$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/XyMGWdKBJIzLrcx_IAkbUH_1wQM.roa File: XyMGWdKBJIzLrcx_IAkbUH_1wQM.roa (raw, json) Hash identifier: WD537tHDn8uAbNrMBc6xCMrqslHqukzLlkVQx2ZiM2c= Subject key identifier: 5F:23:06:59:D2:81:24:8C:CB:AD:CC:7F:20:09:1B:50:7F:F5:C1:03 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FEB Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/XyMGWdKBJIzLrcx_IAkbUH_1wQM.roa Signing time: Mon 26 Aug 2024 05:13:12 +0000 ROA not before: Mon 26 Aug 2024 05:13:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 121.254.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4075 (0xfeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5F230659D281248CCBADCC7F20091B507FF5C103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:83:b9:e3:34:0b:4f:16:60:81:a8:ec:1a:d8: dc:10:11:28:bc:bd:dc:bf:a3:81:8a:04:aa:a0:db: 94:f0:36:5b:f1:92:b6:9a:5f:8f:cb:57:85:fa:91: 2c:f4:9f:4f:7c:c5:5e:7b:6e:ae:5a:0f:08:d3:1a: 72:bb:26:64:cb:4f:38:12:27:be:39:e3:21:3a:23: 7b:40:5a:e2:07:4c:96:b9:5a:3f:85:87:fe:e5:0d: 00:b8:30:c0:7d:e4:24:96:71:f2:3b:e0:8c:55:ff: 8a:83:29:ed:01:89:a8:04:65:c6:2a:81:d9:a4:63: 66:8a:27:43:73:64:b2:28:fd:16:ff:d7:1b:e0:af: 47:54:86:62:f6:90:55:be:71:b8:04:d7:85:d5:3d: 6c:09:df:de:c1:66:83:fb:e7:b1:0a:a2:d6:04:44: 4b:52:af:1a:dc:7e:46:e8:8e:73:da:58:4e:51:4c: 89:6a:80:be:5e:d0:0c:a2:39:bb:f0:b4:72:66:0a: 51:b1:f4:d8:c9:a1:b6:5f:09:6d:29:7f:92:d6:e6: b3:47:c8:0b:dc:34:bd:d8:af:2c:a3:30:36:30:05: eb:ac:bd:f2:25:a8:99:64:a6:f0:4b:68:0c:e1:f4: 87:3f:d2:e6:c4:d9:15:d2:3c:76:5c:43:76:68:2c: f7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:23:06:59:D2:81:24:8C:CB:AD:CC:7F:20:09:1B:50:7F:F5:C1:03 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/XyMGWdKBJIzLrcx_IAkbUH_1wQM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.254.72.0/21 Signature Algorithm: sha256WithRSAEncryption 15:2f:53:e5:53:67:ab:e1:92:2d:85:77:9e:4b:00:b4:4f:aa: 21:7d:3e:67:a6:8d:e5:52:8f:d7:1f:50:cf:ff:2e:15:4f:37: 81:85:a6:42:7b:f3:49:23:ea:0f:39:bb:f0:ba:47:97:9e:00: ce:a5:24:7f:9a:cf:5f:41:d0:6d:d9:53:05:6f:75:04:38:4c: fa:1f:27:69:71:51:b0:9c:17:bd:81:ad:90:66:4a:27:27:e0: 72:b8:6f:25:42:61:d3:cd:f9:6f:fb:31:fd:5d:f3:ca:ba:a8: de:80:37:a9:94:b5:9c:21:77:66:6f:77:cc:63:70:a9:5a:d3: be:fa:2d:6f:95:8b:ab:1d:6d:33:ca:26:bf:0f:6e:7e:e2:29: a7:6d:ac:70:00:26:b0:ff:7f:6f:fe:a3:19:41:08:a5:11:0b: 53:ce:71:c0:51:18:ce:23:02:46:c7:63:52:08:ce:18:ea:eb: dc:cb:57:3a:e4:46:95:e1:6d:07:f4:0e:69:a0:b3:c1:ca:13: 03:cd:d8:52:55:2e:dc:1c:c1:a5:83:74:e3:28:28:69:ac:8d: 89:7c:be:1c:ce:18:9d:56:33:d0:d9:44:77:e0:2a:92:6b:ef: ad:fa:46:e7:66:f9:b9:80:7e:a9:5b:b1:ee:15:1c:23:ee:84: 71:82:97:5f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD+swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVGMjMwNjU5RDI4MTI0 OENDQkFEQ0M3RjIwMDkxQjUwN0ZGNUMxMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChg7njNAtPFmCBqOwa2NwQESi8vdy/o4GKBKqg25TwNlvxkraa X4/LV4X6kSz0n098xV57bq5aDwjTGnK7JmTLTzgSJ7454yE6I3tAWuIHTJa5Wj+F h/7lDQC4MMB95CSWcfI74IxV/4qDKe0BiagEZcYqgdmkY2aKJ0NzZLIo/Rb/1xvg r0dUhmL2kFW+cbgE14XVPWwJ397BZoP757EKotYEREtSrxrcfkbojnPaWE5RTIlq gL5e0AyiObvwtHJmClGx9NjJobZfCW0pf5LW5rNHyAvcNL3YryyjMDYwBeusvfIl qJlkpvBLaAzh9Ic/0ubE2RXSPHZcQ3ZoLPe3AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUXyMGWdKBJIzLrcx/IAkbUH/1wQMwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvWHlNR1dkS0JKSXpMcmN4X0lBa2JV SF8xd1FNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3n+SDAN BgkqhkiG9w0BAQsFAAOCAQEAFS9T5VNnq+GSLYV3nksAtE+qIX0+Z6aN5VKP1x9Q z/8uFU83gYWmQnvzSSPqDzm78LpHl54AzqUkf5rPX0HQbdlTBW91BDhM+h8naXFR sJwXvYGtkGZKJyfgcrhvJUJh0835b/sx/V3zyrqo3oA3qZS1nCF3Zm93zGNwqVrT vvotb5WLqx1tM8omvw9ufuIpp22scAAmsP9/b/6jGUEIpRELU85xwFEYziMCRsdj UgjOGOrr3MtXOuRGleFtB/QOaaCzwcoTA83YUlUu3BzBpYN04ygoaayNiXy+HM4Y nVYz0NlEd+AqkmvvrfpG52b5uYB+qVux7hUcI+6EcYKXXw== -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:32 2024 by rpki-client on console-fra.rpki-client.org