$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/VKyVpqkJyzhzy53ZdtVKfyX_2C4.roa File: VKyVpqkJyzhzy53ZdtVKfyX_2C4.roa (raw, json) Hash identifier: wn4gzAMrdebAcgJiESpDxm8CKteAN/xXkoMnDQxxLHA= Subject key identifier: 54:AC:95:A6:A9:09:CB:38:73:CB:9D:D9:76:D5:4A:7F:25:FF:D8:2E Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FF8 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/VKyVpqkJyzhzy53ZdtVKfyX_2C4.roa Signing time: Mon 26 Aug 2024 05:13:15 +0000 ROA not before: Mon 26 Aug 2024 05:13:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 27.96.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4088 (0xff8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=54AC95A6A909CB3873CB9DD976D54A7F25FFD82E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:70:ec:79:6f:69:91:ff:75:37:bc:4f:96:f4: 7a:b5:c9:b4:2e:e5:1d:f8:f7:85:05:46:01:44:e0: 6f:0f:f6:8f:fc:66:df:f0:a9:79:c7:17:bf:d7:ab: f2:5e:ff:10:13:6e:55:0d:50:d6:d5:51:fa:3b:10: 32:e4:95:53:71:a2:ac:21:1f:58:f7:12:36:f9:1c: 04:be:0f:37:b5:55:42:be:9c:56:80:2a:3d:83:ae: 4b:92:5a:c8:9e:8c:82:16:71:ed:b3:45:7d:9e:0c: 6f:c9:ff:33:fb:bc:f2:dc:09:e3:b8:50:fd:d2:76: 6c:c7:ee:6e:8b:d6:a2:71:b7:2a:57:db:00:48:f8: fe:d8:48:7b:d4:9a:cd:50:1c:54:8b:e8:16:ce:f2: 44:78:b6:cb:5c:10:90:bd:12:03:df:d2:8b:11:4c: a8:ed:f0:7d:b0:ab:69:be:a2:25:84:17:73:e1:ef: 5f:f6:b0:36:12:3d:27:51:3b:8d:8a:25:ed:8b:83: b5:e5:ef:e0:48:0a:eb:16:bc:25:37:db:f8:72:e9: 91:f2:ad:98:91:44:b8:30:84:60:3a:b8:dc:98:1a: b5:32:28:50:37:7d:e6:8c:5f:f5:5f:6d:74:ec:8a: dc:86:4e:8e:71:20:b8:4f:5a:54:52:73:5b:07:f6: 6c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:AC:95:A6:A9:09:CB:38:73:CB:9D:D9:76:D5:4A:7F:25:FF:D8:2E X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/VKyVpqkJyzhzy53ZdtVKfyX_2C4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.240.0/21 Signature Algorithm: sha256WithRSAEncryption 0d:e5:f6:cd:8e:e8:7f:cc:72:c8:b3:a8:34:f0:9f:5f:37:1a: 89:57:a7:7d:60:c2:1b:c7:46:1d:5b:be:c1:34:dc:65:17:94: af:72:7b:de:ff:bd:0a:46:ad:3a:11:f7:11:3d:16:b2:d4:37: b9:ea:22:80:88:c0:42:ca:75:1b:ea:9d:23:cd:70:f6:56:ad: 91:44:17:de:21:2a:fa:97:9a:f0:18:95:d0:e5:eb:64:94:6d: 9e:d5:67:9b:7a:64:46:cb:61:bd:c1:bf:20:6f:e6:74:d8:6c: 26:ce:30:49:5c:55:a3:ea:f2:5a:22:66:f2:9e:cd:ea:f7:2c: 73:1b:d2:b5:2d:9b:56:6b:c4:97:cc:04:7f:97:21:99:fe:09: d0:14:29:f2:01:e6:13:86:99:bd:27:67:98:e5:e4:86:d6:9f: d5:e0:6d:82:7f:bc:ec:49:d9:05:21:0d:fb:3f:4d:8e:5a:40: 43:cc:2e:8f:75:f3:d6:50:eb:d4:c2:59:fb:40:02:f0:04:4d: f4:a5:e8:be:14:9e:38:90:0a:ef:70:f0:5f:8f:11:27:c4:4d: 12:07:ed:01:6a:d3:45:72:38:12:d5:5b:5e:af:5a:da:5a:db: ed:5a:ff:f1:89:8b:1d:30:40:aa:b3:67:7b:85:7a:48:29:38: 65:f2:f3:be -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD/gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU0QUM5NUE2QTkwOUNC Mzg3M0NCOUREOTc2RDU0QTdGMjVGRkQ4MkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMcOx5b2mR/3U3vE+W9Hq1ybQu5R3494UFRgFE4G8P9o/8Zt/w qXnHF7/Xq/Je/xATblUNUNbVUfo7EDLklVNxoqwhH1j3Ejb5HAS+Dze1VUK+nFaA Kj2DrkuSWsiejIIWce2zRX2eDG/J/zP7vPLcCeO4UP3SdmzH7m6L1qJxtypX2wBI +P7YSHvUms1QHFSL6BbO8kR4tstcEJC9EgPf0osRTKjt8H2wq2m+oiWEF3Ph71/2 sDYSPSdRO42KJe2Lg7Xl7+BICusWvCU32/hy6ZHyrZiRRLgwhGA6uNyYGrUyKFA3 feaMX/VfbXTsityGTo5xILhPWlRSc1sH9mwhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUVKyVpqkJyzhzy53ZdtVKfyX/2C4wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvVkt5VnBxa0p5emh6eTUzWmR0Vktm eVhfMkM0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAxtg8DAN BgkqhkiG9w0BAQsFAAOCAQEADeX2zY7of8xyyLOoNPCfXzcaiVenfWDCG8dGHVu+ wTTcZReUr3J73v+9CkatOhH3ET0WstQ3ueoigIjAQsp1G+qdI81w9latkUQX3iEq +pea8BiV0OXrZJRtntVnm3pkRsthvcG/IG/mdNhsJs4wSVxVo+ryWiJm8p7N6vcs cxvStS2bVmvEl8wEf5chmf4J0BQp8gHmE4aZvSdnmOXkhtaf1eBtgn+87EnZBSEN +z9NjlpAQ8wuj3Xz1lDr1MJZ+0AC8ARN9KXovhSeOJAK73DwX48RJ8RNEgftAWrT RXI4EtVbXq9a2lrb7Vr/8YmLHTBAqrNne4V6SCk4ZfLzvg== -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:40 2024 by rpki-client on console-fra.rpki-client.org