$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/gvfH665FoJdBI77YdlfrOHy6zpI.roa File: gvfH665FoJdBI77YdlfrOHy6zpI.roa (raw, json) Hash identifier: 3YcSNPGm+Hlra1Ee5/TIH+w4XpLlM1fsvDfOD3Por3c= Subject key identifier: 82:F7:C7:EB:AE:45:A0:97:41:23:BE:D8:76:57:EB:38:7C:BA:CE:92 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E2F Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/gvfH665FoJdBI77YdlfrOHy6zpI.roa Signing time: Fri 01 Sep 2023 08:49:23 +0000 ROA not before: Fri 01 Sep 2023 08:49:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 27.96.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3631 (0xe2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=82F7C7EBAE45A0974123BED87657EB387CBACE92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:14:82:1c:08:f5:54:e3:16:2f:ec:7a:39:84: 71:2d:84:6c:de:c3:27:18:6b:c5:73:93:fc:96:2e: 6e:db:44:e6:ef:8e:d0:3f:e3:a0:80:50:2b:70:6a: 0b:9c:b8:98:ee:55:35:d7:1e:ce:1d:d1:da:bf:a0: 0e:e6:56:98:e5:59:cd:f6:ce:23:89:1b:91:f7:50: 8e:b6:4e:a7:4a:a8:d9:e4:4d:5e:a4:40:dc:e2:1b: 54:d7:2d:aa:72:fc:11:83:85:a1:c7:2d:15:ac:f9: 3f:aa:a2:5c:4c:37:a8:9c:22:16:55:a7:cd:3d:af: 29:9b:26:98:aa:38:93:1c:bb:ae:ea:93:a6:9a:b7: 7c:58:22:97:43:06:0f:c6:d3:e0:54:a1:9f:95:37: 57:2f:3e:dc:6b:40:d8:6b:e3:41:32:1d:3a:62:f5: 55:d3:2c:b7:a1:83:ce:96:c0:d3:93:8c:3b:0c:7f: 8a:73:af:b0:21:3d:06:2e:13:90:0d:2b:ae:95:60: f2:f1:1a:fd:e4:d3:f8:fe:06:61:a4:d6:e7:05:25: 31:00:91:ec:28:be:eb:5d:b6:db:d8:b8:f8:8a:e5: 52:65:59:6f:5a:c2:85:87:75:bd:ef:1b:aa:7d:e7: 9e:01:61:ed:5e:8d:ee:14:4b:a3:e2:ac:8b:47:1e: d2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:F7:C7:EB:AE:45:A0:97:41:23:BE:D8:76:57:EB:38:7C:BA:CE:92 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/gvfH665FoJdBI77YdlfrOHy6zpI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.224.0/20 Signature Algorithm: sha256WithRSAEncryption 2c:50:f0:8e:dd:1c:4c:f7:2a:a5:c6:33:70:6e:f6:3c:86:36: 09:13:6a:06:d0:82:90:fb:a9:d4:e6:1e:b1:bf:fc:b7:62:34: 7b:71:8c:5c:60:f9:56:a7:40:81:ef:a3:92:a7:a1:53:dc:46: 88:92:33:08:09:ed:7e:a1:dd:c8:00:1a:7a:f0:c7:b5:cf:15: e5:60:65:c0:ff:79:72:6d:b3:b6:42:1e:b2:ca:9d:76:5e:5c: 02:9e:76:2f:c9:c3:72:83:76:3f:66:44:ea:71:4e:04:d5:ed: c4:f5:6b:4d:05:2d:78:79:82:aa:b2:3f:37:10:d7:2d:e8:02: 02:50:a3:6f:43:ab:fe:b5:8b:a2:c5:0c:f5:8d:d8:e5:d7:6e: 89:2a:05:bb:bc:e9:7b:34:70:1d:d6:ca:6e:eb:98:85:85:b8: 9e:e8:9e:2f:08:8f:2e:6d:73:32:0d:16:b0:0d:d9:24:2b:9d: 68:ee:f6:5c:83:38:0a:1d:78:8f:32:51:35:93:15:cc:f0:9b: f3:29:05:40:b2:71:8d:15:1f:76:91:e9:5b:21:2a:52:83:f7: e7:36:30:f6:49:7a:15:ce:94:a5:a3:bb:a7:6b:a0:fc:e1:83: af:d7:41:cf:90:34:ed:6d:86:6e:17:ab:18:63:8e:60:83:b0: bc:c9:17:ec -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDi8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgyRjdDN0VCQUU0NUEw OTc0MTIzQkVEODc2NTdFQjM4N0NCQUNFOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdFIIcCPVU4xYv7Ho5hHEthGzewycYa8Vzk/yWLm7bRObvjtA/ 46CAUCtwagucuJjuVTXXHs4d0dq/oA7mVpjlWc32ziOJG5H3UI62TqdKqNnkTV6k QNziG1TXLapy/BGDhaHHLRWs+T+qolxMN6icIhZVp809rymbJpiqOJMcu67qk6aa t3xYIpdDBg/G0+BUoZ+VN1cvPtxrQNhr40EyHTpi9VXTLLehg86WwNOTjDsMf4pz r7AhPQYuE5ANK66VYPLxGv3k0/j+BmGk1ucFJTEAkewovutdttvYuPiK5VJlWW9a woWHdb3vG6p9554BYe1eje4US6PirItHHtLJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUgvfH665FoJdBI77YdlfrOHy6zpIwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvZ3ZmSDY2NUZvSmRCSTc3WWRsZnJP SHk2enBJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBBtg4DAN BgkqhkiG9w0BAQsFAAOCAQEALFDwjt0cTPcqpcYzcG72PIY2CRNqBtCCkPup1OYe sb/8t2I0e3GMXGD5VqdAge+jkqehU9xGiJIzCAntfqHdyAAaevDHtc8V5WBlwP95 cm2ztkIessqddl5cAp52L8nDcoN2P2ZE6nFOBNXtxPVrTQUteHmCqrI/NxDXLegC AlCjb0Or/rWLosUM9Y3Y5dduiSoFu7zpezRwHdbKbuuYhYW4nuieLwiPLm1zMg0W sA3ZJCudaO72XIM4Ch14jzJRNZMVzPCb8ykFQLJxjRUfdpHpWyEqUoP35zYw9kl6 Fc6UpaO7p2ug/OGDr9dBz5A07W2GbherGGOOYIOwvMkX7A== -----END CERTIFICATE-----Generated at Mon Jun 3 04:19:39 2024 by rpki-client on console-fra.rpki-client.org