$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/arOP0htwgIrpE59re8IiR9MBn7o.roa File: arOP0htwgIrpE59re8IiR9MBn7o.roa (raw, json) Hash identifier: K+dRG75lMKHWV8Q6FpnJaCgMpKkKxhn2U8D+RpbfGko= Subject key identifier: 6A:B3:8F:D2:1B:70:80:8A:E9:13:9F:6B:7B:C2:22:47:D3:01:9F:BA Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1032 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/arOP0htwgIrpE59re8IiR9MBn7o.roa Signing time: Mon 26 Aug 2024 05:13:29 +0000 ROA not before: Mon 26 Aug 2024 05:13:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 121.254.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4146 (0x1032) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6AB38FD21B70808AE9139F6B7BC22247D3019FBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:be:89:86:38:9b:65:25:5f:df:c9:9c:36: c6:d3:b1:0e:14:21:56:07:7e:c8:d5:b6:57:b2:11: c3:5f:b2:b7:a3:e5:86:7e:c6:04:7d:b6:ae:8a:22: 56:fd:45:eb:2b:ec:6a:ec:9b:34:75:c4:ac:55:c5: 1c:c5:bd:de:a8:3c:b8:72:96:a4:34:a7:f2:ad:41: 7d:25:17:bc:6e:01:e2:33:c3:e0:18:26:0c:0d:12: bb:95:fc:e6:da:cd:f8:68:f0:ff:12:3a:19:86:e4: 76:bf:75:96:32:cb:06:b9:0c:12:09:8d:f6:ac:d1: 33:05:3e:95:3a:53:58:e8:c4:0e:4b:9e:bc:29:5d: f4:cd:0c:5c:13:e0:d7:0e:fe:eb:d2:91:a3:d5:b0: b1:d2:e0:67:f4:28:c9:29:bc:ae:5b:37:7d:7d:4e: 8a:20:44:20:1e:ba:e1:d9:14:f1:03:6a:6e:52:48: 15:d4:0f:13:13:88:24:ba:23:59:3d:23:7d:b8:f7: df:18:bc:df:33:38:20:34:6f:2e:61:7f:b6:b1:07: bc:86:3e:ad:96:0d:25:a3:f0:e7:a8:84:64:3c:66: ef:7e:ba:4b:99:b7:4a:8b:20:c0:b1:33:0a:88:2c: e4:54:4a:df:7a:c5:c9:9d:37:cf:b9:14:4d:81:c1: 4e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B3:8F:D2:1B:70:80:8A:E9:13:9F:6B:7B:C2:22:47:D3:01:9F:BA X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/arOP0htwgIrpE59re8IiR9MBn7o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.254.104.0/21 Signature Algorithm: sha256WithRSAEncryption 51:a5:25:3c:91:4c:81:52:8a:d6:d1:eb:a7:30:7d:69:bc:4f: 47:5c:74:50:45:78:21:e6:6b:b9:f6:38:a7:f4:52:e9:2c:83: 0b:67:15:cd:64:aa:f0:8c:b7:12:f7:f9:47:6b:c1:05:54:45: 74:7f:4c:f5:a7:df:8f:83:08:b8:eb:16:36:66:d8:75:6e:d2: 4c:dd:8a:a6:38:ca:81:c8:2c:bd:bd:6d:d5:ce:cc:52:e8:e1: 7b:ca:fa:6f:43:d6:4c:0a:6a:aa:b0:9c:15:2f:c5:a2:40:f8: 8a:98:db:8a:0b:a9:7b:8e:ed:d8:e5:42:16:10:d0:33:d0:95: ab:ee:59:9b:d0:fd:3a:49:b1:60:4b:ba:a4:f2:6a:24:e0:23: 7a:74:b1:f9:9b:bd:0e:48:e6:68:f8:e4:08:f5:37:08:c0:34: 71:99:05:6a:b5:9b:4e:56:95:22:42:ca:df:1f:35:69:c2:4a: f9:79:8a:6c:b3:58:9b:a1:ee:2f:ae:3e:7e:17:16:cf:52:6a: 5a:e8:87:61:90:b1:d8:1b:50:e1:97:db:5a:0d:47:6b:54:70: 2a:c5:57:96:18:9c:ef:6b:ca:c4:47:0c:a4:40:96:c6:f5:57: 13:f6:eb:3c:bd:3b:8c:c3:b9:ac:bd:f3:6a:36:29:79:86:cc: 75:a1:ea:15 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEDIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZBQjM4RkQyMUI3MDgw OEFFOTEzOUY2QjdCQzIyMjQ3RDMwMTlGQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZir6JhjibZSVf38mcNsbTsQ4UIVYHfsjVtleyEcNfsrej5YZ+ xgR9tq6KIlb9Resr7GrsmzR1xKxVxRzFvd6oPLhylqQ0p/KtQX0lF7xuAeIzw+AY JgwNEruV/Obazfho8P8SOhmG5Ha/dZYyywa5DBIJjfas0TMFPpU6U1joxA5Lnrwp XfTNDFwT4NcO/uvSkaPVsLHS4Gf0KMkpvK5bN319ToogRCAeuuHZFPEDam5SSBXU DxMTiCS6I1k9I324998YvN8zOCA0by5hf7axB7yGPq2WDSWj8OeohGQ8Zu9+ukuZ t0qLIMCxMwqILORUSt96xcmdN8+5FE2BwU6dAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUarOP0htwgIrpE59re8IiR9MBn7owHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvYXJPUDBodHdnSXJwRTU5cmU4SWlS OU1CbjdvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3n+aDAN BgkqhkiG9w0BAQsFAAOCAQEAUaUlPJFMgVKK1tHrpzB9abxPR1x0UEV4IeZrufY4 p/RS6SyDC2cVzWSq8Iy3Evf5R2vBBVRFdH9M9affj4MIuOsWNmbYdW7STN2KpjjK gcgsvb1t1c7MUujhe8r6b0PWTApqqrCcFS/FokD4ipjbigupe47t2OVCFhDQM9CV q+5Zm9D9OkmxYEu6pPJqJOAjenSx+Zu9DkjmaPjkCPU3CMA0cZkFarWbTlaVIkLK 3x81acJK+XmKbLNYm6HuL64+fhcWz1JqWuiHYZCx2BtQ4ZfbWg1Ha1RwKsVXlhic 72vKxEcMpECWxvVXE/brPL07jMO5rL3zajYpeYbMdaHqFQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org