$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/E5jyIkFAO33gbnriB5DqTiwAszI.roa File: E5jyIkFAO33gbnriB5DqTiwAszI.roa (raw, json) Hash identifier: LELVwrK39BiffJlBMnuJP3zjVAYKORBv9ixAYPtqAPI= Subject key identifier: 13:98:F2:22:41:40:3B:7D:E0:6E:7A:E2:07:90:EA:4E:2C:00:B3:32 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 103B Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/E5jyIkFAO33gbnriB5DqTiwAszI.roa Signing time: Mon 26 Aug 2024 05:13:31 +0000 ROA not before: Mon 26 Aug 2024 05:13:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.217.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4155 (0x103b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:31 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1398F22241403B7DE06E7AE20790EA4E2C00B332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2c:75:83:a2:7d:71:bf:4f:de:57:6e:fe:bb: cb:19:1c:df:1f:ef:67:df:93:bf:0a:12:ed:39:12: 2f:18:e2:63:3f:db:0d:50:39:95:c2:65:9f:15:83: 53:c6:b2:31:49:a2:84:04:92:97:7b:0e:4f:e2:76: 91:95:26:52:68:a7:02:6e:e9:34:91:db:b3:9f:1a: 50:9e:0f:3e:94:39:c9:86:2e:48:e0:d5:b5:d2:09: fe:7a:09:22:82:6e:30:e4:ce:aa:2b:64:9c:85:63: 91:7a:bc:5a:cd:39:6c:79:dc:24:32:ab:d8:d4:c3: 25:10:fa:96:15:f3:43:93:ec:f3:c3:b8:f9:35:88: 23:2d:37:73:31:50:9b:4b:65:a2:49:ef:a5:56:61: 70:25:19:a2:29:3c:92:1f:33:70:b4:1e:16:86:be: 76:7a:36:9b:de:ff:4d:90:30:ed:52:60:39:64:03: bd:86:a4:af:29:98:2b:f7:75:4f:88:ad:f1:e7:84: 31:5d:2e:9a:2c:f3:ab:75:6b:c2:60:56:38:f3:53: fc:25:f1:d7:3b:8a:9b:e9:e4:e3:56:b6:52:25:04: 50:03:87:10:cb:42:54:c1:5b:ad:79:6e:8c:b2:9b: 29:20:ec:23:cd:8e:b2:21:bb:c3:b4:eb:38:68:7a: 10:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:98:F2:22:41:40:3B:7D:E0:6E:7A:E2:07:90:EA:4E:2C:00:B3:32 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/E5jyIkFAO33gbnriB5DqTiwAszI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.217.104.0/21 Signature Algorithm: sha256WithRSAEncryption a9:c0:b7:3c:3b:c8:65:b1:1c:e9:6f:79:e3:49:fe:5a:82:b6: 01:39:44:8f:3c:79:9d:3f:12:7c:e9:4d:cb:4c:b4:07:c4:03: de:82:b3:09:e9:7c:38:d4:49:43:76:0b:9c:e9:58:e0:e5:87: 90:aa:18:87:be:7d:1d:14:ef:e4:1f:b9:d8:b1:be:70:7b:cc: 70:c2:10:41:23:60:b2:1e:09:ed:d5:be:28:13:eb:f7:87:76: bd:33:1d:46:45:31:7a:be:ce:32:fd:f6:cd:19:7b:19:91:2d: 4a:95:3d:36:8f:26:d4:08:96:18:e4:6b:3a:b3:af:41:63:42: 45:1b:69:76:56:f2:e2:0c:0e:8d:71:fa:15:45:5f:bf:dc:4f: a1:73:fe:a4:57:e9:91:4c:c3:bc:93:e5:54:4a:49:4d:0b:61: 4d:c6:9b:ee:5a:e5:32:68:e9:23:99:08:40:d6:e9:5c:3e:91: 23:8a:0d:41:5a:b4:7f:88:be:5c:49:4f:71:a6:05:b5:6b:81: b3:b9:30:d0:75:5e:44:2f:f8:69:15:44:fa:90:59:a1:d3:0f: ab:5d:65:3f:a1:a6:82:17:0f:74:96:4b:7a:b6:a8:eb:00:2d: e1:96:ee:94:66:d1:95:7d:75:f8:93:7d:a9:27:2e:b5:e9:4e: f9:60:45:58 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEzOThGMjIyNDE0MDNC N0RFMDZFN0FFMjA3OTBFQTRFMkMwMEIzMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSLHWDon1xv0/eV27+u8sZHN8f72ffk78KEu05Ei8Y4mM/2w1Q OZXCZZ8Vg1PGsjFJooQEkpd7Dk/idpGVJlJopwJu6TSR27OfGlCeDz6UOcmGLkjg 1bXSCf56CSKCbjDkzqorZJyFY5F6vFrNOWx53CQyq9jUwyUQ+pYV80OT7PPDuPk1 iCMtN3MxUJtLZaJJ76VWYXAlGaIpPJIfM3C0HhaGvnZ6Npve/02QMO1SYDlkA72G pK8pmCv3dU+IrfHnhDFdLpos86t1a8JgVjjzU/wl8dc7ipvp5ONWtlIlBFADhxDL QlTBW615boyymykg7CPNjrIhu8O06zhoehDxAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUE5jyIkFAO33gbnriB5DqTiwAszIwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvRTVqeUlrRkFPMzNnYm5yaUI1RHFU aXdBc3pJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8vZaDAN BgkqhkiG9w0BAQsFAAOCAQEAqcC3PDvIZbEc6W9540n+WoK2ATlEjzx5nT8SfOlN y0y0B8QD3oKzCel8ONRJQ3YLnOlY4OWHkKoYh759HRTv5B+52LG+cHvMcMIQQSNg sh4J7dW+KBPr94d2vTMdRkUxer7OMv32zRl7GZEtSpU9No8m1AiWGORrOrOvQWNC RRtpdlby4gwOjXH6FUVfv9xPoXP+pFfpkUzDvJPlVEpJTQthTcab7lrlMmjpI5kI QNbpXD6RI4oNQVq0f4i+XElPcaYFtWuBs7kw0HVeRC/4aRVE+pBZodMPq11lP6Gm ghcPdJZLerao6wAt4ZbulGbRlX11+JN9qScutelO+WBFWA== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:36 2024 by rpki-client on console-fra.rpki-client.org