4090 (0xffa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F4C41EEADFE5881D2D14CED08FBBD02E5F15FDF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c7:91:bb:17:4a:7e:d6:f9:5e:a4:34:b3:33: 57:ad:a8:ce:eb:90:3e:db:89:20:2f:15:f2:b2:f6: a5:a8:cc:33:ae:2e:87:2f:da:21:a8:f7:da:1b:73: 83:fe:35:9a:e5:73:6f:72:46:da:2e:1f:bd:8d:06: 38:9c:d3:e9:1c:fa:84:8b:2f:69:93:cf:96:b5:d0: 55:68:91:9d:6d:9c:5a:fd:ce:a4:6a:52:ac:54:47: 53:1b:c7:4c:e3:7a:63:1f:c9:d5:45:69:05:31:7e: 14:c4:9d:6c:41:64:d3:0e:9a:95:8d:5e:56:1b:73: 26:1f:2a:d7:d7:46:3e:e1:08:85:2f:67:9c:37:db: 0c:4e:09:63:e6:48:9a:77:b7:26:0b:a4:73:11:4f: 9a:ba:4e:89:2d:f5:15:23:6e:66:9f:f3:c4:06:97: 03:0e:b0:bb:f7:9d:69:34:21:0e:2a:ec:3f:1d:25: ea:bc:ce:c9:5c:95:35:45:a2:59:1d:35:2d:f7:6a: 23:00:6b:3c:e7:4c:0a:a4:8c:d5:77:0d:f4:34:69: b1:f8:14:91:7c:e8:3d:74:51:4c:51:2d:25:85:5e: 0e:f1:64:1e:52:2b:68:77:d2:79:26:31:58:14:f8: 22:7a:a6:78:9c:36:7b:48:f0:81:de:a0:96:a9:91: 3c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C4:1E:EA:DF:E5:88:1D:2D:14:CE:D0:8F:BB:D0:2E:5F:15:FD:F8 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9MQe6t_liB0tFM7Qj7vQLl8V_fg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.24.0/21 Signature Algorithm: sha256WithRSAEncryption 79:f9:d0:c3:ef:92:3a:21:67:91:a5:a6:a0:38:da:e3:7d:8e: ae:f4:a4:28:9a:5b:b8:1c:25:52:d0:e6:e4:12:95:a4:76:f0: 59:69:a5:22:12:ae:02:18:d0:72:db:d8:8e:56:51:47:97:e7: c8:dc:6e:59:3b:5e:80:fb:05:e9:38:68:5b:ca:03:9b:e8:09: f0:1c:61:19:ad:1a:6d:04:ee:63:7f:46:c8:be:3c:60:c2:a5: ab:fb:4f:1e:c3:40:de:b5:f0:00:0e:48:42:71:fa:46:9d:da: 05:27:16:03:a0:7c:5c:db:38:57:56:9c:c0:8e:f1:00:6e:b7: ed:d8:a1:29:3a:c9:fb:84:75:ed:7c:b6:02:df:63:a2:27:76: 98:11:8f:05:5d:67:ea:0d:6a:f2:44:5f:f6:0b:41:04:8d:8f: dd:a5:83:e5:46:a8:f9:c0:bb:cd:af:c3:7b:1d:87:56:99:66: 08:a2:17:16:58:10:e0:c9:12:5a:c6:fd:6d:2e:01:ea:77:d6: db:ef:a2:a4:bd:62:26:00:1c:26:6c:ee:e5:9f:61:19:ed:68: 29:ce:80:7f:56:31:c9:37:c4:3e:19:cd:58:c8:97:1a:67:b7: f9:60:a3:4d:e5:c3:07:82:23:d3:a7:47:b4:a9:2d:0a:d0:29: 34:6d:bb:6a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD/owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY0QzQxRUVBREZFNTg4 MUQyRDE0Q0VEMDhGQkJEMDJFNUYxNUZERjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDx5G7F0p+1vlepDSzM1etqM7rkD7biSAvFfKy9qWozDOuLocv 2iGo99obc4P+NZrlc29yRtouH72NBjic0+kc+oSLL2mTz5a10FVokZ1tnFr9zqRq UqxUR1Mbx0zjemMfydVFaQUxfhTEnWxBZNMOmpWNXlYbcyYfKtfXRj7hCIUvZ5w3 2wxOCWPmSJp3tyYLpHMRT5q6Tokt9RUjbmaf88QGlwMOsLv3nWk0IQ4q7D8dJeq8 zslclTVFolkdNS33aiMAazznTAqkjNV3DfQ0abH4FJF86D10UUxRLSWFXg7xZB5S K2h30nkmMVgU+CJ6pnicNntI8IHeoJapkTwDAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU9MQe6t/liB0tFM7Qj7vQLl8V/fgwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvOU1RZTZ0X2xpQjB0Rk03UWo3dlFM bDhWX2ZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8veGDAN BgkqhkiG9w0BAQsFAAOCAQEAefnQw++SOiFnkaWmoDja432OrvSkKJpbuBwlUtDm 5BKVpHbwWWmlIhKuAhjQctvYjlZRR5fnyNxuWTtegPsF6ThoW8oDm+gJ8BxhGa0a bQTuY39GyL48YMKlq/tPHsNA3rXwAA5IQnH6Rp3aBScWA6B8XNs4V1acwI7xAG63 7dihKTrJ+4R17Xy2At9joid2mBGPBV1n6g1q8kRf9gtBBI2P3aWD5Uao+cC7za/D ex2HVplmCKIXFlgQ4MkSWsb9bS4B6nfW2++ipL1iJgAcJmzu5Z9hGe1oKc6Af1Yx yTfEPhnNWMiXGme3+WCjTeXDB4Ij06dHtKktCtApNG27ag== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org