$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/PYWsOKuNkkc9_jtQS3tB2oGCHFM.roa File: PYWsOKuNkkc9_jtQS3tB2oGCHFM.roa (raw, json) Hash identifier: 7olnTYPF0K2iGeIUmwGc8rTciB7OohTuqyd605pNaLA= Subject key identifier: 3D:85:AC:38:AB:8D:92:47:3D:FE:3B:50:4B:7B:41:DA:81:82:1C:53 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 100B Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/PYWsOKuNkkc9_jtQS3tB2oGCHFM.roa Signing time: Mon 26 Aug 2024 05:13:20 +0000 ROA not before: Mon 26 Aug 2024 05:13:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 210.209.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4107 (0x100b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3D85AC38AB8D92473DFE3B504B7B41DA81821C53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:17:a1:52:e3:32:70:58:be:79:a0:e3:51:59: e7:11:fe:18:8f:72:ee:7d:de:63:fd:fa:43:b5:49: 85:9e:04:03:75:a2:9b:dc:47:60:4d:27:bb:73:a6: bb:51:4b:27:36:95:d1:fe:78:35:8e:29:3f:ba:77: 08:5b:b4:88:ea:09:fb:07:71:14:48:af:ee:14:d4: f5:2c:dc:d6:53:31:ca:95:f3:fb:07:2e:16:48:b2: 18:9e:3e:1f:18:9b:5d:fd:bd:77:ab:cb:71:91:9d: 33:e0:f1:9a:d4:5e:6b:73:18:54:f8:02:fe:a0:66: 8e:b1:40:76:2b:c2:07:6f:63:bd:9c:41:38:e5:4b: 8e:14:5f:60:a5:2c:e7:80:ca:cb:4d:d5:1b:54:dc: 16:b6:16:12:23:b4:f7:3e:70:76:63:0d:b4:fa:8a: 58:a1:7d:d3:c7:17:6b:8b:e3:0d:5c:cf:cc:a5:ea: 1a:cd:c2:aa:ba:2b:f9:d7:d7:9f:d0:fb:46:80:05: 39:e6:73:63:92:ce:da:53:10:21:a2:74:d4:a8:d2: 74:98:bf:7f:4d:f8:cf:07:90:9d:92:3a:03:fa:86: b5:c4:4e:a2:89:d3:ea:3b:24:b8:c3:80:f4:76:a1: c3:92:29:12:7c:33:d3:1b:31:39:1d:22:8f:63:7c: 94:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:85:AC:38:AB:8D:92:47:3D:FE:3B:50:4B:7B:41:DA:81:82:1C:53 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/PYWsOKuNkkc9_jtQS3tB2oGCHFM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.209.192.0/18 Signature Algorithm: sha256WithRSAEncryption 8f:f3:55:53:94:4f:05:ef:98:0e:98:9b:03:50:31:93:2a:e1: bf:a2:79:a4:b3:a0:ef:3a:b3:4f:75:32:62:e4:b0:74:1c:7c: de:16:de:c9:ba:67:35:78:5e:f4:de:fd:aa:9d:e5:8e:60:f4: 7b:a7:1b:de:c1:fd:8d:81:45:6d:ea:0e:cd:c3:bd:5e:42:a3: c4:6d:6b:6f:bf:a8:c8:93:f0:ec:f9:fb:1e:14:1a:0a:9f:b9: 1b:b8:08:5f:85:12:03:80:c8:bb:ee:cf:be:c9:a2:5d:98:4b: b6:e3:7e:e9:c8:bf:37:64:01:1f:75:d4:1b:50:35:dd:91:cc: b6:98:13:cf:0e:b1:4a:ea:36:94:86:56:6a:7a:ee:4d:e7:5b: 26:42:86:ed:d4:53:23:8f:4f:4d:8a:15:bf:98:bb:50:d0:74: 1b:54:ab:41:69:77:75:d3:39:99:85:cf:a4:5e:bd:45:f1:39: 26:71:a6:f5:3a:33:d7:9d:9b:52:83:98:df:7d:14:2b:18:8c: 53:29:89:72:32:52:e4:e9:af:53:a6:d2:38:18:f9:c6:59:d7: e1:b5:fa:55:91:70:2b:cd:d2:7f:24:08:af:de:f9:ba:42:40: 92:5d:37:58:f4:c4:ae:d4:60:3e:fb:3b:64:38:04:13:b3:4d: 15:a5:0a:27 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEAswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNEODVBQzM4QUI4RDky NDczREZFM0I1MDRCN0I0MURBODE4MjFDNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZF6FS4zJwWL55oONRWecR/hiPcu593mP9+kO1SYWeBAN1opvc R2BNJ7tzprtRSyc2ldH+eDWOKT+6dwhbtIjqCfsHcRRIr+4U1PUs3NZTMcqV8/sH LhZIshiePh8Ym139vXery3GRnTPg8ZrUXmtzGFT4Av6gZo6xQHYrwgdvY72cQTjl S44UX2ClLOeAystN1RtU3Ba2FhIjtPc+cHZjDbT6ilihfdPHF2uL4w1cz8yl6hrN wqq6K/nX15/Q+0aABTnmc2OSztpTECGidNSo0nSYv39N+M8HkJ2SOgP6hrXETqKJ 0+o7JLjDgPR2ocOSKRJ8M9MbMTkdIo9jfJSfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUPYWsOKuNkkc9/jtQS3tB2oGCHFMwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvUFlXc09LdU5ra2M5X2p0UVMzdEIy b0dDSEZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLRwDAN BgkqhkiG9w0BAQsFAAOCAQEAj/NVU5RPBe+YDpibA1Axkyrhv6J5pLOg7zqzT3Uy YuSwdBx83hbeybpnNXhe9N79qp3ljmD0e6cb3sH9jYFFbeoOzcO9XkKjxG1rb7+o yJPw7Pn7HhQaCp+5G7gIX4USA4DIu+7PvsmiXZhLtuN+6ci/N2QBH3XUG1A13ZHM tpgTzw6xSuo2lIZWanruTedbJkKG7dRTI49PTYoVv5i7UNB0G1SrQWl3ddM5mYXP pF69RfE5JnGm9Toz152bUoOY330UKxiMUymJcjJS5OmvU6bSOBj5xlnX4bX6VZFw K83SfyQIr975ukJAkl03WPTErtRgPvs7ZDgEE7NNFaUKJw== -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:40 2024 by rpki-client on console-fra.rpki-client.org