$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/ERagq4-ERF6CYn6sb4te0et8U0g.roa File: ERagq4-ERF6CYn6sb4te0et8U0g.roa (raw, json) Hash identifier: Vm+Q1NboJntADlb07x5SLMq47rjM3iJKVaRyJT/Fubw= Subject key identifier: 11:16:A0:AB:8F:84:44:5E:82:62:7E:AC:6F:8B:5E:D1:EB:7C:53:48 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E18 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ERagq4-ERF6CYn6sb4te0et8U0g.roa Signing time: Fri 01 Sep 2023 08:49:17 +0000 ROA not before: Fri 01 Sep 2023 08:49:17 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 203.217.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3608 (0xe18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:17 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1116A0AB8F84445E82627EAC6F8B5ED1EB7C5348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9b:66:42:99:cd:01:5b:f4:cc:ca:06:d9:01: 35:d9:c7:e0:25:35:2c:c0:d6:6e:d2:cd:ac:0b:3f: 11:ca:cd:7a:35:67:cd:5f:c7:6b:0f:71:bd:a3:d0: c2:84:5b:23:e6:1e:99:6a:86:08:53:51:71:21:57: b3:6a:5b:41:0b:01:48:fe:53:7d:17:f8:e3:62:fd: 89:e2:dd:d0:21:d3:32:b5:6c:8f:b3:e0:1d:8a:3d: 57:75:c7:a3:fc:7e:64:57:eb:67:bc:ca:47:f6:00: 98:df:44:45:3d:2f:f9:c9:c4:1f:3e:4e:ae:c2:2a: 04:14:96:33:a8:6d:48:a3:96:74:dd:6c:4c:fe:ac: d9:d3:b5:9c:2b:1e:2d:36:dc:30:5f:d5:71:44:7b: 9e:94:22:15:51:a6:9a:73:09:46:69:2d:01:1f:9c: 51:63:85:20:0f:fe:cf:72:8c:56:57:86:b0:a8:c4: e3:27:28:b1:d1:4a:84:e9:79:33:c0:e0:b1:b8:1c: 8a:28:f0:f2:bd:d6:ac:da:79:b9:69:67:df:60:15: 52:6f:81:cb:8d:4d:7b:4c:5a:3e:67:90:73:14:5e: 62:34:88:21:05:5a:ac:e1:42:f7:a3:a7:8c:5f:6c: 69:ab:7a:8d:36:74:d6:98:3a:3b:85:23:92:c9:00: 1d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:16:A0:AB:8F:84:44:5E:82:62:7E:AC:6F:8B:5E:D1:EB:7C:53:48 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ERagq4-ERF6CYn6sb4te0et8U0g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.217.104.0/21 Signature Algorithm: sha256WithRSAEncryption 1b:8a:9f:70:42:60:c3:5d:d1:51:f9:5a:60:68:b5:99:67:31: fc:77:cc:38:0a:07:2e:52:a7:61:6a:f1:ca:da:ee:df:e3:fc: 67:d2:46:a6:c9:b9:81:37:46:57:41:df:99:1e:11:52:a2:10: 44:af:c1:4f:81:25:4d:eb:8a:1d:c5:ce:eb:cb:df:b0:2f:05: 60:8e:29:56:a0:d5:12:08:18:ff:8d:a8:a9:bb:d3:b2:65:1b: d7:0a:91:ac:87:43:7f:8b:6c:51:98:72:55:fd:6f:41:43:11: 53:38:27:37:2e:68:ea:45:e8:9f:2e:06:81:bc:e9:e7:8a:a6: 4b:15:46:8e:39:bf:c0:2d:c0:ef:61:53:d1:02:03:25:75:b7: 38:08:2b:61:98:ff:52:cc:01:68:1b:46:61:d3:9c:5f:42:f6: 47:c3:c8:7b:8c:55:c9:2b:6f:1d:13:7d:5a:20:fe:1b:20:7f: 44:29:fc:f2:c0:58:32:cc:92:47:34:07:35:c6:17:5e:00:81: 02:db:59:bd:52:23:89:6f:9e:af:56:8d:11:79:40:95:d8:cb: b9:bc:b0:16:93:25:13:ba:4f:35:17:1f:cb:d7:3d:16:03:13: f1:40:ad:e2:24:0c:ad:04:74:dd:9b:ae:92:00:b5:fb:25:cb: 63:ad:d0:d4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDhgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDExMTZBMEFCOEY4NDQ0 NUU4MjYyN0VBQzZGOEI1RUQxRUI3QzUzNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpm2ZCmc0BW/TMygbZATXZx+AlNSzA1m7SzawLPxHKzXo1Z81f x2sPcb2j0MKEWyPmHplqhghTUXEhV7NqW0ELAUj+U30X+ONi/Yni3dAh0zK1bI+z 4B2KPVd1x6P8fmRX62e8ykf2AJjfREU9L/nJxB8+Tq7CKgQUljOobUijlnTdbEz+ rNnTtZwrHi023DBf1XFEe56UIhVRpppzCUZpLQEfnFFjhSAP/s9yjFZXhrCoxOMn KLHRSoTpeTPA4LG4HIoo8PK91qzaeblpZ99gFVJvgcuNTXtMWj5nkHMUXmI0iCEF WqzhQvejp4xfbGmreo02dNaYOjuFI5LJAB2dAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUERagq4+ERF6CYn6sb4te0et8U0gwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvRVJhZ3E0LUVSRjZDWW42c2I0dGUw ZXQ4VTBnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8vZaDAN BgkqhkiG9w0BAQsFAAOCAQEAG4qfcEJgw13RUflaYGi1mWcx/HfMOAoHLlKnYWrx ytru3+P8Z9JGpsm5gTdGV0HfmR4RUqIQRK/BT4ElTeuKHcXO68vfsC8FYI4pVqDV EggY/42oqbvTsmUb1wqRrIdDf4tsUZhyVf1vQUMRUzgnNy5o6kXony4Ggbzp54qm SxVGjjm/wC3A72FT0QIDJXW3OAgrYZj/UswBaBtGYdOcX0L2R8PIe4xVyStvHRN9 WiD+GyB/RCn88sBYMsySRzQHNcYXXgCBAttZvVIjiW+er1aNEXlAldjLubywFpMl E7pPNRcfy9c9FgMT8UCt4iQMrQR03ZuukgC1+yXLY63Q1A== -----END CERTIFICATE-----Generated at Mon Jun 3 04:19:39 2024 by rpki-client on console-fra.rpki-client.org