$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/hjZMQ2lScrNKIc2dHGSTyzTme3M.roa File: hjZMQ2lScrNKIc2dHGSTyzTme3M.roa (raw, json) Hash identifier: yNOusiTeD3+lOwtrezjqyjRUdM7jGaDyw5YppYcV8uo= Subject key identifier: 86:36:4C:43:69:52:72:B3:4A:21:CD:9D:1C:64:93:CB:34:E6:7B:73 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E30 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hjZMQ2lScrNKIc2dHGSTyzTme3M.roa Signing time: Fri 01 Sep 2023 08:49:23 +0000 ROA not before: Fri 01 Sep 2023 08:49:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 203.222.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3632 (0xe30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=86364C43695272B34A21CD9D1C6493CB34E67B73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:15:a4:12:6f:a7:24:fa:cb:7e:90:52:88:72: 63:8f:bd:de:41:c1:c6:32:5c:90:d7:ba:87:db:5d: 1c:bd:ec:45:e5:cb:91:38:50:78:76:e2:33:d2:45: 51:2f:05:ce:e6:26:10:04:70:c3:6c:85:b6:f3:c1: e0:ef:fc:0b:ae:e4:ef:e7:38:a6:93:c4:60:b2:36: 0b:98:f7:e5:73:82:53:d8:70:a8:e1:57:fa:a3:08: 7e:f1:71:2c:cb:62:b1:8f:29:d3:e8:8c:75:5a:2b: 5e:61:40:7f:ef:1d:46:ae:de:0f:51:de:8e:4a:35: b1:55:92:6e:d2:ec:1c:4f:f9:9f:30:52:06:41:8b: 41:f8:e6:58:16:47:7a:55:48:21:20:eb:4c:f3:92: 65:99:34:f2:b4:cc:64:e0:6f:f9:74:0e:38:f1:39: ac:96:0d:f2:d4:2f:ba:0c:3e:b2:08:02:9c:29:96: 35:15:f5:fb:0e:ad:73:10:52:8c:1c:15:d2:6d:a4: aa:d6:06:17:d8:e9:8c:83:83:44:ee:54:50:eb:2b: a6:ec:aa:e8:6a:e4:11:ff:c0:56:92:a9:cd:69:0d: 87:10:b1:fe:02:22:64:fd:d8:5d:2b:42:4c:19:87: 75:64:e0:6d:a2:30:76:2d:52:08:99:fc:82:ed:d6: 13:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:36:4C:43:69:52:72:B3:4A:21:CD:9D:1C:64:93:CB:34:E6:7B:73 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hjZMQ2lScrNKIc2dHGSTyzTme3M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.0.0/19 Signature Algorithm: sha256WithRSAEncryption 8f:e2:76:21:97:99:0f:58:a3:0d:75:87:5b:fe:e2:61:05:84: a2:25:42:26:d4:70:1d:7a:78:d6:8d:59:2e:72:11:13:f2:77: 42:16:bf:48:e9:30:09:05:fb:54:8b:2c:0b:52:83:bf:5c:fd: 6f:de:05:31:bc:a7:5f:ca:ee:40:2c:d5:cf:64:8b:99:c4:a1: 62:35:3f:82:3f:a1:85:f3:69:98:87:80:a2:f5:8b:2b:18:db: 43:d8:27:9e:a0:ab:ec:e1:b0:fb:1d:df:61:26:0e:3f:c7:33: d0:a9:6f:fb:4e:05:30:19:6b:14:53:ac:a7:fd:78:22:10:3d: c8:ef:ee:ee:7a:11:a1:fe:d0:c5:5c:a7:a7:85:3f:ea:47:a5: 01:ac:31:0f:f4:d5:61:dd:01:1a:2e:c5:a4:56:6d:82:32:f2: f0:6f:39:ce:7d:8e:3e:67:9f:0c:8e:63:12:56:1d:e3:dc:3d: c4:c0:18:02:50:85:4a:92:47:6c:3d:8d:26:b8:9b:e3:da:6f: c8:cd:89:b8:c2:1d:d2:be:c8:69:99:e0:87:84:59:ad:66:62: ef:99:bb:a8:e9:52:7f:08:35:ab:ef:d9:39:44:30:fa:09:7a: ca:c1:ea:d3:a5:9f:39:e2:a0:1b:19:27:4d:23:51:84:44:01: 9d:2d:3e:5a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDjAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg2MzY0QzQzNjk1Mjcy QjM0QTIxQ0Q5RDFDNjQ5M0NCMzRFNjdCNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNFaQSb6ck+st+kFKIcmOPvd5BwcYyXJDXuofbXRy97EXly5E4 UHh24jPSRVEvBc7mJhAEcMNshbbzweDv/Auu5O/nOKaTxGCyNguY9+VzglPYcKjh V/qjCH7xcSzLYrGPKdPojHVaK15hQH/vHUau3g9R3o5KNbFVkm7S7BxP+Z8wUgZB i0H45lgWR3pVSCEg60zzkmWZNPK0zGTgb/l0DjjxOayWDfLUL7oMPrIIApwpljUV 9fsOrXMQUowcFdJtpKrWBhfY6YyDg0TuVFDrK6bsquhq5BH/wFaSqc1pDYcQsf4C ImT92F0rQkwZh3Vk4G2iMHYtUgiZ/ILt1hMlAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUhjZMQ2lScrNKIc2dHGSTyzTme3MwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvaGpaTVEybFNjck5LSWMyZEhHU1R5 elRtZTNNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcveADAN BgkqhkiG9w0BAQsFAAOCAQEAj+J2IZeZD1ijDXWHW/7iYQWEoiVCJtRwHXp41o1Z LnIRE/J3Qha/SOkwCQX7VIssC1KDv1z9b94FMbynX8ruQCzVz2SLmcShYjU/gj+h hfNpmIeAovWLKxjbQ9gnnqCr7OGw+x3fYSYOP8cz0Klv+04FMBlrFFOsp/14IhA9 yO/u7noRof7QxVynp4U/6kelAawxD/TVYd0BGi7FpFZtgjLy8G85zn2OPmefDI5j ElYd49w9xMAYAlCFSpJHbD2NJrib49pvyM2JuMId0r7IaZngh4RZrWZi75m7qOlS fwg1q+/ZOUQw+gl6ysHq06WfOeKgGxknTSNRhEQBnS0+Wg== -----END CERTIFICATE-----Generated at Mon Jun 3 04:19:39 2024 by rpki-client on console-fra.rpki-client.org