$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/gN6rutdnPH6t3ckU_QXJ2KRJmtc.roa File: gN6rutdnPH6t3ckU_QXJ2KRJmtc.roa (raw, json) Hash identifier: GNFK6gtXfwetw9QlkfDS0ouN3vO6ZVPgvKoLlvA0YmM= Subject key identifier: 80:DE:AB:BA:D7:67:3C:7E:AD:DD:C9:14:FD:05:C9:D8:A4:49:9A:D7 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1030 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/gN6rutdnPH6t3ckU_QXJ2KRJmtc.roa Signing time: Mon 26 Aug 2024 05:13:28 +0000 ROA not before: Mon 26 Aug 2024 05:13:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.222.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4144 (0x1030) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=80DEABBAD7673C7EADDDC914FD05C9D8A4499AD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1a:0f:de:03:2e:4a:46:d1:36:d1:96:58:13: 7c:3a:4a:89:08:98:70:48:f9:05:bd:a3:a8:a6:11: 97:14:9e:fd:9a:71:65:e1:47:0c:9a:63:fc:f7:c2: 57:ac:80:be:7c:d7:81:bf:e2:25:28:f5:c9:5f:fe: 4a:f4:e3:ec:1a:ab:83:e0:97:ac:87:52:a9:d1:09: 10:98:9e:c8:12:fa:44:95:0d:1e:c5:50:b3:76:30: 56:84:cd:76:97:ca:fb:65:11:83:99:74:e5:7f:56: 47:32:de:97:44:38:63:4b:1b:a2:65:85:27:38:c1: 9c:88:83:ae:bb:57:ac:b1:33:6a:1e:9c:01:2b:1e: 4a:a2:69:8e:52:3d:8e:43:12:c2:56:34:87:dd:12: 32:5d:c9:4a:b5:5c:68:c9:da:48:0f:5e:7e:b2:50: ef:c0:c5:cd:d6:62:3c:a2:fc:0c:b1:f8:91:25:28: 29:c1:16:54:21:f9:ee:bc:cc:01:09:43:bb:c7:13: c7:24:36:fb:7e:59:2d:ba:7c:70:55:3f:49:1d:82: 25:75:6a:93:71:da:51:9b:0a:65:9e:ac:87:00:64: 42:e9:c7:bc:3b:af:9b:98:10:19:1c:e3:bc:15:a1: dc:03:71:01:fa:5c:17:e1:32:a7:61:51:87:28:6a: 3b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:DE:AB:BA:D7:67:3C:7E:AD:DD:C9:14:FD:05:C9:D8:A4:49:9A:D7 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/gN6rutdnPH6t3ckU_QXJ2KRJmtc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.4.0/22 Signature Algorithm: sha256WithRSAEncryption b1:75:32:ed:2a:2e:b0:b6:d7:ef:e0:95:99:ad:6b:23:73:03: de:59:56:07:8c:6e:e9:9d:eb:cf:c6:3c:ba:a2:00:6f:54:cf: 35:e7:5f:8a:6c:17:fd:17:b3:61:17:8a:87:5b:fe:4b:b2:df: 42:a4:4a:58:5f:a3:b4:01:bd:5f:61:b0:18:5d:30:f8:5d:68: aa:0d:65:2c:db:bd:61:08:f0:ff:f8:27:c1:67:9c:7d:c5:60: e9:20:b7:fd:5d:a0:01:20:7f:92:82:66:cd:47:6f:cc:53:fe: d7:32:6f:74:46:a9:e8:7c:50:7a:f0:af:8d:b1:18:1e:e2:45: dc:0a:e3:86:4f:f2:3c:b6:02:e9:36:0d:05:79:51:1e:8d:75: f2:f8:6b:a9:cb:98:84:f0:06:45:10:9e:db:7d:78:30:be:8a: 4c:c5:ff:c4:3c:3e:8d:ae:92:f4:5f:b4:42:3e:79:2c:b6:e5: 8f:58:0a:35:d9:98:ad:c6:3f:1c:a7:8c:63:38:e8:ca:2f:6f: 7c:e3:42:0a:1e:fe:1b:3b:46:89:ca:17:e9:c3:57:8c:0f:d1: 45:8f:e4:77:b1:18:dc:d8:e4:b7:75:ce:45:66:c7:d6:62:08: 6e:d5:cb:5a:1b:21:66:30:f9:e2:40:d2:ee:cf:ae:a3:10:b7: 81:63:6c:d0 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEDAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwREVBQkJBRDc2NzND N0VBREREQzkxNEZEMDVDOUQ4QTQ0OTlBRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7Gg/eAy5KRtE20ZZYE3w6SokImHBI+QW9o6imEZcUnv2acWXh RwyaY/z3wlesgL5814G/4iUo9clf/kr04+waq4Pgl6yHUqnRCRCYnsgS+kSVDR7F ULN2MFaEzXaXyvtlEYOZdOV/Vkcy3pdEOGNLG6JlhSc4wZyIg667V6yxM2oenAEr HkqiaY5SPY5DEsJWNIfdEjJdyUq1XGjJ2kgPXn6yUO/Axc3WYjyi/Ayx+JElKCnB FlQh+e68zAEJQ7vHE8ckNvt+WS26fHBVP0kdgiV1apNx2lGbCmWerIcAZELpx7w7 r5uYEBkc47wVodwDcQH6XBfhMqdhUYcoajtPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUgN6rutdnPH6t3ckU/QXJ2KRJmtcwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvZ042cnV0ZG5QSDZ0M2NrVV9RWEoy S1JKbXRjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsveBDAN BgkqhkiG9w0BAQsFAAOCAQEAsXUy7SousLbX7+CVma1rI3MD3llWB4xu6Z3rz8Y8 uqIAb1TPNedfimwX/RezYReKh1v+S7LfQqRKWF+jtAG9X2GwGF0w+F1oqg1lLNu9 YQjw//gnwWecfcVg6SC3/V2gASB/koJmzUdvzFP+1zJvdEap6HxQevCvjbEYHuJF 3Arjhk/yPLYC6TYNBXlRHo118vhrqcuYhPAGRRCe2314ML6KTMX/xDw+ja6S9F+0 Qj55LLblj1gKNdmYrcY/HKeMYzjoyi9vfONCCh7+GztGicoX6cNXjA/RRY/kd7EY 3Njkt3XORWbH1mIIbtXLWhshZjD54kDS7s+uoxC3gWNs0A== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org