$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Ld93ThimNKI83nliOl8tp10czD4.roa File: Ld93ThimNKI83nliOl8tp10czD4.roa (raw, json) Hash identifier: y0lb8MPk2iYqRQC2Y+2GMcFNRF4uRE/uwENsvxQgm2M= Subject key identifier: 2D:DF:77:4E:18:A6:34:A2:3C:DE:79:62:3A:5F:2D:A7:5D:1C:CC:3E Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FE6 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Ld93ThimNKI83nliOl8tp10czD4.roa Signing time: Mon 26 Aug 2024 05:13:11 +0000 ROA not before: Mon 26 Aug 2024 05:13:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 121.254.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4070 (0xfe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2DDF774E18A634A23CDE79623A5F2DA75D1CCC3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d8:95:66:98:7c:c1:4c:56:b7:ec:5d:e5:a5: 12:da:55:e9:a1:21:33:27:82:17:a5:a6:96:7e:a6: 6d:24:6c:c0:82:47:12:a5:99:7a:bf:ea:45:2a:5f: bf:f3:61:b4:d2:65:25:ac:e0:d6:0a:8c:02:a5:29: 14:bb:c2:3e:bc:cb:cc:18:e1:ef:52:e0:a7:48:6e: 06:0c:6b:ee:0e:52:00:68:74:fb:1d:e4:67:26:52: 23:ac:84:53:b3:61:7c:3c:ca:91:82:c2:6c:2f:23: fc:a6:d8:93:14:1c:9c:c0:49:e3:21:b4:e5:37:bf: 80:03:01:69:b4:5b:df:da:64:6f:04:12:6d:d4:b9: 54:7e:bf:83:b6:7a:f3:8d:b1:c7:1b:41:76:83:0f: e2:29:b3:df:d6:72:42:95:02:1f:6b:64:de:66:b2: a7:c6:54:f5:89:dd:96:0b:75:a6:c9:8d:b6:86:c9: b9:8d:43:1c:7f:cd:86:0b:35:81:0e:b7:7b:52:d1: fe:22:9a:6f:b0:f9:f0:18:d9:0a:e9:76:56:9d:93: b4:65:47:13:d9:2c:f7:44:6c:27:5d:c7:18:13:d1: 88:2d:bb:fe:a2:0c:31:72:64:3a:5f:e2:fa:7a:ed: db:5b:02:2b:01:af:f1:09:2d:e6:d9:be:c8:e3:b0: 36:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DF:77:4E:18:A6:34:A2:3C:DE:79:62:3A:5F:2D:A7:5D:1C:CC:3E X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Ld93ThimNKI83nliOl8tp10czD4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.254.64.0/19 Signature Algorithm: sha256WithRSAEncryption 85:f8:5c:fd:5b:ec:6e:1c:06:27:e0:cf:4a:98:f7:ad:38:79: 2a:03:fd:04:29:67:50:00:e6:ae:fe:7b:e8:a0:05:2f:20:be: 3e:96:47:7c:82:0d:63:6b:b0:cd:f8:96:fe:d4:62:90:b2:88: 91:87:3d:f3:6a:6a:f0:b4:50:8f:f6:80:4e:39:6f:85:47:c3: 0b:67:4a:41:7e:8f:6a:5c:b1:6a:7c:2e:88:53:1f:09:f6:88: 88:c5:1c:7f:19:7a:74:ff:4f:29:a6:c1:c9:8b:05:7a:2c:45: 72:ca:8d:23:b0:48:74:07:15:1c:e9:08:1a:06:74:0a:02:0d: f0:37:94:4a:5f:4c:9f:b6:ca:b2:b7:dc:6c:9c:c8:65:d5:d6: 23:3a:21:86:c0:8c:b1:fd:58:c9:6d:fb:80:d2:5d:49:b2:de: 4a:f2:20:ca:56:8a:ff:14:40:ca:d1:55:f4:46:68:89:34:45: 62:53:a5:3f:e9:ef:94:02:b6:07:fa:1b:bf:10:ca:bb:e5:05: b2:78:63:88:7f:55:8e:bf:63:be:06:6a:18:a7:f1:b3:9d:4c: b8:09:0b:aa:6a:a1:d1:a9:43:c9:c2:78:23:d1:b0:ae:2f:78: 91:1b:64:a3:66:98:4f:ba:a6:4e:36:89:fc:89:59:4d:84:38: 4d:57:be:32 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD+YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJEREY3NzRFMThBNjM0 QTIzQ0RFNzk2MjNBNUYyREE3NUQxQ0NDM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY2JVmmHzBTFa37F3lpRLaVemhITMnghelppZ+pm0kbMCCRxKl mXq/6kUqX7/zYbTSZSWs4NYKjAKlKRS7wj68y8wY4e9S4KdIbgYMa+4OUgBodPsd 5GcmUiOshFOzYXw8ypGCwmwvI/ym2JMUHJzASeMhtOU3v4ADAWm0W9/aZG8EEm3U uVR+v4O2evONsccbQXaDD+Ips9/WckKVAh9rZN5msqfGVPWJ3ZYLdabJjbaGybmN Qxx/zYYLNYEOt3tS0f4imm+w+fAY2Qrpdladk7RlRxPZLPdEbCddxxgT0Ygtu/6i DDFyZDpf4vp67dtbAisBr/EJLebZvsjjsDaNAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQULd93ThimNKI83nliOl8tp10czD4wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvTGQ5M1RoaW1OS0k4M25saU9sOHRw MTBjekQ0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXn+QDAN BgkqhkiG9w0BAQsFAAOCAQEAhfhc/VvsbhwGJ+DPSpj3rTh5KgP9BClnUADmrv57 6KAFLyC+PpZHfIINY2uwzfiW/tRikLKIkYc982pq8LRQj/aATjlvhUfDC2dKQX6P alyxanwuiFMfCfaIiMUcfxl6dP9PKabByYsFeixFcsqNI7BIdAcVHOkIGgZ0CgIN 8DeUSl9Mn7bKsrfcbJzIZdXWIzohhsCMsf1YyW37gNJdSbLeSvIgylaK/xRAytFV 9EZoiTRFYlOlP+nvlAK2B/obvxDKu+UFsnhjiH9Vjr9jvgZqGKfxs51MuAkLqmqh 0alDycJ4I9Gwri94kRtko2aYT7qmTjaJ/IlZTYQ4TVe+Mg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org