$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Qs4tGwG9cdrvdb-d8ZSFvLnSYcI.roa File: Qs4tGwG9cdrvdb-d8ZSFvLnSYcI.roa (raw, json) Hash identifier: SsrS7l2gL378hBJqoeBuzz8eB26Vb1IDIUxlbVjgQVE= Subject key identifier: 42:CE:2D:1B:01:BD:71:DA:EF:75:BF:9D:F1:94:85:BC:B9:D2:61:C2 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E52 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Qs4tGwG9cdrvdb-d8ZSFvLnSYcI.roa Signing time: Fri 01 Sep 2023 08:49:33 +0000 ROA not before: Fri 01 Sep 2023 08:49:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 2401:ab00::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3666 (0xe52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=42CE2D1B01BD71DAEF75BF9DF19485BCB9D261C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a1:f8:fe:a8:bc:77:a3:79:8a:80:b5:cf:7b: c5:ad:bb:fd:9c:55:61:24:8f:1f:f4:17:88:39:e1: e7:d6:f2:b2:3b:f2:8b:4f:df:1e:a4:39:ca:7f:66: ee:22:6b:17:19:83:b5:1f:5a:6c:ea:ed:15:3e:50: 0e:86:64:03:91:ca:ce:83:bc:6d:9e:fd:8b:25:66: 54:be:f0:57:59:fb:20:7b:07:b5:62:f2:e9:05:27: 55:64:3c:21:09:1b:b7:c1:7c:6b:30:d4:87:7f:f9: 59:33:d0:65:c0:1a:69:2d:b4:ec:26:77:f0:67:0e: 4a:fb:9b:97:5d:a1:4e:ce:5d:ff:84:f5:08:38:23: a5:1f:74:0e:8b:da:71:75:ec:18:08:6c:e2:f7:42: 37:ad:e1:b1:6a:ea:6f:9a:29:47:5c:98:dd:7b:6f: 4b:d7:62:53:bc:34:b7:74:98:22:76:69:3f:91:50: fa:23:de:a2:1a:45:0c:f3:ac:b0:22:d0:0b:35:a2: 36:bb:3c:b9:7e:37:e7:cf:59:86:cb:e9:db:88:e2: c2:bb:f8:a0:f1:aa:3b:dc:7f:6c:5b:c1:9e:f1:e8: 6c:d1:91:6d:47:82:5a:04:f5:4b:62:78:5c:77:75: 21:b9:21:1e:5e:c5:cb:98:89:91:1a:3f:f0:89:74: 6d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:CE:2D:1B:01:BD:71:DA:EF:75:BF:9D:F1:94:85:BC:B9:D2:61:C2 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Qs4tGwG9cdrvdb-d8ZSFvLnSYcI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:ab00::/32 Signature Algorithm: sha256WithRSAEncryption 71:39:5f:ad:64:f5:cd:f2:47:d2:e1:4c:73:46:e5:90:76:58: 4b:68:b7:0f:60:e4:b6:7f:5b:97:d1:4a:77:2f:a3:4a:08:ee: e4:73:fd:2f:98:04:4c:44:74:11:5a:eb:fa:5a:89:32:67:c0: 04:b8:75:bc:a6:8a:76:1d:d9:b9:9d:66:28:60:d7:fc:8b:38: a4:65:b7:df:a8:a1:13:0a:0b:52:af:46:ba:b4:f3:43:66:63: de:88:b2:70:94:b4:ea:ee:5f:b2:ae:12:65:8b:6d:8f:2a:72: af:09:50:08:c5:e0:10:cb:84:cc:66:c7:6a:77:f9:85:21:2e: e1:25:82:77:be:82:6f:a5:f4:3e:0d:8f:10:f6:fc:cf:94:52: ac:c3:79:50:ea:b0:77:28:ff:2a:a3:85:44:86:cb:55:17:2f: dc:53:8a:ca:ad:ba:dc:52:b9:97:de:9e:a3:96:d4:79:82:ee: 3d:4e:cd:3f:41:53:71:da:f4:1d:b4:29:4f:12:1e:f5:d7:ce: 66:0f:dd:86:af:d8:c0:cf:4b:49:fc:8c:85:e1:7a:21:07:ad: 00:cd:0a:7b:70:6d:c0:c6:4b:a3:60:53:ce:23:74:67:d5:5f: d5:c4:cb:e9:6b:12:71:52:4c:f6:f2:3c:2e:01:91:76:46:fb: 02:ff:f9:02 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDlIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQyQ0UyRDFCMDFCRDcx REFFRjc1QkY5REYxOTQ4NUJDQjlEMjYxQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrofj+qLx3o3mKgLXPe8Wtu/2cVWEkjx/0F4g54efW8rI78otP 3x6kOcp/Zu4iaxcZg7UfWmzq7RU+UA6GZAORys6DvG2e/YslZlS+8FdZ+yB7B7Vi 8ukFJ1VkPCEJG7fBfGsw1Id/+Vkz0GXAGmkttOwmd/BnDkr7m5ddoU7OXf+E9Qg4 I6UfdA6L2nF17BgIbOL3Qjet4bFq6m+aKUdcmN17b0vXYlO8NLd0mCJ2aT+RUPoj 3qIaRQzzrLAi0As1oja7PLl+N+fPWYbL6duI4sK7+KDxqjvcf2xbwZ7x6GzRkW1H gloE9UtieFx3dSG5IR5excuYiZEaP/CJdG3bAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUQs4tGwG9cdrvdb+d8ZSFvLnSYcIwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvUXM0dEd3RzljZHJ2ZGItZDhaU0Z2 TG5TWWNJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBqwAw DQYJKoZIhvcNAQELBQADggEBAHE5X61k9c3yR9LhTHNG5ZB2WEtotw9g5LZ/W5fR Sncvo0oI7uRz/S+YBExEdBFa6/paiTJnwAS4dbyminYd2bmdZihg1/yLOKRlt9+o oRMKC1KvRrq080NmY96IsnCUtOruX7KuEmWLbY8qcq8JUAjF4BDLhMxmx2p3+YUh LuElgne+gm+l9D4NjxD2/M+UUqzDeVDqsHco/yqjhUSGy1UXL9xTisqtutxSuZfe nqOW1HmC7j1OzT9BU3Ha9B20KU8SHvXXzmYP3Yav2MDPS0n8jIXheiEHrQDNCntw bcDGS6NgU84jdGfVX9XEy+lrEnFSTPbyPC4BkXZG+wL/+QI= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org