$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/cBViAfUcpCA7-Z59iqbfrbraGUM.roa File: cBViAfUcpCA7-Z59iqbfrbraGUM.roa (raw, json) Hash identifier: NSsWmyAGgf6KlMXxExiUje/P+f66FZ+OjmdQO8Gr/B4= Subject key identifier: 70:15:62:01:F5:1C:A4:20:3B:F9:9E:7D:8A:A6:DF:AD:BA:DA:19:43 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FFC Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/cBViAfUcpCA7-Z59iqbfrbraGUM.roa Signing time: Mon 26 Aug 2024 05:13:16 +0000 ROA not before: Mon 26 Aug 2024 05:13:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 182.155.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4092 (0xffc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=70156201F51CA4203BF99E7D8AA6DFADBADA1943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:aa:c8:75:8a:11:a2:59:4a:b0:35:16:05:b1: 3b:2b:08:b8:5b:1a:05:a3:48:a0:47:d0:b2:fa:2f: 09:71:f4:92:2d:cd:d9:b8:6d:86:25:b7:93:b2:7a: 66:44:b2:a5:ab:af:75:a5:67:09:14:7b:24:49:ea: d8:12:64:eb:0f:2e:a4:ef:55:9a:5f:80:ce:5d:13: 37:1a:99:44:65:9e:ce:6c:64:83:8b:ea:ae:de:47: f1:bf:5f:44:7d:d2:a8:ce:63:8a:91:d3:87:3f:85: e1:92:e1:c6:99:00:ad:46:53:e2:7d:4b:eb:96:d9: 0a:3b:4f:9c:b4:73:f2:c9:26:dd:71:69:f4:b7:f9: 31:4b:ad:a8:3c:d2:49:cf:73:9d:aa:e9:1d:a0:74: 8d:07:e4:99:a0:11:2c:b2:ba:e4:02:18:25:88:e2: f2:3c:f2:47:db:8b:18:68:e1:de:65:3e:c9:0a:85: 01:6b:30:ef:ad:30:55:95:7c:c7:cf:93:3f:26:a3: bf:9b:6c:1a:b2:4c:17:01:a2:73:e8:bf:d0:8e:29: 47:4f:e7:31:54:1a:d2:d2:73:a5:5a:dd:7b:66:06: 86:06:c1:37:e3:d6:86:10:c8:bf:e4:62:b8:df:de: 6a:f6:bc:82:49:be:78:48:90:c3:17:cc:03:a7:a7: fd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:15:62:01:F5:1C:A4:20:3B:F9:9E:7D:8A:A6:DF:AD:BA:DA:19:43 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/cBViAfUcpCA7-Z59iqbfrbraGUM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.64.0/19 Signature Algorithm: sha256WithRSAEncryption 72:fc:dd:07:50:62:b0:0c:28:57:a6:41:b8:d8:43:10:52:77: 95:12:4a:32:c9:64:70:ac:ec:88:69:63:43:77:a0:af:5e:6b: 7c:d4:50:9e:ac:4c:b7:4a:e3:cd:c6:40:d2:0f:a9:ee:0d:aa: 0d:95:10:3e:ee:5e:da:0d:93:ef:62:d9:39:0b:2c:a2:05:13: f7:ea:0c:b1:55:de:b1:f4:83:7d:44:2b:01:6a:10:91:f9:26: dd:fa:e5:61:4b:8c:2e:ca:e4:20:32:33:67:e7:f3:fe:dd:66: 21:b2:8f:11:20:33:56:23:99:85:38:f2:8a:01:72:33:80:7c: 44:45:3b:c6:32:af:f9:71:b9:6e:04:19:6d:ad:18:23:dd:d7: 5b:d8:a6:77:9a:ec:7c:70:78:d8:0b:77:0e:5d:66:96:8c:b0: 53:2b:f7:01:64:50:bb:25:5b:c8:9c:83:6a:9e:16:b6:da:84: 3b:e1:7c:d7:95:00:75:6a:12:66:4b:7e:d2:8d:e5:a2:cc:69: fe:e2:7a:fa:f0:55:fd:68:61:87:cd:4a:c7:07:f1:13:35:f9: a0:19:bf:5a:a0:78:71:6f:e9:e1:69:0f:9e:4e:58:20:e4:c5: 4a:b8:f9:18:83:4e:97:9c:41:eb:4f:92:a8:e0:ec:9d:dd:65: b6:11:39:10 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD/wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcwMTU2MjAxRjUxQ0E0 MjAzQkY5OUU3RDhBQTZERkFEQkFEQTE5NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaqsh1ihGiWUqwNRYFsTsrCLhbGgWjSKBH0LL6Lwlx9JItzdm4 bYYlt5OyemZEsqWrr3WlZwkUeyRJ6tgSZOsPLqTvVZpfgM5dEzcamURlns5sZIOL 6q7eR/G/X0R90qjOY4qR04c/heGS4caZAK1GU+J9S+uW2Qo7T5y0c/LJJt1xafS3 +TFLrag80knPc52q6R2gdI0H5JmgESyyuuQCGCWI4vI88kfbixho4d5lPskKhQFr MO+tMFWVfMfPkz8mo7+bbBqyTBcBonPov9COKUdP5zFUGtLSc6Va3XtmBoYGwTfj 1oYQyL/kYrjf3mr2vIJJvnhIkMMXzAOnp/2VAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUcBViAfUcpCA7+Z59iqbfrbraGUMwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvY0JWaUFmVWNwQ0E3LVo1OWlxYmZy YnJhR1VNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabQDAN BgkqhkiG9w0BAQsFAAOCAQEAcvzdB1BisAwoV6ZBuNhDEFJ3lRJKMslkcKzsiGlj Q3egr15rfNRQnqxMt0rjzcZA0g+p7g2qDZUQPu5e2g2T72LZOQssogUT9+oMsVXe sfSDfUQrAWoQkfkm3frlYUuMLsrkIDIzZ+fz/t1mIbKPESAzViOZhTjyigFyM4B8 REU7xjKv+XG5bgQZba0YI93XW9imd5rsfHB42At3Dl1mloywUyv3AWRQuyVbyJyD ap4WttqEO+F815UAdWoSZkt+0o3losxp/uJ6+vBV/Whhh81KxwfxEzX5oBm/WqB4 cW/p4WkPnk5YIOTFSrj5GINOl5xB60+SqODsnd1lthE5EA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org