$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/icTZsRO--Jc5uisvWmLY4kCAzo8.roa File: icTZsRO--Jc5uisvWmLY4kCAzo8.roa (raw, json) Hash identifier: dEBfxBq/VzVRcDlOB9INvKeS8RgSbzCkApDcVvrkHB0= Subject key identifier: 89:C4:D9:B1:13:BE:F8:97:39:BA:2B:2F:5A:62:D8:E2:40:80:CE:8F Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E66 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/icTZsRO--Jc5uisvWmLY4kCAzo8.roa Signing time: Fri 01 Sep 2023 08:49:39 +0000 ROA not before: Fri 01 Sep 2023 08:49:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 182.155.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3686 (0xe66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=89C4D9B113BEF89739BA2B2F5A62D8E24080CE8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d9:b5:3e:e7:b0:17:42:17:1f:50:95:76:c2: 11:c1:95:d7:16:82:59:ca:4d:1a:b0:fd:cb:95:43: 0a:8b:4d:c1:2c:51:b1:88:59:58:9f:d3:76:e2:68: 3b:fc:6c:ac:9a:a2:5e:e8:1b:5a:c0:82:96:78:cd: 54:23:38:00:fc:cc:64:1c:fe:66:0c:0d:63:34:b8: 63:62:f4:80:f4:cf:d9:cd:0c:c5:62:46:ab:f5:a0: eb:53:28:c2:5c:8e:6b:66:ef:b1:dc:54:c0:61:2c: e5:e6:b8:a6:bb:32:36:2a:f1:cc:d0:ce:50:02:4a: e6:03:d5:18:63:6a:ca:27:09:15:64:d9:52:63:c1: f6:0c:75:d2:df:8a:4e:d1:5c:43:9c:dd:ed:8a:0c: b9:91:ff:32:d3:e3:65:f6:f5:b4:51:21:9a:cc:10: 3a:74:3c:4b:32:b7:a2:dd:10:15:ae:a4:19:9b:09: f3:77:aa:87:e6:97:e6:1c:1d:f9:c4:27:cc:63:08: a3:b2:a6:3b:b7:e6:32:85:1e:74:ca:aa:6b:0d:e9: e5:bb:49:f8:31:48:06:78:86:42:83:b1:fc:75:cf: 36:f5:68:4f:34:0c:14:3c:89:ba:0f:79:71:7e:61: 02:90:8c:96:49:96:48:4b:48:a5:3b:5c:80:2c:a4: 5f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C4:D9:B1:13:BE:F8:97:39:BA:2B:2F:5A:62:D8:E2:40:80:CE:8F X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/icTZsRO--Jc5uisvWmLY4kCAzo8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.128.0/18 Signature Algorithm: sha256WithRSAEncryption a5:86:35:21:8f:fc:49:8f:a5:ae:fe:d2:f8:6a:00:cc:2d:b4: 9d:f0:f8:4e:6b:7a:fb:1c:cf:88:b1:43:90:18:75:e9:39:39: d2:7d:ab:99:b6:91:a9:39:9c:9c:09:92:ed:50:28:c8:98:9d: 2c:2b:6c:94:4c:7e:c8:5b:19:3b:b0:d4:c7:13:17:c8:ce:97: 24:93:37:d5:5e:6f:63:c4:db:1f:82:de:00:b4:63:03:c8:fb: 9a:f3:a3:bb:73:3a:d2:30:17:26:b7:5f:02:f6:05:ae:71:04: c5:ad:5d:f9:c3:09:2d:47:4b:a8:e9:ca:56:dc:09:32:85:b7: 35:2e:95:35:b2:dd:3d:81:c5:38:81:b2:e2:4c:be:f2:ee:6c: b1:7d:42:ae:33:99:d5:2b:2d:77:fa:4a:fa:d9:b8:6b:cc:3e: 12:83:65:47:c2:4f:1a:f3:32:ed:fa:8c:f1:2d:d2:bc:94:6b: f7:20:07:63:96:5c:11:33:ff:ac:32:e2:fa:45:b3:d1:3d:c8: d0:81:08:69:38:b0:e8:fa:4b:66:cb:bf:66:a1:fb:52:76:7b: b2:56:64:d3:70:c3:31:4d:0f:e7:ec:4d:cc:30:42:98:c5:2e: 7c:a1:f0:fe:99:95:91:95:d7:de:ec:f6:cd:2d:39:2f:55:53: cd:ba:39:94 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDmYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg5QzREOUIxMTNCRUY4 OTczOUJBMkIyRjVBNjJEOEUyNDA4MENFOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY2bU+57AXQhcfUJV2whHBldcWglnKTRqw/cuVQwqLTcEsUbGI WVif03biaDv8bKyaol7oG1rAgpZ4zVQjOAD8zGQc/mYMDWM0uGNi9ID0z9nNDMVi Rqv1oOtTKMJcjmtm77HcVMBhLOXmuKa7MjYq8czQzlACSuYD1RhjasonCRVk2VJj wfYMddLfik7RXEOc3e2KDLmR/zLT42X29bRRIZrMEDp0PEsyt6LdEBWupBmbCfN3 qofml+YcHfnEJ8xjCKOypju35jKFHnTKqmsN6eW7SfgxSAZ4hkKDsfx1zzb1aE80 DBQ8iboPeXF+YQKQjJZJlkhLSKU7XIAspF8tAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUicTZsRO++Jc5uisvWmLY4kCAzo8wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvaWNUWnNSTy0tSmM1dWlzdldtTFk0 a0NBem84LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBrabgDAN BgkqhkiG9w0BAQsFAAOCAQEApYY1IY/8SY+lrv7S+GoAzC20nfD4Tmt6+xzPiLFD kBh16Tk50n2rmbaRqTmcnAmS7VAoyJidLCtslEx+yFsZO7DUxxMXyM6XJJM31V5v Y8TbH4LeALRjA8j7mvOju3M60jAXJrdfAvYFrnEExa1d+cMJLUdLqOnKVtwJMoW3 NS6VNbLdPYHFOIGy4ky+8u5ssX1CrjOZ1Sstd/pK+tm4a8w+EoNlR8JPGvMy7fqM 8S3SvJRr9yAHY5ZcETP/rDLi+kWz0T3I0IEIaTiw6PpLZsu/ZqH7UnZ7slZk03DD MU0P5+xNzDBCmMUufKHw/pmVkZXX3uz2zS05L1VTzbo5lA== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org