$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/JSlxOuGgv_hEK0SrhpRrxhKGvBU.roa File: JSlxOuGgv_hEK0SrhpRrxhKGvBU.roa (raw, json) Hash identifier: JlXW5t1eO1HtWn+soS2lswi5QKPsd51ZKAJ9YL3Dd/Q= Subject key identifier: 25:29:71:3A:E1:A0:BF:F8:44:2B:44:AB:86:94:6B:C6:12:86:BC:15 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E14 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JSlxOuGgv_hEK0SrhpRrxhKGvBU.roa Signing time: Fri 01 Sep 2023 08:49:16 +0000 ROA not before: Fri 01 Sep 2023 08:49:16 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 113.61.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3604 (0xe14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:16 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2529713AE1A0BFF8442B44AB86946BC61286BC15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:35:5e:e5:73:8a:aa:b5:84:3f:7a:0a:f9:2c: 45:ae:0c:23:ac:0b:f4:63:19:f6:37:3a:eb:c7:3e: 94:05:24:fa:fc:54:4a:44:8e:28:58:ca:0e:3d:04: 45:36:87:2f:d7:cc:88:13:ef:94:56:3c:f3:08:a3: e2:0a:41:42:81:11:36:9b:20:29:88:70:38:59:6d: f7:8f:07:af:00:1e:04:d3:c5:a1:f4:fe:a4:64:f8: 0b:2f:1c:f8:11:1b:f7:21:13:03:62:ab:fc:01:a4: a8:d6:d6:9a:85:fc:0f:69:92:07:a9:41:68:9d:8e: e6:1e:e3:c4:d4:5f:c1:76:a9:85:ec:e5:ef:b1:4b: cd:19:53:b4:3d:20:ce:eb:8d:c6:d3:29:05:af:57: 11:f9:e4:4b:d0:c8:c5:1a:c6:3e:cd:dd:47:28:a8: 67:60:32:40:6c:f6:d9:56:bd:fb:10:92:ce:5e:65: da:bc:0a:2d:9c:30:50:94:73:e5:08:36:66:9b:67: e9:17:2a:29:a3:3e:3c:cb:53:f7:70:dd:4c:82:bf: 37:00:48:e8:3f:b3:d2:71:c5:d4:ae:e4:4f:80:a6: c9:53:b7:6c:49:1f:5d:eb:14:15:a2:4f:70:02:9b: 20:b7:04:99:0a:18:87:ec:c0:a8:8a:0c:e6:cb:09: 0a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:29:71:3A:E1:A0:BF:F8:44:2B:44:AB:86:94:6B:C6:12:86:BC:15 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JSlxOuGgv_hEK0SrhpRrxhKGvBU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.224.0/19 Signature Algorithm: sha256WithRSAEncryption 79:78:18:b5:da:c1:70:a5:ef:dc:63:34:d7:0c:90:cd:52:f4: 95:67:91:b1:e6:3e:60:e6:ea:f1:24:7a:7f:7d:d9:a3:63:a0: 46:65:b5:9d:11:a0:22:1f:b4:35:e1:69:73:30:d5:c2:24:a7: cb:2e:b2:2c:07:51:a8:54:01:b5:f9:5f:be:c4:c0:1b:1e:46: 50:38:53:f6:2f:c9:59:5a:dd:79:ff:a7:cf:59:ae:78:80:28: 3d:7e:9a:7e:81:d1:9e:4e:0f:9d:8f:3e:b6:ea:2a:52:75:ab: 40:61:f8:e7:8b:05:ef:5a:5f:c0:93:ae:b6:13:28:13:1f:66: a5:40:76:73:d5:79:6e:cf:2b:81:d4:da:b9:11:cc:70:66:ba: 4c:48:d8:4c:d9:34:2d:73:9b:8c:b9:9a:99:a1:8d:2c:67:d0: 3f:d1:24:7e:53:27:ce:fb:dd:d8:35:df:68:f2:ad:0c:d4:7b: b1:ea:ca:38:09:cb:cd:2d:3c:4d:29:7c:96:3f:ee:e7:a4:5c: bb:e6:8d:4b:87:14:0d:49:8a:4b:ca:49:68:23:05:14:34:53: 60:98:9f:5c:2e:83:6d:75:2e:fd:82:86:84:65:05:d9:2a:32: d6:5c:f9:73:7f:9f:d3:c4:2b:ce:ae:e5:bb:e0:a0:9b:32:f2: f8:0e:f9:67 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDhQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI1Mjk3MTNBRTFBMEJG Rjg0NDJCNDRBQjg2OTQ2QkM2MTI4NkJDMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTNV7lc4qqtYQ/egr5LEWuDCOsC/RjGfY3OuvHPpQFJPr8VEpE jihYyg49BEU2hy/XzIgT75RWPPMIo+IKQUKBETabICmIcDhZbfePB68AHgTTxaH0 /qRk+AsvHPgRG/chEwNiq/wBpKjW1pqF/A9pkgepQWidjuYe48TUX8F2qYXs5e+x S80ZU7Q9IM7rjcbTKQWvVxH55EvQyMUaxj7N3UcoqGdgMkBs9tlWvfsQks5eZdq8 Ci2cMFCUc+UINmabZ+kXKimjPjzLU/dw3UyCvzcASOg/s9JxxdSu5E+ApslTt2xJ H13rFBWiT3ACmyC3BJkKGIfswKiKDObLCQphAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUJSlxOuGgv/hEK0SrhpRrxhKGvBUwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvSlNseE91R2d2X2hFSzBTcmhwUnJ4 aEtHdkJVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXE94DAN BgkqhkiG9w0BAQsFAAOCAQEAeXgYtdrBcKXv3GM01wyQzVL0lWeRseY+YObq8SR6 f33Zo2OgRmW1nRGgIh+0NeFpczDVwiSnyy6yLAdRqFQBtflfvsTAGx5GUDhT9i/J WVrdef+nz1mueIAoPX6afoHRnk4PnY8+tuoqUnWrQGH454sF71pfwJOuthMoEx9m pUB2c9V5bs8rgdTauRHMcGa6TEjYTNk0LXObjLmamaGNLGfQP9EkflMnzvvd2DXf aPKtDNR7serKOAnLzS08TSl8lj/u56Rcu+aNS4cUDUmKS8pJaCMFFDRTYJifXC6D bXUu/YKGhGUF2Soy1lz5c3+f08Qrzq7lu+CgmzLy+A75Zw== -----END CERTIFICATE-----Generated at Mon Jun 3 06:07:08 2024 by rpki-client on console-ams.rpki-client.org