$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/WWF3xInmXf4snOy8F9J_w4lT2UU.roa File: WWF3xInmXf4snOy8F9J_w4lT2UU.roa (raw, json) Hash identifier: HOUi/BCoW6v6OfGpjyywZftmbjRrbGBG0D7RbD5vrr4= Subject key identifier: 59:61:77:C4:89:E6:5D:FE:2C:9C:EC:BC:17:D2:7F:C3:89:53:D9:45 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 100E Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WWF3xInmXf4snOy8F9J_w4lT2UU.roa Signing time: Mon 26 Aug 2024 05:13:20 +0000 ROA not before: Mon 26 Aug 2024 05:13:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.222.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4110 (0x100e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=596177C489E65DFE2C9CECBC17D27FC38953D945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:58:be:e9:e1:8b:2d:cf:7f:4b:4d:bb:c6:d0: e3:a0:40:2a:10:af:d9:e3:1b:02:93:95:48:18:0e: a8:02:c7:df:ce:11:5c:5b:12:40:10:e9:63:e0:28: e6:6d:96:8f:a1:25:44:c6:b5:b7:b9:87:05:e6:15: 6a:dc:32:82:9e:96:77:d8:e1:f7:c9:de:02:33:db: c8:70:04:59:f5:f3:8b:6a:b7:4a:a5:9c:a2:49:a1: eb:9a:fd:c6:bc:5f:8d:93:87:19:47:5a:8e:79:41: 74:26:d2:d4:b0:b5:ee:60:a3:4a:b5:88:cc:9a:6f: 03:b9:11:e9:ee:46:6f:ee:c6:7a:fc:9b:16:5e:cb: 72:bb:a2:a4:6e:ca:2c:96:e2:80:e0:26:a4:76:14: c6:82:5e:a8:a4:c7:3e:90:ff:f4:0c:a2:f4:33:cf: fe:d5:85:53:da:5c:2d:0a:57:8f:36:6b:9c:49:10: d7:07:f2:31:e5:c7:01:28:10:23:02:03:d1:ed:bd: 20:31:cb:b0:7a:03:41:ac:74:55:7e:29:44:65:89: 46:36:36:37:cb:bb:72:b1:e1:82:8b:3b:89:53:56: c9:27:fc:f1:8b:7e:71:f9:cf:80:04:24:43:6a:96: 6e:d5:f5:80:cf:91:95:32:7a:a5:68:ed:77:c7:15: 67:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:61:77:C4:89:E6:5D:FE:2C:9C:EC:BC:17:D2:7F:C3:89:53:D9:45 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WWF3xInmXf4snOy8F9J_w4lT2UU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.16.0/21 Signature Algorithm: sha256WithRSAEncryption 47:eb:af:02:bc:1d:13:8e:e9:12:ae:25:b3:fa:8b:04:e4:e4: 32:7c:c8:fb:88:63:8b:4e:ed:30:c2:a1:3a:cd:c5:a4:a2:11: cf:4a:38:85:d6:46:51:60:f3:a4:d4:bc:2d:91:04:18:2f:c0: 8e:a7:7d:c2:58:7c:d2:72:87:dd:e9:50:4e:32:31:37:f9:59: 88:d0:7b:98:fc:7c:4d:e2:b6:c5:6f:8a:81:5a:2e:76:2c:e7: e5:4d:6d:1f:b2:2a:1e:55:9b:6d:f7:71:c9:40:26:f5:ec:b8: af:41:13:44:15:29:fa:7b:44:c7:c7:9e:4a:0c:3a:16:cb:6c: 7a:84:5a:f9:19:3c:56:22:da:bd:3d:1e:c6:d4:15:cf:27:e7: e1:14:63:6e:4e:f8:25:93:90:ac:95:cb:74:6a:d8:64:8a:19: a5:7a:0e:b9:6c:a4:74:ee:a9:db:0d:e8:78:19:5a:39:79:8e: 38:97:20:72:e2:4b:00:20:08:38:37:5c:e9:91:57:1c:35:07: 56:f9:10:c3:90:32:ae:b1:cf:7c:b8:81:e5:77:0d:d3:fc:c5: 71:99:ce:00:da:ef:7c:1a:73:27:44:a4:41:e4:cb:24:0b:25: ef:d5:6f:6e:73:62:74:83:dd:c8:72:6d:97:f1:db:91:6e:bf: 20:d1:fa:5b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEA4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU5NjE3N0M0ODlFNjVE RkUyQzlDRUNCQzE3RDI3RkMzODk1M0Q5NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpWL7p4Ystz39LTbvG0OOgQCoQr9njGwKTlUgYDqgCx9/OEVxb EkAQ6WPgKOZtlo+hJUTGtbe5hwXmFWrcMoKelnfY4ffJ3gIz28hwBFn184tqt0ql nKJJoeua/ca8X42ThxlHWo55QXQm0tSwte5go0q1iMyabwO5EenuRm/uxnr8mxZe y3K7oqRuyiyW4oDgJqR2FMaCXqikxz6Q//QMovQzz/7VhVPaXC0KV482a5xJENcH 8jHlxwEoECMCA9HtvSAxy7B6A0GsdFV+KURliUY2NjfLu3Kx4YKLO4lTVskn/PGL fnH5z4AEJENqlm7V9YDPkZUyeqVo7XfHFWezAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUWWF3xInmXf4snOy8F9J/w4lT2UUwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvV1dGM3hJbm1YZjRzbk95OEY5Sl93 NGxUMlVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8veEDAN BgkqhkiG9w0BAQsFAAOCAQEAR+uvArwdE47pEq4ls/qLBOTkMnzI+4hji07tMMKh Os3FpKIRz0o4hdZGUWDzpNS8LZEEGC/Ajqd9wlh80nKH3elQTjIxN/lZiNB7mPx8 TeK2xW+KgVoudizn5U1tH7IqHlWbbfdxyUAm9ey4r0ETRBUp+ntEx8eeSgw6Fsts eoRa+Rk8ViLavT0extQVzyfn4RRjbk74JZOQrJXLdGrYZIoZpXoOuWykdO6p2w3o eBlaOXmOOJcgcuJLACAIODdc6ZFXHDUHVvkQw5AyrrHPfLiB5XcN0/zFcZnOANrv fBpzJ0SkQeTLJAsl79VvbnNidIPdyHJtl/HbkW6/INH6Ww== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:04 2024 by rpki-client on console-ams.rpki-client.org