$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/hNU9vxiPa1xNQPdd3yrlM-xl39s.roa File: hNU9vxiPa1xNQPdd3yrlM-xl39s.roa (raw, json) Hash identifier: gDUcB/zX1MmRyP3lzHa0AwlFX8p3cuc31voo+9vaf7Q= Subject key identifier: 84:D5:3D:BF:18:8F:6B:5C:4D:40:F7:5D:DF:2A:E5:33:EC:65:DF:DB Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E44 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hNU9vxiPa1xNQPdd3yrlM-xl39s.roa Signing time: Fri 01 Sep 2023 08:49:29 +0000 ROA not before: Fri 01 Sep 2023 08:49:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 113.61.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3652 (0xe44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=84D53DBF188F6B5C4D40F75DDF2AE533EC65DFDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5c:6f:b3:36:7c:2e:e2:48:ec:c2:4a:5c:92: 39:e2:00:0a:ad:43:dc:a3:f9:e4:e4:fd:db:9e:76: 2f:34:11:1f:c1:e6:9e:b4:b9:6e:aa:2f:35:62:9a: 16:a1:58:9d:a4:36:1d:2c:03:34:57:ee:76:01:33: 37:ae:88:a2:2a:18:a4:17:b3:a3:94:42:6a:c4:84: 03:b6:b6:14:35:7c:56:5b:07:f0:7d:31:95:c8:84: 08:b0:be:6f:68:7c:0b:51:69:82:db:5f:6b:14:69: 30:ee:3a:02:39:32:81:4b:45:60:23:ab:ac:9a:05: 36:3b:5f:17:07:a4:8a:dd:5e:d0:16:42:c8:2a:2a: 51:f0:1d:c3:3d:f2:dc:0c:c3:7d:6d:d0:a1:58:87: f6:48:72:77:fe:4a:ba:0e:dc:36:dc:22:f7:bc:8b: a4:42:b3:3a:96:f8:30:47:dd:b2:9a:f8:67:6e:70: b7:fa:f5:a9:52:7e:47:ea:79:75:00:1f:41:50:0d: 98:dd:75:23:0d:02:92:16:fe:f6:af:dd:2d:ef:f3: 4f:2f:db:8c:72:58:1f:06:03:a7:2c:04:ce:ea:c7: f8:2f:5b:59:d7:b9:27:66:54:d1:05:3e:ce:04:c0: 5f:eb:eb:d7:d6:ff:6f:e0:2d:61:ed:7a:39:34:92: ec:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D5:3D:BF:18:8F:6B:5C:4D:40:F7:5D:DF:2A:E5:33:EC:65:DF:DB X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hNU9vxiPa1xNQPdd3yrlM-xl39s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.176.0/20 Signature Algorithm: sha256WithRSAEncryption 53:73:c8:54:66:d8:c4:7b:cc:ad:56:cf:a9:8a:69:b9:ff:d7: e6:ea:13:14:3a:4e:78:bf:93:95:aa:a5:64:07:45:46:73:55: d1:4f:e7:0a:82:d6:f6:11:52:24:66:db:bf:d5:cd:95:5f:43: 23:2a:6e:d0:5b:53:05:6a:eb:80:e1:30:c6:ac:cd:e2:91:cd: 0f:e8:0c:29:9d:ec:bd:f2:f4:48:6c:2e:f8:15:5b:ba:0a:3a: 76:0f:fe:8f:c4:60:4d:20:3d:65:20:e2:3f:63:bc:24:15:e8: 4a:40:37:e6:b7:5c:18:58:12:a2:e8:d9:cb:56:91:92:f2:76: a2:e3:8e:d0:12:28:f1:bc:19:42:e8:7b:7e:54:b4:66:fc:c7: 82:26:66:cc:f2:11:a5:96:02:6e:e2:25:9d:02:4a:1b:9d:7f: 82:32:c1:35:2c:fd:e6:14:26:96:0c:f1:72:3a:38:b8:da:9b: 72:f3:7c:58:ae:ef:ad:a6:00:7d:1e:0d:1e:b9:1c:78:c5:f3: 43:c7:d7:fe:bc:93:4c:3f:2f:2e:01:4a:06:cc:d6:54:c5:40: 15:c6:d2:55:e4:c2:f4:e4:06:0e:da:6f:23:b8:34:26:bb:0f: d4:2f:44:de:bc:7c:28:4f:eb:11:ee:85:0e:b7:88:18:0e:ed: 0a:e6:72:ef -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg0RDUzREJGMTg4RjZC NUM0RDQwRjc1RERGMkFFNTMzRUM2NURGREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5XG+zNnwu4kjswkpckjniAAqtQ9yj+eTk/duedi80ER/B5p60 uW6qLzVimhahWJ2kNh0sAzRX7nYBMzeuiKIqGKQXs6OUQmrEhAO2thQ1fFZbB/B9 MZXIhAiwvm9ofAtRaYLbX2sUaTDuOgI5MoFLRWAjq6yaBTY7XxcHpIrdXtAWQsgq KlHwHcM98twMw31t0KFYh/ZIcnf+SroO3DbcIve8i6RCszqW+DBH3bKa+GducLf6 9alSfkfqeXUAH0FQDZjddSMNApIW/vav3S3v808v24xyWB8GA6csBM7qx/gvW1nX uSdmVNEFPs4EwF/r69fW/2/gLWHtejk0kuzjAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUhNU9vxiPa1xNQPdd3yrlM+xl39swHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvaE5VOXZ4aVBhMXhOUVBkZDN5cmxN LXhsMzlzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHE9sDAN BgkqhkiG9w0BAQsFAAOCAQEAU3PIVGbYxHvMrVbPqYppuf/X5uoTFDpOeL+Tlaql ZAdFRnNV0U/nCoLW9hFSJGbbv9XNlV9DIypu0FtTBWrrgOEwxqzN4pHND+gMKZ3s vfL0SGwu+BVbugo6dg/+j8RgTSA9ZSDiP2O8JBXoSkA35rdcGFgSoujZy1aRkvJ2 ouOO0BIo8bwZQuh7flS0ZvzHgiZmzPIRpZYCbuIlnQJKG51/gjLBNSz95hQmlgzx cjo4uNqbcvN8WK7vraYAfR4NHrkceMXzQ8fX/ryTTD8vLgFKBszWVMVAFcbSVeTC 9OQGDtpvI7g0JrsP1C9E3rx8KE/rEe6FDreIGA7tCuZy7w== -----END CERTIFICATE-----Generated at Mon Jun 3 06:07:08 2024 by rpki-client on console-ams.rpki-client.org