$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/DIFbgF7vdsm2Kk8DRXgnFbJ8AW0.roa File: DIFbgF7vdsm2Kk8DRXgnFbJ8AW0.roa (raw, json) Hash identifier: pbM1gbUBhL8khYlr0Wa3oKN4b2AO/bEUvDaWLXVa6Hc= Subject key identifier: 0C:81:5B:80:5E:EF:76:C9:B6:2A:4F:03:45:78:27:15:B2:7C:01:6D Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E27 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/DIFbgF7vdsm2Kk8DRXgnFbJ8AW0.roa Signing time: Fri 01 Sep 2023 08:49:21 +0000 ROA not before: Fri 01 Sep 2023 08:49:21 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 113.61.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3623 (0xe27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:21 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0C815B805EEF76C9B62A4F0345782715B27C016D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2c:52:6c:f7:93:94:07:1d:00:25:cb:94:43: 40:6d:25:23:48:c8:2e:53:03:51:98:9c:2d:8d:70: 68:2f:97:b3:5c:a3:0b:a4:8c:e4:69:b2:7c:5a:c5: 58:bd:73:e1:d4:c6:e8:16:58:5d:d2:10:e0:7b:d7: 67:14:c4:5f:24:db:12:97:e4:c6:81:cf:31:dc:2f: 65:7f:1b:8a:46:7f:51:59:71:d7:25:2d:21:da:ac: a6:05:0e:1d:3e:e3:56:6e:f7:f8:9b:32:a6:23:ef: 8f:44:98:da:36:73:1d:8b:66:0c:b2:db:d7:3d:ec: cb:64:fa:c2:d6:3e:50:f9:b3:4e:9d:e6:e7:d8:4b: 14:c2:71:da:ec:d6:da:23:5e:cd:21:8c:65:72:0e: 5c:1b:47:c6:f4:c7:50:6e:a4:62:b2:ba:e5:66:82: 99:f9:c6:2b:95:cd:2a:df:63:f3:b3:99:1b:01:b0: 90:07:00:6a:e1:68:88:cf:27:22:01:9b:64:d9:94: 04:ec:7e:15:50:44:4d:16:04:32:e4:c2:9c:15:08: b4:b6:3a:89:7d:cc:33:17:e4:29:3c:a8:e5:57:a3: d7:82:bb:dd:d9:56:3f:91:43:d5:cf:08:90:24:62: e8:0f:41:b7:9e:84:31:1f:8a:6b:29:3e:93:a1:b0: 0c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:81:5B:80:5E:EF:76:C9:B6:2A:4F:03:45:78:27:15:B2:7C:01:6D X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/DIFbgF7vdsm2Kk8DRXgnFbJ8AW0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.160.0/19 Signature Algorithm: sha256WithRSAEncryption 3a:6a:95:9d:c3:00:79:34:03:ed:da:ce:f2:53:ea:bf:cf:9b: 0b:ca:c7:ec:05:e0:75:d5:42:31:a8:37:56:1f:47:6a:0a:ee: a4:ef:91:68:98:19:96:d8:a9:c1:35:8b:ca:c9:cd:10:0f:13: 5a:86:6e:58:fd:12:4b:82:72:f3:08:39:bb:7b:29:3a:e2:e9: 58:f7:92:ab:85:04:e5:46:dc:e1:08:f5:57:af:1b:2e:80:86: 2a:14:65:a4:80:9c:98:15:1d:f6:85:61:eb:93:17:7a:af:5e: 20:4a:f8:f3:45:37:c3:7d:8a:0b:c6:ad:f6:dd:27:47:5e:2d: 9a:6c:e6:67:85:13:e4:32:4c:b6:17:0d:fd:b9:d0:df:1c:5f: 9e:e5:e1:02:21:5b:aa:d4:71:17:77:b3:e1:4e:23:5a:c7:a0: 64:58:bc:72:5b:5c:1a:06:01:6b:d3:bb:fe:88:78:d2:f6:7f: fa:bc:79:f0:a1:41:a8:f1:96:bd:ff:00:f4:47:4f:a2:14:c4: 00:c7:61:9c:cf:a5:45:2e:b0:bc:54:4f:90:bf:be:b6:10:a7: 2f:65:6e:79:be:3a:6d:c2:85:c0:9b:a5:05:f6:8f:13:e7:e6: bc:65:4c:c1:4f:6a:46:ec:fa:3f:43:d4:63:93:7c:89:ef:10: da:23:c2:6e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDicwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBDODE1QjgwNUVFRjc2 QzlCNjJBNEYwMzQ1NzgyNzE1QjI3QzAxNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGLFJs95OUBx0AJcuUQ0BtJSNIyC5TA1GYnC2NcGgvl7Ncowuk jORpsnxaxVi9c+HUxugWWF3SEOB712cUxF8k2xKX5MaBzzHcL2V/G4pGf1FZcdcl LSHarKYFDh0+41Zu9/ibMqYj749EmNo2cx2LZgyy29c97Mtk+sLWPlD5s06d5ufY SxTCcdrs1tojXs0hjGVyDlwbR8b0x1BupGKyuuVmgpn5xiuVzSrfY/OzmRsBsJAH AGrhaIjPJyIBm2TZlATsfhVQRE0WBDLkwpwVCLS2Ool9zDMX5Ck8qOVXo9eCu93Z Vj+RQ9XPCJAkYugPQbeehDEfimspPpOhsAwpAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUDIFbgF7vdsm2Kk8DRXgnFbJ8AW0wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvRElGYmdGN3Zkc20yS2s4RFJYZ25G Yko4QVcwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXE9oDAN BgkqhkiG9w0BAQsFAAOCAQEAOmqVncMAeTQD7drO8lPqv8+bC8rH7AXgddVCMag3 Vh9HagrupO+RaJgZltipwTWLysnNEA8TWoZuWP0SS4Jy8wg5u3spOuLpWPeSq4UE 5Ubc4Qj1V68bLoCGKhRlpICcmBUd9oVh65MXeq9eIEr480U3w32KC8at9t0nR14t mmzmZ4UT5DJMthcN/bnQ3xxfnuXhAiFbqtRxF3ez4U4jWsegZFi8cltcGgYBa9O7 /oh40vZ/+rx58KFBqPGWvf8A9EdPohTEAMdhnM+lRS6wvFRPkL++thCnL2Vueb46 bcKFwJulBfaPE+fmvGVMwU9qRuz6P0PUY5N8ie8Q2iPCbg== -----END CERTIFICATE-----Generated at Mon Jun 3 04:19:39 2024 by rpki-client on console-fra.rpki-client.org