$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/f1xFGbpVo_nUvGhZ52qcOtIyGEA.roa File: f1xFGbpVo_nUvGhZ52qcOtIyGEA.roa (raw, json) Hash identifier: gQyKn6Sx3QxXFb8EYD2uxXUuOipE8i6C2eAykoo+tAk= Subject key identifier: 7F:5C:45:19:BA:55:A3:F9:D4:BC:68:59:E7:6A:9C:3A:D2:32:18:40 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1051 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/f1xFGbpVo_nUvGhZ52qcOtIyGEA.roa Signing time: Wed 04 Sep 2024 06:08:00 +0000 ROA not before: Wed 04 Sep 2024 06:08:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131611 IP address blocks: 119.15.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4177 (0x1051) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 4 06:08:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7F5C4519BA55A3F9D4BC6859E76A9C3AD2321840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ee:1a:a8:1c:77:0c:12:f6:57:29:3e:25:9e: fd:6b:f0:95:b2:8c:aa:f8:77:c1:78:79:50:b2:f8: dc:64:be:fc:c2:da:9e:5e:1a:c5:d3:12:27:39:d1: ac:eb:a4:9b:48:2d:ae:3b:26:83:e2:45:43:18:d1: c0:14:23:c1:5b:67:27:1d:96:9a:c3:e1:54:11:41: b2:35:98:ca:01:45:61:0c:00:30:24:3f:0b:bd:b9: 8d:8b:ce:36:a8:f5:4e:e5:07:3c:d4:f0:6e:34:1c: 3f:68:ee:3d:6c:80:8e:5f:18:95:15:ac:44:94:dd: 29:59:50:ad:bd:a7:a4:36:c4:fa:5d:5d:90:5d:c9: 81:3f:19:30:db:a6:f9:83:0e:30:20:2f:c5:75:f6: 47:1c:24:88:c7:cf:50:18:a0:bd:c0:db:bd:5a:6a: 38:79:38:de:9b:9b:1b:42:e2:fe:02:9e:58:66:63: c0:e9:83:50:ba:21:b1:b3:b3:28:1a:e1:20:a6:77: 5e:53:b8:75:f8:30:d9:9a:16:a2:8c:d8:be:27:da: 16:4f:bb:92:69:2d:6d:70:db:9d:76:f0:de:31:ea: bf:2b:ee:8e:2d:4d:47:2d:6e:1a:57:d3:6c:b4:f0: fd:ed:90:a8:ba:4c:60:23:5e:ea:c1:87:91:4e:a9: 1f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:5C:45:19:BA:55:A3:F9:D4:BC:68:59:E7:6A:9C:3A:D2:32:18:40 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/f1xFGbpVo_nUvGhZ52qcOtIyGEA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.15.224.0/19 Signature Algorithm: sha256WithRSAEncryption 3c:f4:a8:c6:fc:62:43:79:c6:1f:26:3e:1f:74:48:bc:55:a1: 12:a5:25:f6:ae:86:3d:90:b2:5c:00:c3:36:e0:49:38:9f:37: 9e:42:c8:ee:26:07:e2:e8:b1:79:81:73:d0:0c:c6:10:2a:c0: 79:01:4a:c9:dd:58:98:54:3e:ba:98:be:26:a4:e9:eb:7b:5c: 4c:5a:43:ae:0b:3a:15:21:4b:a3:33:18:8a:4e:8a:a8:7d:f7: 12:00:72:d2:fe:44:60:2e:9a:88:ed:94:83:41:f0:5e:7c:f6: eb:81:b2:9f:d6:6c:b6:8f:90:64:b1:3f:f4:ce:13:82:64:d4: 4e:15:28:ec:14:9f:1c:f8:2d:20:57:7a:47:b4:70:d7:91:91: 13:af:69:37:d5:c7:a7:ce:1b:e7:a5:3d:cb:62:82:eb:da:fc: d6:4a:cc:62:5b:a7:4f:5f:72:33:e1:12:5a:c7:9a:66:84:20: d5:f1:1d:10:22:0f:ef:9a:8f:9f:25:98:f2:10:9f:61:11:77: 68:29:d1:f0:ce:e6:7b:56:aa:40:e6:79:f3:56:80:44:14:27: bd:0b:5e:3f:83:cf:9d:cb:93:c6:8e:af:a9:29:79:bb:d7:b4: 98:52:3d:9f:56:9a:93:f8:5d:ff:80:8e:17:b4:4c:05:7a:1b: 3d:5c:cf:c6 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEFEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA5MDQw NjA4MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdGNUM0NTE5QkE1NUEz RjlENEJDNjg1OUU3NkE5QzNBRDIzMjE4NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG7hqoHHcMEvZXKT4lnv1r8JWyjKr4d8F4eVCy+NxkvvzC2p5e GsXTEic50azrpJtILa47JoPiRUMY0cAUI8FbZycdlprD4VQRQbI1mMoBRWEMADAk Pwu9uY2Lzjao9U7lBzzU8G40HD9o7j1sgI5fGJUVrESU3SlZUK29p6Q2xPpdXZBd yYE/GTDbpvmDDjAgL8V19kccJIjHz1AYoL3A271aajh5ON6bmxtC4v4CnlhmY8Dp g1C6IbGzsyga4SCmd15TuHX4MNmaFqKM2L4n2hZPu5JpLW1w25128N4x6r8r7o4t TUctbhpX02y08P3tkKi6TGAjXurBh5FOqR9hAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUf1xFGbpVo/nUvGhZ52qcOtIyGEAwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvZjF4RkdicFZvX25VdkdoWjUycWNP dEl5R0VBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXcP4DAN BgkqhkiG9w0BAQsFAAOCAQEAPPSoxvxiQ3nGHyY+H3RIvFWhEqUl9q6GPZCyXADD NuBJOJ83nkLI7iYH4uixeYFz0AzGECrAeQFKyd1YmFQ+upi+JqTp63tcTFpDrgs6 FSFLozMYik6KqH33EgBy0v5EYC6aiO2Ug0HwXnz264Gyn9Zsto+QZLE/9M4TgmTU ThUo7BSfHPgtIFd6R7Rw15GRE69pN9XHp84b56U9y2KC69r81krMYlunT19yM+ES WseaZoQg1fEdECIP75qPnyWY8hCfYRF3aCnR8M7me1aqQOZ581aARBQnvQteP4PP ncuTxo6vqSl5u9e0mFI9n1aak/hd/4COF7RMBXobPVzPxg== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:04 2024 by rpki-client on console-ams.rpki-client.org