$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/9Otalo5DDpoPkvrRNsXkMYS1zjU.roa File: 9Otalo5DDpoPkvrRNsXkMYS1zjU.roa (raw, json) Hash identifier: WBVtADufAOBaCFUxT3RHmyQjGyc1IWjFeTJQUdxmbrY= Subject key identifier: F4:EB:5A:96:8E:43:0E:9A:0F:92:FA:D1:36:C5:E4:31:84:B5:CE:35 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E65 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9Otalo5DDpoPkvrRNsXkMYS1zjU.roa Signing time: Fri 01 Sep 2023 08:49:39 +0000 ROA not before: Fri 01 Sep 2023 08:49:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 211.79.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3685 (0xe65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F4EB5A968E430E9A0F92FAD136C5E43184B5CE35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3d:db:3d:81:92:b1:ee:89:1a:c7:23:39:94: d1:36:fe:ed:6a:95:51:bd:d4:07:65:d4:36:82:a0: 87:67:a3:a8:7e:34:03:64:3f:cc:43:6f:cb:aa:13: bf:e4:ac:d0:b0:0e:db:a3:38:a4:4d:b1:69:81:e7: 67:70:ce:7c:d7:d8:80:4c:74:dc:4a:22:64:9c:8f: 7f:45:f1:c5:52:7a:5c:db:41:21:f0:f4:d1:4c:1b: 5f:cb:0e:e9:e0:66:a4:19:81:39:7f:2b:3b:37:75: 51:68:ca:05:24:e9:2b:c4:f3:fe:f0:dd:70:fe:f3: f5:89:69:69:45:61:40:1c:a1:f0:e1:a0:38:86:b3: fb:8a:69:32:23:d1:0e:5f:fe:1f:d9:a5:76:06:9f: 95:a8:a4:43:3d:5d:e5:a7:52:b9:83:85:ef:7c:dc: ca:98:64:c7:b1:56:e5:11:1a:96:f1:11:bd:85:a7: d8:00:9a:73:4c:fc:0d:81:0d:df:c3:d0:46:2b:81: 87:e8:ee:13:b2:c6:30:7e:a3:63:db:d1:df:89:16: f0:15:05:ee:d8:7c:c6:93:fc:d3:96:b5:dd:70:36: 51:4f:81:5f:06:d6:45:18:7c:91:96:70:fd:86:e7: c8:4e:75:9b:e7:a4:68:3d:b0:5c:2e:31:63:f3:b5: f1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:EB:5A:96:8E:43:0E:9A:0F:92:FA:D1:36:C5:E4:31:84:B5:CE:35 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9Otalo5DDpoPkvrRNsXkMYS1zjU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.112.0/21 Signature Algorithm: sha256WithRSAEncryption b3:1e:b8:d6:a8:5e:49:01:60:2b:f5:71:fe:d6:07:ee:8d:d9: 07:74:32:e7:d1:d6:02:26:fe:63:dd:3b:a6:e5:ab:38:af:91: 3d:93:63:59:50:03:04:20:d2:eb:50:72:ab:d0:14:a4:9a:b2: 8f:1b:fe:7b:f7:12:a3:26:60:6e:ea:12:be:6a:a2:55:87:7f: 09:30:ed:af:f0:83:09:ed:42:8d:64:9b:f6:37:3c:f3:98:b2: 9b:b5:ff:92:07:75:44:2a:ec:5e:2d:70:f7:62:3e:8f:d3:70: a1:a6:51:51:63:3c:2b:ed:11:94:73:28:5b:cf:99:81:60:1d: 10:7b:85:cb:3f:4a:35:b7:c1:47:05:aa:b9:1c:db:ab:d9:d8: 92:d3:e9:e9:1e:65:46:c6:99:d3:b1:51:e9:25:ff:b1:97:c4: 38:ce:0a:d9:9c:86:e4:13:4b:98:ef:ab:05:45:f8:22:bc:a7: af:d9:e3:b1:f7:29:5a:66:80:91:0a:a9:a9:82:c2:09:3c:cf: a7:d0:b9:98:60:3e:9f:af:3d:58:95:a5:1f:85:0c:ac:60:ef: 0c:3b:6d:f9:cc:54:ed:ac:da:71:46:f5:c2:b5:76:5d:c0:b2: 95:28:a3:4b:4c:53:8c:61:f3:b3:78:ad:9b:a7:a1:1d:0b:33: f3:85:57:b8 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDmUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY0RUI1QTk2OEU0MzBF OUEwRjkyRkFEMTM2QzVFNDMxODRCNUNFMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdPds9gZKx7okaxyM5lNE2/u1qlVG91Adl1DaCoIdno6h+NANk P8xDb8uqE7/krNCwDtujOKRNsWmB52dwznzX2IBMdNxKImScj39F8cVSelzbQSHw 9NFMG1/LDungZqQZgTl/Kzs3dVFoygUk6SvE8/7w3XD+8/WJaWlFYUAcofDhoDiG s/uKaTIj0Q5f/h/ZpXYGn5WopEM9XeWnUrmDhe983MqYZMexVuURGpbxEb2Fp9gA mnNM/A2BDd/D0EYrgYfo7hOyxjB+o2Pb0d+JFvAVBe7YfMaT/NOWtd1wNlFPgV8G 1kUYfJGWcP2G58hOdZvnpGg9sFwuMWPztfE5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU9Otalo5DDpoPkvrRNsXkMYS1zjUwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvOU90YWxvNUREcG9Qa3ZyUk5zWGtN WVMxempVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9NPcDAN BgkqhkiG9w0BAQsFAAOCAQEAsx641qheSQFgK/Vx/tYH7o3ZB3Qy59HWAib+Y907 puWrOK+RPZNjWVADBCDS61Byq9AUpJqyjxv+e/cSoyZgbuoSvmqiVYd/CTDtr/CD Ce1CjWSb9jc885iym7X/kgd1RCrsXi1w92I+j9NwoaZRUWM8K+0RlHMoW8+ZgWAd EHuFyz9KNbfBRwWquRzbq9nYktPp6R5lRsaZ07FR6SX/sZfEOM4K2ZyG5BNLmO+r BUX4Irynr9njsfcpWmaAkQqpqYLCCTzPp9C5mGA+n689WJWlH4UMrGDvDDtt+cxU 7azacUb1wrV2XcCylSijS0xTjGHzs3itm6ehHQsz84VXuA== -----END CERTIFICATE-----Generated at Mon Jun 3 06:07:08 2024 by rpki-client on console-ams.rpki-client.org