$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/ies8DFH5GwhE8CBCJEa0FM0-2uU.roa File: ies8DFH5GwhE8CBCJEa0FM0-2uU.roa (raw, json) Hash identifier: 5jC2YjqkL7Do4hePt7ecG9MT8yFSWjqrQfJ2TSAdUyI= Subject key identifier: 89:EB:3C:0C:51:F9:1B:08:44:F0:20:42:24:46:B4:14:CD:3E:DA:E5 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FF7 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ies8DFH5GwhE8CBCJEa0FM0-2uU.roa Signing time: Mon 26 Aug 2024 05:13:15 +0000 ROA not before: Mon 26 Aug 2024 05:13:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 27.96.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4087 (0xff7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=89EB3C0C51F91B0844F020422446B414CD3EDAE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:45:ad:4d:f5:f8:a5:e4:5a:46:7c:1e:a0:3f: c9:da:10:86:00:d3:8f:43:c7:24:59:08:33:70:d7: fd:e6:5c:b8:e7:d2:82:6b:55:d8:9e:52:d1:81:a7: 2d:be:87:e5:5c:35:3f:0e:d6:60:f3:9b:a7:69:f1: e2:2d:87:41:bb:bb:1a:7d:51:69:7e:c4:71:19:9b: 1c:ae:03:fd:8d:72:7f:f3:4e:3e:86:7c:2e:82:b3: a7:f2:30:f1:b2:60:7f:c9:b0:67:7b:d0:b5:a2:8a: cc:18:e7:af:4e:94:18:3d:c1:6c:11:5e:54:4e:be: 6f:13:fb:b4:18:93:ac:c2:7d:b7:f8:a9:88:89:3a: ce:99:b9:55:9e:70:e2:55:9e:f9:ca:ea:5e:60:18: 27:2f:4b:54:d9:e5:55:70:c3:8d:29:87:e4:76:7a: dc:65:df:09:82:f3:c2:5c:50:f9:11:66:d1:55:f3: e4:f4:91:bc:fa:f3:3d:90:fa:9f:fe:0d:4b:ac:18: 56:09:a3:3d:f1:31:df:de:18:08:f4:54:64:b7:9f: 3a:a1:de:18:46:ac:43:6b:bf:0c:e7:ce:6b:50:e8: 8a:f1:55:e8:02:a0:9b:23:67:39:94:69:d9:f7:23: 4a:70:24:88:f1:8e:a0:03:66:e1:6a:dd:b2:c1:14: 5d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:EB:3C:0C:51:F9:1B:08:44:F0:20:42:24:46:B4:14:CD:3E:DA:E5 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ies8DFH5GwhE8CBCJEa0FM0-2uU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.236.0/22 Signature Algorithm: sha256WithRSAEncryption 62:57:36:07:94:44:01:b6:5b:d8:b3:95:eb:4c:63:ed:25:41: e2:84:ed:ef:9f:e5:dc:92:16:14:98:d7:11:17:06:b7:3e:3c: fa:d7:b6:b7:12:69:53:71:b3:57:f6:d1:1c:09:f8:e0:a6:9c: 52:5c:0f:c2:c9:eb:0a:81:25:6e:59:5a:b8:90:e0:cb:d4:d4: 88:08:1c:00:9e:a7:de:02:9f:5d:3e:39:89:1c:c8:19:f3:e9: d7:8f:94:cc:09:15:a0:a5:97:e6:a6:6b:47:7d:04:7d:9a:10: 6e:a0:75:59:f9:1d:6e:e4:d0:81:e3:e2:f2:e7:3a:8b:0a:c0: ea:e4:27:56:d1:84:16:57:83:5e:6c:41:5d:08:d2:59:14:63: 19:92:2f:1d:11:b6:cf:c0:bf:c7:12:8f:41:b7:cd:97:ad:5c: 5d:80:52:aa:1a:c8:fc:7e:dd:03:93:e0:48:30:3c:6e:b5:eb: d4:1f:2b:4b:ef:68:6a:70:7f:a8:08:ff:5b:6a:25:36:5a:4c: ab:f5:26:0a:eb:40:6c:f0:a2:75:db:ef:39:cf:c2:e6:0d:92: ce:a0:82:d4:01:03:dd:92:50:25:09:80:f6:91:25:94:26:9e: c9:57:0a:67:af:73:0b:41:b3:a3:c4:c0:06:c9:08:ed:61:38: 7e:ec:fa:ac -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD/cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5RUIzQzBDNTFGOTFC MDg0NEYwMjA0MjI0NDZCNDE0Q0QzRURBRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrRa1N9fil5FpGfB6gP8naEIYA049DxyRZCDNw1/3mXLjn0oJr VdieUtGBpy2+h+VcNT8O1mDzm6dp8eIth0G7uxp9UWl+xHEZmxyuA/2Ncn/zTj6G fC6Cs6fyMPGyYH/JsGd70LWiiswY569OlBg9wWwRXlROvm8T+7QYk6zCfbf4qYiJ Os6ZuVWecOJVnvnK6l5gGCcvS1TZ5VVww40ph+R2etxl3wmC88JcUPkRZtFV8+T0 kbz68z2Q+p/+DUusGFYJoz3xMd/eGAj0VGS3nzqh3hhGrENrvwznzmtQ6IrxVegC oJsjZzmUadn3I0pwJIjxjqADZuFq3bLBFF2BAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUies8DFH5GwhE8CBCJEa0FM0+2uUwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvaWVzOERGSDVHd2hFOENCQ0pFYTBG TTAtMnVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhtg7DAN BgkqhkiG9w0BAQsFAAOCAQEAYlc2B5REAbZb2LOV60xj7SVB4oTt75/l3JIWFJjX ERcGtz48+te2txJpU3GzV/bRHAn44KacUlwPwsnrCoElbllauJDgy9TUiAgcAJ6n 3gKfXT45iRzIGfPp14+UzAkVoKWX5qZrR30EfZoQbqB1WfkdbuTQgePi8uc6iwrA 6uQnVtGEFleDXmxBXQjSWRRjGZIvHRG2z8C/xxKPQbfNl61cXYBSqhrI/H7dA5Pg SDA8brXr1B8rS+9oanB/qAj/W2olNlpMq/UmCutAbPCiddvvOc/C5g2SzqCC1AED 3ZJQJQmA9pEllCaeyVcKZ69zC0Gzo8TABskI7WE4fuz6rA== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org