$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/gbDvGkpQfDrW7vf0bIEhSER0SuI.roa File: gbDvGkpQfDrW7vf0bIEhSER0SuI.roa (raw, json) Hash identifier: mOXgSR6R+NcohTYd7X1Ib8uHa49tPKEqXf6eZOksz2I= Subject key identifier: 81:B0:EF:1A:4A:50:7C:3A:D6:EE:F7:F4:6C:81:21:48:44:74:4A:E2 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1038 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/gbDvGkpQfDrW7vf0bIEhSER0SuI.roa Signing time: Mon 26 Aug 2024 05:13:31 +0000 ROA not before: Mon 26 Aug 2024 05:13:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 210.209.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4152 (0x1038) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:31 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=81B0EF1A4A507C3AD6EEF7F46C81214844744AE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b6:0b:2b:a6:48:b1:98:be:a0:02:f6:d1:57: a5:9e:01:11:48:9d:02:28:ba:40:1d:e2:ab:12:36: 29:90:f4:89:df:92:b7:63:85:68:de:97:8d:40:8a: b5:ac:40:a0:87:54:24:eb:12:5a:9b:40:c2:6b:5b: 32:d7:33:6b:8b:e1:67:fe:bb:62:46:aa:c1:4c:72: 3a:a7:88:c7:48:55:36:89:31:47:8d:a6:02:12:46: de:3b:82:9d:03:13:99:1e:5d:e3:a5:e2:35:39:a5: 58:8d:03:b5:df:51:2b:14:7b:d4:f3:83:74:8b:b4: b1:51:73:71:9a:48:14:e8:09:7f:9b:1c:91:4b:bc: ba:49:38:61:98:02:66:28:af:05:96:3c:ad:fc:c7: a5:01:f9:08:d0:d9:01:b8:a7:62:a4:a5:c0:4f:64: bc:e9:3a:f3:68:d5:03:5f:7c:62:fa:3b:65:ff:ee: 27:0d:f6:3d:7a:ed:46:b9:9b:ca:83:eb:df:e0:a0: a2:a5:02:e2:72:29:ac:14:d1:f1:3b:b0:b2:e3:b9: fa:51:1b:24:ee:f2:81:8a:71:8b:e1:b0:3d:e8:09: 5a:56:cc:80:58:dd:d8:ac:54:82:8f:a5:8d:6e:9b: 07:c3:6e:95:ec:7b:1a:51:8b:1e:b0:52:04:43:43: 15:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B0:EF:1A:4A:50:7C:3A:D6:EE:F7:F4:6C:81:21:48:44:74:4A:E2 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/gbDvGkpQfDrW7vf0bIEhSER0SuI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.209.160.0/19 Signature Algorithm: sha256WithRSAEncryption 4e:2c:01:57:19:2c:7e:05:39:d8:2a:17:80:54:21:f0:80:6c: 65:73:fb:d8:27:32:47:ed:af:28:59:a4:4e:ac:7f:c6:da:4e: d4:25:37:ac:57:34:f6:57:08:9a:c7:54:40:4e:26:04:5c:99: 97:d3:73:9e:71:4e:6a:a6:c9:ac:10:5e:48:83:3c:ca:56:eb: ad:06:67:3d:f1:49:71:75:de:12:d2:62:28:78:bc:78:c4:c0: 0e:74:af:75:88:f5:b7:38:7d:c7:a3:81:9e:1f:25:fb:0f:10: 4e:c0:0f:50:91:56:b7:dd:78:00:d4:90:95:14:f8:ba:de:7e: 35:ea:1d:a3:af:87:52:6e:9d:94:27:50:07:3f:af:9d:c7:7a: 39:5d:33:4b:53:68:ab:e9:ab:78:a2:a7:26:fb:f8:5c:67:aa: 15:83:52:b9:75:72:ef:84:0a:8f:a2:1c:28:c7:c1:ae:2a:6b: e4:3b:79:e2:09:99:ec:cd:20:7b:af:49:dc:81:c1:28:6e:cb: 8e:65:6a:72:bb:a7:e8:bf:03:88:e8:af:74:e7:47:b8:fb:16: f5:1e:78:3e:e5:4b:74:1e:d0:f2:bb:d0:31:7a:f1:51:ee:6a: 32:1f:10:42:a5:da:30:09:fa:5a:70:c1:25:2f:84:68:1e:12: 28:95:29:3b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEDgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgxQjBFRjFBNEE1MDdD M0FENkVFRjdGNDZDODEyMTQ4NDQ3NDRBRTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0tgsrpkixmL6gAvbRV6WeARFInQIoukAd4qsSNimQ9Infkrdj hWjel41AirWsQKCHVCTrElqbQMJrWzLXM2uL4Wf+u2JGqsFMcjqniMdIVTaJMUeN pgISRt47gp0DE5keXeOl4jU5pViNA7XfUSsUe9Tzg3SLtLFRc3GaSBToCX+bHJFL vLpJOGGYAmYorwWWPK38x6UB+QjQ2QG4p2KkpcBPZLzpOvNo1QNffGL6O2X/7icN 9j167Ua5m8qD69/goKKlAuJyKawU0fE7sLLjufpRGyTu8oGKcYvhsD3oCVpWzIBY 3disVIKPpY1umwfDbpXsexpRix6wUgRDQxVLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUgbDvGkpQfDrW7vf0bIEhSER0SuIwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvZ2JEdkdrcFFmRHJXN3ZmMGJJRWhT RVIwU3VJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdLRoDAN BgkqhkiG9w0BAQsFAAOCAQEATiwBVxksfgU52CoXgFQh8IBsZXP72CcyR+2vKFmk Tqx/xtpO1CU3rFc09lcImsdUQE4mBFyZl9NznnFOaqbJrBBeSIM8ylbrrQZnPfFJ cXXeEtJiKHi8eMTADnSvdYj1tzh9x6OBnh8l+w8QTsAPUJFWt914ANSQlRT4ut5+ Neodo6+HUm6dlCdQBz+vncd6OV0zS1Noq+mreKKnJvv4XGeqFYNSuXVy74QKj6Ic KMfBripr5Dt54gmZ7M0ge69J3IHBKG7LjmVqcrun6L8DiOivdOdHuPsW9R54PuVL dB7Q8rvQMXrxUe5qMh8QQqXaMAn6WnDBJS+EaB4SKJUpOw== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org