$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/VjbzY7hNXR8Y0cKi8wtQ3PmyxVU.roa File: VjbzY7hNXR8Y0cKi8wtQ3PmyxVU.roa (raw, json) Hash identifier: 7y8MtIXJ+UjZmzogktn+DSJU72YM0ZbQgM2zpjEOBrw= Subject key identifier: 56:36:F3:63:B8:4D:5D:1F:18:D1:C2:A2:F3:0B:50:DC:F9:B2:C5:55 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 102C Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/VjbzY7hNXR8Y0cKi8wtQ3PmyxVU.roa Signing time: Mon 26 Aug 2024 05:13:27 +0000 ROA not before: Mon 26 Aug 2024 05:13:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 113.61.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4140 (0x102c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5636F363B84D5D1F18D1C2A2F30B50DCF9B2C555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ae:fa:dd:bd:d7:32:f6:ae:74:0b:e2:dd:11: db:ee:2f:41:fb:8c:4d:22:1b:3f:6b:9b:9c:63:2d: df:b1:c9:4a:1e:c7:ef:7a:4f:73:cc:17:b5:ae:97: 0c:25:26:fb:dc:7f:49:2a:e7:fc:53:ab:03:b9:7a: 11:5c:3f:16:61:50:15:44:dc:94:47:39:29:e9:5f: 28:94:9b:19:d7:7b:0a:fc:0c:c8:35:b5:76:b7:c2: f1:05:08:52:40:4a:ca:57:3a:f6:d7:dc:2b:2a:c5: be:7f:8c:0a:d5:5b:ea:94:fa:3e:fa:cf:0f:54:52: d3:06:36:0d:0b:7a:d2:97:d9:90:df:02:51:f3:3c: 52:d7:dd:c1:c4:4b:43:17:6c:dc:4b:08:02:96:1e: 7b:c9:7b:35:24:43:3c:41:7b:21:50:c1:ff:cd:15: 71:85:df:e1:eb:de:16:2e:58:88:1a:e9:59:a8:46: 6f:ae:00:fe:8d:cc:3c:37:a7:51:01:b9:dd:cf:3d: 2f:bc:78:0c:a0:3b:2a:15:2c:1c:4d:d9:4d:b0:c0: 8a:d4:0f:ee:05:92:64:25:4a:4f:fb:8c:b3:c8:e3: 7a:f3:64:ad:b4:e4:0b:33:b9:ec:90:b5:a7:42:56: 2c:d5:be:4e:0a:aa:22:7c:83:71:9b:e0:3b:fa:d0: c3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:36:F3:63:B8:4D:5D:1F:18:D1:C2:A2:F3:0B:50:DC:F9:B2:C5:55 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/VjbzY7hNXR8Y0cKi8wtQ3PmyxVU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.160.0/19 Signature Algorithm: sha256WithRSAEncryption a1:0b:f8:de:74:22:2e:f4:f0:6f:a1:3f:68:99:65:8e:0b:9a: 7b:4b:a3:23:b1:38:f6:44:ad:48:cb:34:c7:82:83:b2:38:24: c6:b8:39:e0:16:8b:bc:ce:d8:a9:85:e0:60:e8:41:ea:4a:03: f2:31:36:48:da:1c:f4:e4:e2:c3:e9:08:84:f0:cf:59:c1:54: 1f:a9:0b:7c:8a:b6:c5:8b:be:83:bf:d9:4e:73:9d:fb:b8:5f: da:2d:f2:5d:f6:32:cf:b7:dc:b8:00:6f:25:fd:54:67:22:c4: 38:44:66:f8:ed:10:c5:97:38:31:f1:f0:5b:93:62:40:0e:97: 99:f3:83:af:1e:ae:92:3f:07:3b:91:02:9e:6c:c6:ce:8c:a6: 48:7e:7b:bb:a1:cc:dc:c7:4a:36:bf:84:25:65:51:3c:86:d4: 9f:ed:f0:20:0c:d4:c6:32:ce:00:bf:81:a4:01:1d:a5:d2:68: 89:5a:17:6c:2f:86:98:6f:67:d3:54:6b:c1:41:5d:3e:8f:28: 66:a9:4c:16:44:1e:c6:e2:78:23:5d:3f:d9:94:5c:e6:f3:43: 0a:b6:fe:e7:87:75:92:e4:ad:f8:44:de:3c:dd:8c:2a:1a:cd: 51:89:5d:25:3c:15:79:53:51:17:fc:f3:e9:bd:1f:b5:0e:8a: 5d:35:01:12 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICECwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2MzZGMzYzQjg0RDVE MUYxOEQxQzJBMkYzMEI1MERDRjlCMkM1NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGrvrdvdcy9q50C+LdEdvuL0H7jE0iGz9rm5xjLd+xyUoex+96 T3PMF7WulwwlJvvcf0kq5/xTqwO5ehFcPxZhUBVE3JRHOSnpXyiUmxnXewr8DMg1 tXa3wvEFCFJASspXOvbX3Csqxb5/jArVW+qU+j76zw9UUtMGNg0LetKX2ZDfAlHz PFLX3cHES0MXbNxLCAKWHnvJezUkQzxBeyFQwf/NFXGF3+Hr3hYuWIga6VmoRm+u AP6NzDw3p1EBud3PPS+8eAygOyoVLBxN2U2wwIrUD+4FkmQlSk/7jLPI43rzZK20 5AszueyQtadCVizVvk4KqiJ8g3Gb4Dv60MM/AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUVjbzY7hNXR8Y0cKi8wtQ3PmyxVUwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvVmpielk3aE5YUjhZMGNLaTh3dFEz UG15eFZVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXE9oDAN BgkqhkiG9w0BAQsFAAOCAQEAoQv43nQiLvTwb6E/aJlljguae0ujI7E49kStSMs0 x4KDsjgkxrg54BaLvM7YqYXgYOhB6koD8jE2SNoc9OTiw+kIhPDPWcFUH6kLfIq2 xYu+g7/ZTnOd+7hf2i3yXfYyz7fcuABvJf1UZyLEOERm+O0QxZc4MfHwW5NiQA6X mfODrx6ukj8HO5ECnmzGzoymSH57u6HM3MdKNr+EJWVRPIbUn+3wIAzUxjLOAL+B pAEdpdJoiVoXbC+GmG9n01RrwUFdPo8oZqlMFkQexuJ4I10/2ZRc5vNDCrb+54d1 kuSt+ETePN2MKhrNUYldJTwVeVNRF/zz6b0ftQ6KXTUBEg== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org