$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/h1U_e8Cll9WAWgXcdtf03sk_L2U.roa File: h1U_e8Cll9WAWgXcdtf03sk_L2U.roa (raw, json) Hash identifier: XubHpT6PWCcrgZJHUMAfp7XYTxRa4Zg1cylloIMUrp8= Subject key identifier: 87:55:3F:7B:C0:A5:97:D5:80:5A:05:DC:76:D7:F4:DE:C9:3F:2F:65 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 102E Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/h1U_e8Cll9WAWgXcdtf03sk_L2U.roa Signing time: Mon 26 Aug 2024 05:13:27 +0000 ROA not before: Mon 26 Aug 2024 05:13:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 182.155.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4142 (0x102e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=87553F7BC0A597D5805A05DC76D7F4DEC93F2F65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:47:d7:2b:90:32:7e:39:64:48:48:e3:10:d5: 06:84:5a:29:3a:62:cb:54:27:ce:be:0d:9c:13:47: 3f:06:ed:34:56:ec:ed:4d:77:22:52:24:fa:60:55: 41:8b:46:e6:f1:29:f8:90:6a:14:0b:ea:fe:b1:42: 5e:c5:ac:0b:49:86:87:02:bc:7f:b9:32:53:d1:5e: 83:9f:62:ce:37:93:03:cf:0c:13:5d:57:93:68:ea: a5:84:3f:c6:7e:3c:f3:18:5a:ba:e4:9a:55:e3:6a: 48:fb:6b:99:d5:7c:27:03:ae:67:07:11:05:1b:e2: bf:50:d2:be:54:93:6c:a7:34:e8:2e:92:87:f2:50: b8:95:ee:f6:21:fa:ca:71:6f:b2:ca:9a:68:f0:70: 96:85:f0:a6:01:d0:50:70:02:79:7a:cd:d8:53:cd: 8b:09:79:e6:c9:a1:c3:f0:c0:8c:71:15:34:36:68: 20:1e:42:e0:f8:17:aa:51:81:a5:0f:05:2c:e4:f9: 9a:39:4a:87:93:70:c0:56:a6:0a:18:97:57:bb:c3: 77:85:97:2b:d0:6e:f6:3b:f2:0f:b3:f3:2b:3a:b9: 1d:e9:96:30:09:eb:db:33:ff:9f:f5:94:f2:ad:ef: 37:fe:31:d9:84:0f:7e:76:02:96:a2:25:bf:12:54: c9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:55:3F:7B:C0:A5:97:D5:80:5A:05:DC:76:D7:F4:DE:C9:3F:2F:65 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/h1U_e8Cll9WAWgXcdtf03sk_L2U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.0.0/18 Signature Algorithm: sha256WithRSAEncryption 6e:96:23:ff:cb:45:b3:f3:3a:38:fd:3f:dd:41:0c:4c:19:0b: 79:23:3b:24:27:41:eb:a6:df:65:27:5b:e4:26:ef:2a:8f:b4: b4:a7:b3:64:29:0e:5e:92:bc:2d:73:02:d6:a5:87:65:02:37: 43:29:93:6a:03:f0:a8:87:a4:57:91:19:6d:02:08:1c:9a:0d: c5:c3:08:9c:f2:8c:1f:00:3d:92:79:8f:72:26:f0:28:27:c0: bb:bd:43:8d:23:f3:7c:49:d6:ed:bb:8b:22:48:10:da:57:45: ff:f2:52:26:5a:02:79:f0:85:ba:14:1e:80:36:90:55:7a:08: 01:94:40:94:31:36:c5:66:a5:b1:6c:c0:d7:33:dc:56:9d:b2: 77:46:d5:30:5a:53:6a:65:30:03:0a:23:9b:f6:00:67:00:d8: cf:0d:0a:36:c4:9d:d0:99:7e:2e:7d:4b:91:3e:c9:41:66:39: 76:1a:0b:e1:a0:1a:30:d4:bb:db:00:31:5c:28:58:1e:ab:11: da:50:7c:91:a7:bf:9f:62:99:4c:94:f0:36:80:98:86:80:09: 2e:ff:b2:6b:ac:0e:40:a8:d4:bf:13:24:0f:cc:03:90:70:d4: ba:f6:2b:4b:88:7f:10:8a:c2:5f:44:af:12:86:6d:40:60:4c: df:8c:e3:34 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEC4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg3NTUzRjdCQzBBNTk3 RDU4MDVBMDVEQzc2RDdGNERFQzkzRjJGNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOR9crkDJ+OWRISOMQ1QaEWik6YstUJ86+DZwTRz8G7TRW7O1N dyJSJPpgVUGLRubxKfiQahQL6v6xQl7FrAtJhocCvH+5MlPRXoOfYs43kwPPDBNd V5No6qWEP8Z+PPMYWrrkmlXjakj7a5nVfCcDrmcHEQUb4r9Q0r5Uk2ynNOgukofy ULiV7vYh+spxb7LKmmjwcJaF8KYB0FBwAnl6zdhTzYsJeebJocPwwIxxFTQ2aCAe QuD4F6pRgaUPBSzk+Zo5SoeTcMBWpgoYl1e7w3eFlyvQbvY78g+z8ys6uR3pljAJ 69sz/5/1lPKt7zf+MdmED352ApaiJb8SVMmpAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUh1U/e8Cll9WAWgXcdtf03sk/L2UwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvaDFVX2U4Q2xsOVdBV2dYY2R0ZjAz c2tfTDJVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBrabADAN BgkqhkiG9w0BAQsFAAOCAQEAbpYj/8tFs/M6OP0/3UEMTBkLeSM7JCdB66bfZSdb 5CbvKo+0tKezZCkOXpK8LXMC1qWHZQI3QymTagPwqIekV5EZbQIIHJoNxcMInPKM HwA9knmPcibwKCfAu71DjSPzfEnW7buLIkgQ2ldF//JSJloCefCFuhQegDaQVXoI AZRAlDE2xWalsWzA1zPcVp2yd0bVMFpTamUwAwojm/YAZwDYzw0KNsSd0Jl+Ln1L kT7JQWY5dhoL4aAaMNS72wAxXChYHqsR2lB8kae/n2KZTJTwNoCYhoAJLv+ya6wO QKjUvxMkD8wDkHDUuvYrS4h/EIrCX0SvEoZtQGBM34zjNA== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org