$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/aPVSVjnn8iH2nivKFvyFTOYyiVc.roa File: aPVSVjnn8iH2nivKFvyFTOYyiVc.roa (raw, json) Hash identifier: +QIVNeuAthoyGML9l9/H4PFYaQQ9kO+PCc0iOZ39cE4= Subject key identifier: 68:F5:52:56:39:E7:F2:21:F6:9E:2B:CA:16:FC:85:4C:E6:32:89:57 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FE1 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/aPVSVjnn8iH2nivKFvyFTOYyiVc.roa Signing time: Mon 26 Aug 2024 05:13:10 +0000 ROA not before: Mon 26 Aug 2024 05:13:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 211.79.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4065 (0xfe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=68F5525639E7F221F69E2BCA16FC854CE6328957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3e:e6:17:c5:22:3f:54:90:c5:c1:ed:4c:34: 69:6b:41:e8:80:c1:86:eb:79:08:2c:bf:59:88:e9: 08:33:0e:ee:17:08:49:2a:87:67:78:e3:24:b1:6c: 29:71:1c:17:47:ec:46:45:18:57:2a:28:3b:23:1a: b9:3c:0d:7e:21:e7:6c:e2:08:df:aa:8d:f4:4b:53: e9:b1:4b:4c:2f:4f:69:e6:b4:01:be:8c:fa:9b:4e: fd:49:33:28:dd:a8:43:83:90:25:42:ca:f9:e5:fd: 2e:83:77:6f:9a:13:b6:36:73:af:80:72:69:a1:70: 9f:dc:f2:cd:92:30:b9:c5:f1:c8:27:dd:2c:b4:1e: 12:bd:5c:56:77:67:25:ca:82:76:a6:ae:fd:32:ed: 72:70:2f:39:b8:e3:63:77:57:ac:21:c7:52:b9:df: 37:f4:71:22:38:52:ea:96:6f:8c:c8:93:4d:fe:a8: 66:76:93:77:4b:f4:78:26:b8:b3:aa:66:0f:c9:aa: 05:e7:29:67:0a:95:09:40:ca:2d:b0:3b:fd:12:1a: 47:7d:0b:f8:cf:24:a2:37:68:90:34:74:f0:88:db: 36:88:a1:03:12:bb:25:26:69:bb:4c:78:cb:b6:d2: 39:c3:f7:96:53:76:2e:c2:77:51:24:97:cd:cf:2d: 90:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F5:52:56:39:E7:F2:21:F6:9E:2B:CA:16:FC:85:4C:E6:32:89:57 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/aPVSVjnn8iH2nivKFvyFTOYyiVc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.120.0/21 Signature Algorithm: sha256WithRSAEncryption 6a:66:2e:b3:ab:97:30:09:25:e9:08:d2:29:5e:d1:1b:c6:c8: dd:9c:45:5b:78:d2:bd:66:d1:02:ac:b1:e3:e9:7b:fa:7c:1f: a9:91:96:f9:38:88:07:37:ca:76:2c:97:ba:b3:2d:06:80:b3: 2b:af:3c:ca:ed:25:1f:7c:6b:5d:3e:d5:f6:14:c6:fe:3a:c7: 1e:d3:04:d3:38:d7:bf:f2:2d:e2:15:48:7b:87:f6:8b:5c:bc: db:d2:e7:b6:fa:21:78:1c:85:d4:ae:9a:61:55:47:ff:d5:ce: 7d:e3:7d:e7:34:cb:8e:51:f7:a0:ee:46:42:20:4d:71:ef:6e: 9c:1a:35:81:7b:92:9f:52:86:50:8e:5d:98:fc:14:d9:16:c9: 23:5e:ee:83:57:53:26:d2:42:23:78:07:de:9a:e8:37:35:4e: 5e:a2:2d:17:19:38:43:17:4d:47:7c:ed:29:0f:c5:6c:cf:b4: ed:48:f3:f4:70:79:8b:c6:04:39:d8:37:78:7a:4c:56:1d:1a: 2d:c1:7f:dd:d7:96:05:4d:a9:e7:55:e7:6b:5a:91:d8:7a:a1: 59:41:0a:62:96:88:8f:fe:6a:22:23:fd:4d:9b:7d:df:a2:8c: 95:04:51:f9:0c:7e:d5:9b:78:21:2e:72:fa:34:c8:11:ec:8e: 87:db:04:77 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD+EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY4RjU1MjU2MzlFN0Yy MjFGNjlFMkJDQTE2RkM4NTRDRTYzMjg5NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxPuYXxSI/VJDFwe1MNGlrQeiAwYbreQgsv1mI6QgzDu4XCEkq h2d44ySxbClxHBdH7EZFGFcqKDsjGrk8DX4h52ziCN+qjfRLU+mxS0wvT2nmtAG+ jPqbTv1JMyjdqEODkCVCyvnl/S6Dd2+aE7Y2c6+AcmmhcJ/c8s2SMLnF8cgn3Sy0 HhK9XFZ3ZyXKgnamrv0y7XJwLzm442N3V6whx1K53zf0cSI4UuqWb4zIk03+qGZ2 k3dL9HgmuLOqZg/JqgXnKWcKlQlAyi2wO/0SGkd9C/jPJKI3aJA0dPCI2zaIoQMS uyUmabtMeMu20jnD95ZTdi7Cd1Ekl83PLZDrAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUaPVSVjnn8iH2nivKFvyFTOYyiVcwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvYVBWU1Zqbm44aUgybml2S0Z2eUZU T1l5aVZjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9NPeDAN BgkqhkiG9w0BAQsFAAOCAQEAamYus6uXMAkl6QjSKV7RG8bI3ZxFW3jSvWbRAqyx 4+l7+nwfqZGW+TiIBzfKdiyXurMtBoCzK688yu0lH3xrXT7V9hTG/jrHHtME0zjX v/It4hVIe4f2i1y829LntvoheByF1K6aYVVH/9XOfeN95zTLjlH3oO5GQiBNce9u nBo1gXuSn1KGUI5dmPwU2RbJI17ug1dTJtJCI3gH3proNzVOXqItFxk4QxdNR3zt KQ/FbM+07Ujz9HB5i8YEOdg3eHpMVh0aLcF/3deWBU2p51Xna1qR2HqhWUEKYpaI j/5qIiP9TZt936KMlQRR+Qx+1Zt4IS5y+jTIEeyOh9sEdw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org