$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/LrFGN8l3i_jGNoa9n2-0nYLJTpo.roa File: LrFGN8l3i_jGNoa9n2-0nYLJTpo.roa (raw, json) Hash identifier: an2HJUvZrLuVdXXqN2fFUxR8yhnAMqjjcWrMwzizT1Y= Subject key identifier: 2E:B1:46:37:C9:77:8B:F8:C6:36:86:BD:9F:6F:B4:9D:82:C9:4E:9A Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E6D Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/LrFGN8l3i_jGNoa9n2-0nYLJTpo.roa Signing time: Fri 01 Sep 2023 08:49:41 +0000 ROA not before: Fri 01 Sep 2023 08:49:41 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 203.222.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3693 (0xe6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:41 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2EB14637C9778BF8C63686BD9F6FB49D82C94E9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:27:28:dd:fc:cf:2e:86:d3:a5:c6:a7:e8: d8:98:3a:c6:f1:ce:59:7e:37:82:9a:39:15:39:bf: 3f:82:08:72:c6:bb:51:b8:06:38:e9:94:60:1d:d2: 2c:39:fd:1b:63:88:07:c4:26:35:b2:99:67:9c:b7: bc:b9:5b:1c:00:9e:8d:60:b6:58:ed:06:ad:73:66: 7f:72:ab:ab:a2:81:b9:f2:b5:f5:21:94:c6:95:87: be:1f:d0:35:25:6e:3b:53:e4:5b:c9:f4:47:a7:13: bc:2c:a0:fe:75:e1:74:d4:f6:24:18:00:a4:74:2a: d9:a6:34:06:71:88:55:3b:dd:d4:6d:24:35:09:36: 15:12:92:d1:f5:bc:31:db:ad:f3:c2:4b:88:69:dd: 81:52:22:bb:15:1f:49:10:c0:ca:de:b7:86:2d:d2: b6:71:7a:24:52:03:7e:d7:aa:13:92:4e:26:bc:02: 35:31:d6:77:28:62:9b:b0:fd:dd:df:44:a8:ba:73: 5d:e2:c3:fd:a0:d4:cf:75:64:77:d9:79:93:83:68: 61:41:ee:35:8a:dd:a7:aa:a9:e3:56:68:aa:ae:6e: ce:8b:39:da:37:d3:d9:6a:ea:9a:87:d6:7e:c0:91: fd:db:3c:e8:13:fc:f1:2d:5e:1e:0f:98:42:ae:38: 7c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B1:46:37:C9:77:8B:F8:C6:36:86:BD:9F:6F:B4:9D:82:C9:4E:9A X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/LrFGN8l3i_jGNoa9n2-0nYLJTpo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.0.0/22 Signature Algorithm: sha256WithRSAEncryption b6:a1:e2:f2:40:26:47:fe:a1:a4:54:a6:d3:8e:f0:26:c2:f2: 60:d9:50:19:c2:ea:b3:9d:1f:c4:37:50:8e:13:47:d2:82:23: 9d:2f:33:0f:86:68:fe:c4:9e:97:4f:8c:e7:5c:87:02:59:66: 4b:6f:39:ee:81:1b:1b:dc:ca:04:9a:38:66:01:dc:85:57:39: dc:df:96:a6:8d:69:d0:6a:50:18:98:d6:ce:de:cc:d1:c5:c3: 6c:2a:0c:25:2c:d9:7b:20:3c:40:6e:7e:0d:9d:85:20:77:71: f5:2a:84:0c:6e:f9:38:2e:ba:7a:e3:e8:14:31:68:25:fe:3f: 5c:c1:cd:47:d9:c1:b4:d5:97:33:77:d7:63:a4:13:20:48:8c: 62:ec:a4:d8:14:70:b4:23:a5:f2:08:4b:1e:f4:11:5b:27:65: e5:9c:68:45:91:b6:d2:7c:d1:4e:8a:d5:46:4a:4a:79:f2:6e: f9:44:87:05:31:f5:a6:c9:83:18:82:1c:95:94:f9:9d:43:c2: ae:88:97:be:91:fe:5e:bd:5c:5f:f6:aa:9a:c2:f4:50:d2:27: 8b:74:2c:17:d3:57:d7:24:02:4a:12:57:9f:98:4f:18:2f:5d: 41:58:f9:a8:d9:1d:74:d7:b5:1c:59:a3:f8:2a:83:b9:d4:f6: 9a:a9:ee:af -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDm0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5NDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJFQjE0NjM3Qzk3NzhC RjhDNjM2ODZCRDlGNkZCNDlEODJDOTRFOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/9Sco3fzPLobTpcan6NiYOsbxzll+N4KaORU5vz+CCHLGu1G4 BjjplGAd0iw5/RtjiAfEJjWymWect7y5WxwAno1gtljtBq1zZn9yq6uigbnytfUh lMaVh74f0DUlbjtT5FvJ9EenE7wsoP514XTU9iQYAKR0KtmmNAZxiFU73dRtJDUJ NhUSktH1vDHbrfPCS4hp3YFSIrsVH0kQwMret4Yt0rZxeiRSA37XqhOSTia8AjUx 1ncoYpuw/d3fRKi6c13iw/2g1M91ZHfZeZODaGFB7jWK3aeqqeNWaKqubs6LOdo3 09lq6pqH1n7Akf3bPOgT/PEtXh4PmEKuOHwbAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQULrFGN8l3i/jGNoa9n2+0nYLJTpowHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvTHJGR044bDNpX2pHTm9hOW4yLTBu WUxKVHBvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsveADAN BgkqhkiG9w0BAQsFAAOCAQEAtqHi8kAmR/6hpFSm047wJsLyYNlQGcLqs50fxDdQ jhNH0oIjnS8zD4Zo/sSel0+M51yHAllmS2857oEbG9zKBJo4ZgHchVc53N+Wpo1p 0GpQGJjWzt7M0cXDbCoMJSzZeyA8QG5+DZ2FIHdx9SqEDG75OC66euPoFDFoJf4/ XMHNR9nBtNWXM3fXY6QTIEiMYuyk2BRwtCOl8ghLHvQRWydl5ZxoRZG20nzRTorV RkpKefJu+USHBTH1psmDGIIclZT5nUPCroiXvpH+Xr1cX/aqmsL0UNIni3QsF9NX 1yQCShJXn5hPGC9dQVj5qNkddNe1HFmj+CqDudT2mqnurw== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org