$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/jF0HJjUDT6Bp4AfZHS4eb-bJhto.roa File: jF0HJjUDT6Bp4AfZHS4eb-bJhto.roa (raw, json) Hash identifier: v8wExkwdLep66sQ9rCQpwdNwmAOm17KzRsuKUIbOTuE= Subject key identifier: 8C:5D:07:26:35:03:4F:A0:69:E0:07:D9:1D:2E:1E:6F:E6:C9:86:DA Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FF3 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/jF0HJjUDT6Bp4AfZHS4eb-bJhto.roa Signing time: Mon 26 Aug 2024 05:13:14 +0000 ROA not before: Mon 26 Aug 2024 05:13:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 27.96.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4083 (0xff3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8C5D072635034FA069E007D91D2E1E6FE6C986DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e6:d4:10:03:4c:a3:91:88:5e:05:79:85:84: 7f:2f:ee:5c:30:b4:6f:5c:c1:c9:0a:bc:d8:40:96: ba:1a:b8:9f:d0:85:28:b6:07:90:d2:58:66:0a:75: 1d:45:80:7f:ab:bc:c0:be:f8:2f:9f:b5:ed:44:2a: 4f:15:e6:4e:9e:06:28:64:6a:09:15:ad:24:3a:eb: 9f:d9:9b:cb:d0:00:10:58:02:11:98:7a:6a:3d:3f: a3:76:9a:f7:75:5a:87:d5:c7:13:95:d1:a0:40:4c: 7b:18:5a:90:2c:ce:04:0e:66:91:48:c0:0b:f8:ad: a9:e8:b9:d5:0a:c7:70:47:32:1a:4d:b3:8a:dc:a1: b0:29:0f:a5:aa:64:20:74:1c:9c:a1:36:3c:f6:a6: c9:0c:da:7e:fd:29:54:66:2d:44:b6:88:97:7d:3c: ec:94:e4:86:c2:5f:c5:0b:1a:25:79:b8:89:b4:dd: ad:38:05:83:39:61:2f:b4:cc:9f:90:57:d7:a8:59: 33:bc:96:9d:12:3e:54:e3:a8:0b:b3:d6:10:5a:c1: 25:4c:65:e2:f8:23:b9:49:0d:58:fd:ec:55:dd:c9: c3:75:de:cb:c7:c7:63:6f:69:5f:f1:d9:b5:ec:94: d6:6e:9a:be:aa:e3:93:1b:e6:29:fc:36:c1:fc:b2: 95:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:5D:07:26:35:03:4F:A0:69:E0:07:D9:1D:2E:1E:6F:E6:C9:86:DA X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/jF0HJjUDT6Bp4AfZHS4eb-bJhto.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.232.0/22 Signature Algorithm: sha256WithRSAEncryption 84:e3:d7:f7:83:d9:c3:3e:07:3f:2a:b4:e0:b2:1e:50:90:4e: 5a:c0:86:35:6e:70:3d:12:80:c7:6a:f2:83:42:86:cf:b9:14: fd:ad:2d:ba:66:c2:9c:f6:65:e6:aa:ee:dc:bf:23:ff:57:e2: a4:f0:f6:db:35:c8:e4:cd:9c:cb:b9:9f:43:de:99:2f:a2:6e: 2c:14:6e:3b:18:6f:db:c2:2e:60:17:88:1f:08:d1:7f:49:2a: 6f:a8:ca:18:15:76:f6:90:f8:d7:9e:94:29:4c:42:6f:ed:0d: 58:c5:92:66:fb:86:6e:0a:a2:bb:fa:fb:c2:40:3f:f7:cf:88: 26:cd:c5:5f:90:7b:3a:b8:af:b7:84:94:10:78:67:d5:d7:ca: f4:0f:19:00:a4:e3:69:4d:ff:4b:ce:ce:33:b0:c2:a9:01:3c: b5:d8:ff:d6:4c:36:52:c5:96:eb:f3:99:70:67:8e:0d:98:e4: 1b:25:09:a8:e3:62:eb:29:77:8a:a1:ca:19:92:90:c7:58:f7: f2:9b:84:37:64:94:24:c7:ab:76:cf:02:b9:58:d7:30:c8:9a: f5:14:6d:85:8b:83:5f:09:62:ec:90:6c:4a:0c:c7:87:e3:2a: 33:9c:f8:ce:cf:be:df:94:17:f7:df:d1:15:c0:fa:7b:1d:be: aa:db:97:a1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD/MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDNUQwNzI2MzUwMzRG QTA2OUUwMDdEOTFEMkUxRTZGRTZDOTg2REEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr5tQQA0yjkYheBXmFhH8v7lwwtG9cwckKvNhAlroauJ/QhSi2 B5DSWGYKdR1FgH+rvMC++C+fte1EKk8V5k6eBihkagkVrSQ665/Zm8vQABBYAhGY emo9P6N2mvd1WofVxxOV0aBATHsYWpAszgQOZpFIwAv4ranoudUKx3BHMhpNs4rc obApD6WqZCB0HJyhNjz2pskM2n79KVRmLUS2iJd9POyU5IbCX8ULGiV5uIm03a04 BYM5YS+0zJ+QV9eoWTO8lp0SPlTjqAuz1hBawSVMZeL4I7lJDVj97FXdycN13svH x2NvaV/x2bXslNZumr6q45Mb5in8NsH8spUTAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUjF0HJjUDT6Bp4AfZHS4eb+bJhtowHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvakYwSEpqVURUNkJwNEFmWkhTNGVi LWJKaHRvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhtg6DAN BgkqhkiG9w0BAQsFAAOCAQEAhOPX94PZwz4HPyq04LIeUJBOWsCGNW5wPRKAx2ry g0KGz7kU/a0tumbCnPZl5qru3L8j/1fipPD22zXI5M2cy7mfQ96ZL6JuLBRuOxhv 28IuYBeIHwjRf0kqb6jKGBV29pD4156UKUxCb+0NWMWSZvuGbgqiu/r7wkA/98+I Js3FX5B7Orivt4SUEHhn1dfK9A8ZAKTjaU3/S87OM7DCqQE8tdj/1kw2UsWW6/OZ cGeODZjkGyUJqONi6yl3iqHKGZKQx1j38puEN2SUJMerds8CuVjXMMia9RRthYuD Xwli7JBsSgzHh+MqM5z4zs++35QX99/RFcD6ex2+qtuXoQ== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org