$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/bby3MV_3gMQ9ij17bwJEqp3QIPs.roa File: bby3MV_3gMQ9ij17bwJEqp3QIPs.roa (raw, json) Hash identifier: LazMuEBpW6vVMF0Uv0tFZ8eTrbZ7zXy3X/jC9CzUx1A= Subject key identifier: 6D:BC:B7:31:5F:F7:80:C4:3D:8A:3D:7B:6F:02:44:AA:9D:D0:20:FB Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 102B Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/bby3MV_3gMQ9ij17bwJEqp3QIPs.roa Signing time: Mon 26 Aug 2024 05:13:27 +0000 ROA not before: Mon 26 Aug 2024 05:13:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.217.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4139 (0x102b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6DBCB7315FF780C43D8A3D7B6F0244AA9DD020FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f5:fc:a4:96:05:9c:a0:dc:6c:a9:ff:5f:ad: 4d:48:72:86:10:94:c9:f6:ab:29:b7:1a:cf:a5:95: c5:67:bf:bb:e9:84:e2:cf:64:23:7c:37:38:84:2c: 12:97:33:3f:ed:49:6e:0a:59:97:c9:16:d0:04:b8: 62:c8:63:e6:9f:a0:e8:89:fd:38:08:a7:39:fc:24: 28:1d:ed:81:8a:b3:9e:18:5a:4b:4a:35:89:3a:01: 59:8d:ab:46:42:02:76:0d:04:19:d7:dd:df:21:f2: 66:69:a0:3c:fe:6e:7c:a9:cd:9c:59:0c:45:e6:62: 32:93:e8:a7:bf:88:29:41:f9:3b:ac:3b:05:a1:3c: d7:36:a2:14:3f:b3:bf:0e:94:7e:57:14:bb:5d:4a: e7:25:12:ab:c3:23:c8:ae:9a:ef:11:ca:7c:0c:8f: 43:7a:73:0a:80:90:c5:10:11:80:66:75:4c:63:9b: 64:a5:7e:6a:ad:d7:dc:39:45:ad:10:19:ae:b0:67: 47:8b:15:c6:f1:32:f8:a5:c2:50:2c:4e:37:9b:e4: 87:1a:f5:10:ed:23:bb:31:be:7b:0c:22:db:f9:df: 7b:44:9b:fd:e2:23:ee:96:98:62:b9:af:c7:d2:5c: a2:a2:2d:f4:6d:28:e0:dc:b3:6e:1a:d6:f6:0e:8d: b0:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BC:B7:31:5F:F7:80:C4:3D:8A:3D:7B:6F:02:44:AA:9D:D0:20:FB X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/bby3MV_3gMQ9ij17bwJEqp3QIPs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.217.96.0/20 Signature Algorithm: sha256WithRSAEncryption 82:58:20:91:ba:b1:16:24:a1:fe:2d:e1:1e:bb:22:8b:54:a1: f0:56:1a:21:d8:d6:54:8f:a9:3f:85:19:4e:c1:28:2e:70:b2: 77:77:90:38:c6:df:33:30:38:80:4f:14:8c:35:81:6f:b8:8c: b2:22:3f:84:5e:fd:cf:2b:72:f7:94:cf:4b:da:a5:d5:5f:31: 14:d3:0e:56:83:5c:2e:99:0a:9e:60:68:6b:71:5a:14:9a:bf: 28:6b:37:e3:e1:38:b9:ca:9a:d4:c7:27:e8:d6:d2:07:30:6c: be:48:0b:78:c2:29:1c:39:1d:ee:ff:ad:48:94:70:af:c9:e0: 14:a5:2d:be:3e:e6:ef:b1:fe:c1:f4:35:2d:50:a6:c7:b3:51: 99:03:c1:33:cf:6a:20:c4:9a:76:80:ac:1c:e5:26:73:41:bc: 43:15:52:3b:34:1b:b6:76:f2:85:52:44:3b:eb:bd:6d:7a:ee: 9b:46:9a:ae:dd:27:89:02:ad:2b:2a:09:59:1d:14:e7:b2:a3: 0a:a2:3f:c9:1f:f7:5f:47:0d:c8:ff:44:a0:c0:c4:29:c8:eb: e0:39:db:e8:bc:89:3f:b7:c4:c5:a6:8e:ed:3f:da:9d:7b:3a: 7e:87:2c:aa:91:67:27:b1:2f:46:9a:92:af:ca:17:0d:c2:a1: af:f4:fa:16 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICECswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZEQkNCNzMxNUZGNzgw QzQzRDhBM0Q3QjZGMDI0NEFBOUREMDIwRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDw9fyklgWcoNxsqf9frU1IcoYQlMn2qym3Gs+llcVnv7vphOLP ZCN8NziELBKXMz/tSW4KWZfJFtAEuGLIY+afoOiJ/TgIpzn8JCgd7YGKs54YWktK NYk6AVmNq0ZCAnYNBBnX3d8h8mZpoDz+bnypzZxZDEXmYjKT6Ke/iClB+TusOwWh PNc2ohQ/s78OlH5XFLtdSuclEqvDI8iumu8RynwMj0N6cwqAkMUQEYBmdUxjm2Sl fmqt19w5Ra0QGa6wZ0eLFcbxMvilwlAsTjeb5Ica9RDtI7sxvnsMItv533tEm/3i I+6WmGK5r8fSXKKiLfRtKODcs24a1vYOjbANAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUbby3MV/3gMQ9ij17bwJEqp3QIPswHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvYmJ5M01WXzNnTVE5aWoxN2J3SkVx cDNRSVBzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMvZYDAN BgkqhkiG9w0BAQsFAAOCAQEAglggkbqxFiSh/i3hHrsii1Sh8FYaIdjWVI+pP4UZ TsEoLnCyd3eQOMbfMzA4gE8UjDWBb7iMsiI/hF79zyty95TPS9ql1V8xFNMOVoNc LpkKnmBoa3FaFJq/KGs34+E4ucqa1Mcn6NbSBzBsvkgLeMIpHDkd7v+tSJRwr8ng FKUtvj7m77H+wfQ1LVCmx7NRmQPBM89qIMSadoCsHOUmc0G8QxVSOzQbtnbyhVJE O+u9bXrum0aart0niQKtKyoJWR0U57KjCqI/yR/3X0cNyP9EoMDEKcjr4Dnb6LyJ P7fExaaO7T/anXs6focsqpFnJ7EvRpqSr8oXDcKhr/T6Fg== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org