$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/EWlUs3uKojafvV3ntcAsIQHBIVI.roa File: EWlUs3uKojafvV3ntcAsIQHBIVI.roa (raw, json) Hash identifier: Pc1iKojkbus/ouiNNQU8pOZTZy9IOJDcs51sk0qv/dc= Subject key identifier: 11:69:54:B3:7B:8A:A2:36:9F:BD:5D:E7:B5:C0:2C:21:01:C1:21:52 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1001 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/EWlUs3uKojafvV3ntcAsIQHBIVI.roa Signing time: Mon 26 Aug 2024 05:13:17 +0000 ROA not before: Mon 26 Aug 2024 05:13:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.222.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4097 (0x1001) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=116954B37B8AA2369FBD5DE7B5C02C2101C12152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:9f:16:cd:07:93:08:8c:77:d2:d9:c9:7d:57: e7:46:2f:1d:e2:43:e7:e4:a3:f8:b0:87:89:89:5f: fa:a1:c9:9a:a7:45:d0:3f:f3:17:b9:e1:80:88:ea: fd:dc:2e:c0:ea:e2:87:b2:48:12:e7:60:f9:08:0e: 62:c9:40:4b:7d:8d:76:92:cf:66:15:1a:da:93:92: d3:44:64:6e:21:de:79:42:b4:fa:30:a9:9e:7a:c5: ce:c3:82:ad:2f:db:cc:92:98:6d:07:a8:06:bf:a2: 80:1e:71:4d:47:81:08:19:c3:a7:94:14:56:85:57: 8a:f8:35:0b:8e:e5:a7:0b:7a:97:22:fd:02:28:da: 6b:34:f6:e7:90:3d:48:f8:bc:37:ff:69:35:37:71: 66:ed:e8:13:5f:41:1d:d1:f4:9e:38:6b:4f:0a:b0: 2f:c8:f8:b1:98:af:bb:90:f1:c2:b3:30:5a:f4:08: 96:70:ab:be:ef:2a:07:a6:d1:39:20:69:05:82:63: 22:33:99:98:d9:2a:9a:2e:64:e8:c2:67:5c:85:ec: b1:51:37:c8:5c:7f:7c:ff:c6:90:6b:df:93:db:66: 0a:bf:b0:54:8a:5a:96:5f:44:fd:42:cb:a7:ba:9b: 24:3f:9d:61:4b:bd:22:0a:fa:ea:4a:69:8b:0b:24: 0f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:69:54:B3:7B:8A:A2:36:9F:BD:5D:E7:B5:C0:2C:21:01:C1:21:52 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/EWlUs3uKojafvV3ntcAsIQHBIVI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.12.0/22 Signature Algorithm: sha256WithRSAEncryption a5:d4:ce:99:5d:37:fe:da:9a:a4:49:e4:51:a1:de:87:6b:8e: c2:5d:14:9a:58:c2:67:39:78:b5:b7:35:01:fc:66:48:fa:50: 4f:9f:0c:21:93:1f:ee:c2:6a:a3:ab:ce:9e:7e:ed:73:31:9d: b1:26:2a:68:9d:2c:72:f2:dc:8c:cf:ac:ed:2f:25:72:7e:09: a1:62:27:43:4e:1f:71:7e:80:03:21:bf:d5:fb:89:bf:e9:50: 1a:3b:17:a4:44:a6:5c:81:d9:c8:dc:23:05:58:e4:6f:d3:98: 1c:d6:29:47:04:4b:17:2a:73:bd:0d:73:c6:b5:2e:30:a4:8f: 7f:08:db:f0:c7:ae:3c:6a:7e:68:03:70:eb:75:69:58:c1:a2: 7c:b2:36:93:40:03:6f:8b:64:ac:b6:69:21:62:06:91:cd:71: e5:98:04:d6:af:0f:db:69:82:66:05:e7:2d:d2:8a:44:a3:8c: b6:13:dc:2e:b0:58:90:0e:c9:ba:1e:33:31:77:59:06:29:56: 2c:11:54:cf:24:c1:b3:9a:da:9c:97:ea:78:db:43:3c:b9:fe: 50:c0:19:3a:b4:11:01:1f:b6:cb:f4:e5:df:1a:27:b9:fd:30: 0a:bd:67:45:84:54:23:41:8d:52:10:01:35:7f:f9:89:51:0f: d4:8c:61:bd -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEAEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDExNjk1NEIzN0I4QUEy MzY5RkJENURFN0I1QzAyQzIxMDFDMTIxNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxnxbNB5MIjHfS2cl9V+dGLx3iQ+fko/iwh4mJX/qhyZqnRdA/ 8xe54YCI6v3cLsDq4oeySBLnYPkIDmLJQEt9jXaSz2YVGtqTktNEZG4h3nlCtPow qZ56xc7Dgq0v28ySmG0HqAa/ooAecU1HgQgZw6eUFFaFV4r4NQuO5acLepci/QIo 2ms09ueQPUj4vDf/aTU3cWbt6BNfQR3R9J44a08KsC/I+LGYr7uQ8cKzMFr0CJZw q77vKgem0TkgaQWCYyIzmZjZKpouZOjCZ1yF7LFRN8hcf3z/xpBr35PbZgq/sFSK WpZfRP1Cy6e6myQ/nWFLvSIK+upKaYsLJA+/AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUEWlUs3uKojafvV3ntcAsIQHBIVIwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvRVdsVXMzdUtvamFmdlYzbnRjQXNJ UUhCSVZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsveDDAN BgkqhkiG9w0BAQsFAAOCAQEApdTOmV03/tqapEnkUaHeh2uOwl0UmljCZzl4tbc1 AfxmSPpQT58MIZMf7sJqo6vOnn7tczGdsSYqaJ0scvLcjM+s7S8lcn4JoWInQ04f cX6AAyG/1fuJv+lQGjsXpESmXIHZyNwjBVjkb9OYHNYpRwRLFypzvQ1zxrUuMKSP fwjb8MeuPGp+aANw63VpWMGifLI2k0ADb4tkrLZpIWIGkc1x5ZgE1q8P22mCZgXn LdKKRKOMthPcLrBYkA7Juh4zMXdZBilWLBFUzyTBs5ranJfqeNtDPLn+UMAZOrQR AR+2y/Tl3xonuf0wCr1nRYRUI0GNUhABNX/5iVEP1IxhvQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org