$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/LoWi2aP8q411kkyH-I1OqgX7428.roa File: LoWi2aP8q411kkyH-I1OqgX7428.roa (raw, json) Hash identifier: 38Knq3sTt2wbjc4+aE9mVz4HCL51nnwqPZKEY82kXf8= Subject key identifier: 2E:85:A2:D9:A3:FC:AB:8D:75:92:4C:87:F8:8D:4E:AA:05:FB:E3:6F Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FED Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/LoWi2aP8q411kkyH-I1OqgX7428.roa Signing time: Mon 26 Aug 2024 05:13:13 +0000 ROA not before: Mon 26 Aug 2024 05:13:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 182.155.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4077 (0xfed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2E85A2D9A3FCAB8D75924C87F88D4EAA05FBE36F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:83:ed:f8:66:65:6d:82:b0:60:11:2d:f9:d8: 71:08:1c:b0:77:d4:f9:7d:e0:a3:9b:53:5d:96:60: 36:ec:b7:ed:82:53:03:99:52:db:e6:d6:d4:db:0a: b5:99:b8:34:ea:20:bd:f9:86:91:20:9a:ae:1a:0b: 33:fe:b0:46:83:6a:e4:b4:72:7a:a7:6f:46:55:ff: 47:03:83:e0:47:f1:37:52:31:67:4f:5a:7f:46:c3: e1:f9:e2:85:40:6a:fc:67:94:4d:5e:4e:b5:30:70: 1f:c0:5f:82:d8:11:be:83:e5:fd:07:5a:46:bd:8b: df:e1:34:9c:81:89:79:6b:69:b7:1a:82:ac:c7:5b: 5c:25:67:1a:d3:6f:15:1b:2e:5b:22:74:d1:21:2e: 47:e1:97:f5:ac:84:b0:13:7b:72:3e:5a:78:da:45: 9d:aa:99:29:17:ea:0e:1d:62:65:68:aa:d9:0c:1c: f8:ba:29:3f:48:f0:46:b7:f4:81:0c:f1:81:70:21: 7b:f2:57:43:4d:56:00:05:ec:6c:0a:dc:00:23:35: b9:17:24:8a:3f:e5:1e:b7:c9:6b:40:a7:f5:43:89: 3c:bc:cc:48:05:45:47:bd:9e:da:bb:1b:f7:2e:83: 68:68:f6:7f:8c:e4:08:da:39:b8:67:3a:f2:7a:c0: e3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:85:A2:D9:A3:FC:AB:8D:75:92:4C:87:F8:8D:4E:AA:05:FB:E3:6F X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/LoWi2aP8q411kkyH-I1OqgX7428.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.64.0/18 Signature Algorithm: sha256WithRSAEncryption 53:08:30:5f:5b:a3:6d:97:bd:02:67:a2:36:e8:af:25:94:40: 6a:cd:72:ca:a3:25:c0:9e:a8:ad:4e:20:13:ad:9f:99:e6:2e: 35:31:7b:5a:30:74:8f:44:d1:a9:2a:dc:fb:c4:a6:50:d3:7f: 1b:24:28:03:cd:5e:8b:33:c3:8c:df:42:2b:2b:8d:8e:f4:8d: 5a:e4:42:04:31:10:99:f4:22:94:6a:2b:fb:9d:62:17:33:fd: f1:d5:68:f7:a7:66:c4:e6:4e:12:79:5f:e7:16:a5:02:6e:ee: ec:44:5e:de:c3:40:08:26:5f:fd:5b:58:47:61:07:83:a1:54: 87:97:65:00:a9:0b:25:12:3a:e0:49:fb:86:0e:d7:60:c7:00: 19:f0:0f:8c:93:f4:13:13:f8:9a:65:36:6c:a2:fe:8e:64:e4: a0:b8:78:cf:e4:83:0b:c0:dc:5d:77:f3:97:07:6f:58:b3:63: 54:e0:c3:ad:b3:d6:74:64:02:1a:4c:38:bf:d1:39:28:be:74: dd:73:12:fa:3f:88:21:79:1b:db:7f:25:f8:e3:66:71:8e:bd: 35:e8:bb:71:75:33:f2:87:36:71:4f:e3:94:a2:4f:49:f6:fb: 55:01:53:e8:e9:4b:af:22:4e:18:25:b9:91:9f:3f:14:f9:78: f5:0b:f2:93 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD+0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFODVBMkQ5QTNGQ0FC OEQ3NTkyNEM4N0Y4OEQ0RUFBMDVGQkUzNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDig+34ZmVtgrBgES352HEIHLB31Pl94KObU12WYDbst+2CUwOZ Utvm1tTbCrWZuDTqIL35hpEgmq4aCzP+sEaDauS0cnqnb0ZV/0cDg+BH8TdSMWdP Wn9Gw+H54oVAavxnlE1eTrUwcB/AX4LYEb6D5f0HWka9i9/hNJyBiXlrabcagqzH W1wlZxrTbxUbLlsidNEhLkfhl/WshLATe3I+WnjaRZ2qmSkX6g4dYmVoqtkMHPi6 KT9I8Ea39IEM8YFwIXvyV0NNVgAF7GwK3AAjNbkXJIo/5R63yWtAp/VDiTy8zEgF RUe9ntq7G/cug2ho9n+M5AjaObhnOvJ6wOP3AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQULoWi2aP8q411kkyH+I1OqgX7428wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvTG9XaTJhUDhxNDExa2t5SC1JMU9x Z1g3NDI4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBrabQDAN BgkqhkiG9w0BAQsFAAOCAQEAUwgwX1ujbZe9AmeiNuivJZRAas1yyqMlwJ6orU4g E62fmeYuNTF7WjB0j0TRqSrc+8SmUNN/GyQoA81eizPDjN9CKyuNjvSNWuRCBDEQ mfQilGor+51iFzP98dVo96dmxOZOEnlf5xalAm7u7ERe3sNACCZf/VtYR2EHg6FU h5dlAKkLJRI64En7hg7XYMcAGfAPjJP0ExP4mmU2bKL+jmTkoLh4z+SDC8DcXXfz lwdvWLNjVODDrbPWdGQCGkw4v9E5KL503XMS+j+IIXkb238l+ONmcY69Nei7cXUz 8oc2cU/jlKJPSfb7VQFT6OlLryJOGCW5kZ8/FPl49Qvykw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org