$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/WaXpLW48xAkaqkgjiGmSZ7Jkpv8.roa File: WaXpLW48xAkaqkgjiGmSZ7Jkpv8.roa (raw, json) Hash identifier: GV93+SesasG0YdywEvjl0UdPbYE9EoOYExVSvsSycoE= Subject key identifier: 59:A5:E9:2D:6E:3C:C4:09:1A:AA:48:23:88:69:92:67:B2:64:A6:FF Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FDC Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WaXpLW48xAkaqkgjiGmSZ7Jkpv8.roa Signing time: Mon 26 Aug 2024 05:13:10 +0000 ROA not before: Mon 26 Aug 2024 05:13:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 113.61.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4060 (0xfdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=59A5E92D6E3CC4091AAA482388699267B264A6FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3e:80:83:16:4c:14:64:00:d9:ad:86:dd:4a: cb:93:c2:e9:6c:00:7a:2f:39:fe:1b:aa:a4:9c:f4: 69:1f:55:51:43:74:7a:4a:8f:9d:70:65:5e:df:f4: a0:e9:61:27:5e:1b:21:db:fd:9c:d6:0a:d0:9c:09: e6:d4:da:39:c7:8b:8b:85:f5:fd:32:e7:2c:13:29: 44:37:45:0e:fe:02:36:97:60:58:9e:92:fd:78:77: 07:b6:a3:3d:af:b0:f4:18:87:29:9e:9d:93:f8:b0: 09:35:2e:d7:02:b5:0c:df:b8:f7:01:12:0d:29:a0: a8:b6:a8:df:d0:dc:e4:f0:7c:f8:b0:ef:b5:dd:49: c2:0f:4a:e5:29:4c:04:e9:7f:4f:35:4e:7f:2a:78: 17:49:da:5a:2a:45:5e:a3:ce:9d:dc:08:f4:af:a3: b8:d0:33:94:b8:1c:b8:9f:1e:e3:0c:42:d9:cd:cc: 86:0e:8f:95:cb:a2:85:4e:a7:7e:c4:b6:6e:54:2f: f5:90:1e:19:8f:cf:6b:bf:41:16:eb:21:68:f1:1e: 5a:d8:ed:0d:87:03:55:aa:82:cb:4d:7c:67:01:f7: 40:e6:d9:97:e0:61:26:7c:82:14:b8:4b:44:2c:cd: a0:35:ee:0a:27:2d:8f:e7:88:bb:47:90:fe:37:ae: 4f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:A5:E9:2D:6E:3C:C4:09:1A:AA:48:23:88:69:92:67:B2:64:A6:FF X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WaXpLW48xAkaqkgjiGmSZ7Jkpv8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.174.0/24 Signature Algorithm: sha256WithRSAEncryption 57:86:bc:98:6b:3a:09:26:ab:ef:35:26:f4:38:25:ce:64:9c: 18:b9:59:3b:a1:72:2c:f3:ea:26:8a:59:4a:c0:38:89:60:0e: 3f:bd:df:97:b1:43:3a:b7:71:eb:0b:5e:8e:f2:bc:d5:96:39: fb:85:70:bb:57:bc:80:ee:76:ab:5f:b9:b5:7d:d0:8b:e5:ab: 87:9c:02:74:4b:e5:d0:8c:7e:0d:a9:f2:2e:e7:6d:a6:27:03: 21:7c:4e:86:a6:bf:18:69:89:d8:92:0d:93:c5:e4:32:41:fc: d2:b6:dd:e4:b4:86:d6:f2:d6:16:5b:88:93:bc:b4:9e:68:ff: 12:bf:5b:a0:e5:81:e1:0f:87:c3:0c:2b:ed:84:3f:53:65:d2: 73:fa:cb:eb:9a:cb:dd:e9:90:65:e0:b8:44:e6:f8:3d:6f:42: 54:14:e2:6d:b6:16:ef:02:c7:ed:e1:b2:8f:1e:e2:9a:0f:36: b9:61:4f:e8:fd:5d:87:5c:1e:e9:ce:5b:2e:de:f0:98:5b:20: a8:90:f4:0d:e7:b7:2f:dd:6c:70:4d:01:83:4f:07:7e:45:3c: 05:45:90:0c:f5:c0:1f:66:8e:a5:9a:9f:94:af:e7:69:2e:0c: fe:1f:30:67:77:96:ec:d9:2d:f3:8f:45:87:01:4f:b6:24:3f: 1c:93:13:97 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD9wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU5QTVFOTJENkUzQ0M0 MDkxQUFBNDgyMzg4Njk5MjY3QjI2NEE2RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuPoCDFkwUZADZrYbdSsuTwulsAHovOf4bqqSc9GkfVVFDdHpK j51wZV7f9KDpYSdeGyHb/ZzWCtCcCebU2jnHi4uF9f0y5ywTKUQ3RQ7+AjaXYFie kv14dwe2oz2vsPQYhymenZP4sAk1LtcCtQzfuPcBEg0poKi2qN/Q3OTwfPiw77Xd ScIPSuUpTATpf081Tn8qeBdJ2loqRV6jzp3cCPSvo7jQM5S4HLifHuMMQtnNzIYO j5XLooVOp37Etm5UL/WQHhmPz2u/QRbrIWjxHlrY7Q2HA1WqgstNfGcB90Dm2Zfg YSZ8ghS4S0QszaA17gonLY/niLtHkP43rk/BAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUWaXpLW48xAkaqkgjiGmSZ7Jkpv8wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvV2FYcExXNDh4QWthcWtnamlHbVNa N0prcHY4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHE9rjAN BgkqhkiG9w0BAQsFAAOCAQEAV4a8mGs6CSar7zUm9DglzmScGLlZO6FyLPPqJopZ SsA4iWAOP73fl7FDOrdx6wtejvK81ZY5+4Vwu1e8gO52q1+5tX3Qi+Wrh5wCdEvl 0Ix+DanyLudtpicDIXxOhqa/GGmJ2JINk8XkMkH80rbd5LSG1vLWFluIk7y0nmj/ Er9boOWB4Q+Hwwwr7YQ/U2XSc/rL65rL3emQZeC4ROb4PW9CVBTibbYW7wLH7eGy jx7img82uWFP6P1dh1we6c5bLt7wmFsgqJD0Dee3L91scE0Bg08HfkU8BUWQDPXA H2aOpZqflK/naS4M/h8wZ3eW7Nkt849FhwFPtiQ/HJMTlw== -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:40 2024 by rpki-client on console-fra.rpki-client.org