$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/kakSAxYXZMWx2VO38cPFA0Lpwic.roa File: kakSAxYXZMWx2VO38cPFA0Lpwic.roa (raw, json) Hash identifier: hFXB8V2hLv3Ur2NQAEvIuZ5T0q9+zFYbLMoo4jIxr7I= Subject key identifier: 91:A9:12:03:16:17:64:C5:B1:D9:53:B7:F1:C3:C5:03:42:E9:C2:27 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FE9 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/kakSAxYXZMWx2VO38cPFA0Lpwic.roa Signing time: Mon 26 Aug 2024 05:13:12 +0000 ROA not before: Mon 26 Aug 2024 05:13:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 182.155.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4073 (0xfe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=91A91203161764C5B1D953B7F1C3C50342E9C227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d2:39:d4:49:cd:6f:a3:2b:5a:b6:a4:3d:cc: f2:fb:2f:93:21:7d:d3:ca:66:5e:0d:1f:83:b3:6c: 69:f0:34:21:38:a6:34:7d:2b:1d:56:9e:40:07:db: e6:9b:e7:93:65:b7:b4:23:4a:f5:de:c8:ba:ff:ae: f4:0a:84:e4:27:c5:99:75:8f:58:63:30:95:cd:38: c4:4b:63:c3:18:e2:ac:14:03:e1:97:12:76:90:7c: 44:c0:55:41:1f:01:58:7b:d8:35:ca:48:34:ae:1a: 1a:0f:6b:b2:cd:f2:8f:87:d8:fd:7e:e4:7c:ae:b3: e5:c4:69:51:ca:c5:18:20:1b:29:40:36:40:7b:e1: 23:0a:48:8c:2c:f4:ef:17:d1:bd:39:9d:35:4c:0a: 49:c7:cd:ab:99:ec:8e:af:f8:1c:12:e2:09:1f:0c: 5e:51:83:38:4d:dd:b6:92:0e:72:40:92:0e:50:50: 8c:2d:00:ba:d0:f2:80:07:0e:6d:27:72:a8:3a:b7: 37:df:27:d1:b1:69:e6:6f:96:fa:ac:2c:b9:ae:ef: 1e:d6:e3:f6:a0:be:92:84:17:c0:a7:56:d2:33:1f: 39:d4:c3:e7:f4:40:84:f5:f1:00:e5:72:66:2b:ad: eb:4d:8b:22:cc:cb:41:0b:5a:59:52:5f:ee:7c:53: 5d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:A9:12:03:16:17:64:C5:B1:D9:53:B7:F1:C3:C5:03:42:E9:C2:27 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/kakSAxYXZMWx2VO38cPFA0Lpwic.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.128.0/18 Signature Algorithm: sha256WithRSAEncryption 1a:d8:b4:39:be:3e:b6:0e:d5:79:75:2f:f6:20:5c:12:bc:fd: a2:a6:f1:47:b7:41:3c:23:ad:b3:95:cf:7c:fa:b7:52:fa:9c: 5f:e7:ab:02:55:50:a1:48:4b:5d:cf:57:6a:5a:71:67:c1:c5: 8d:a6:43:eb:62:15:39:20:b3:d8:c4:a0:67:44:2f:8a:0b:82: 4a:61:98:61:81:b9:22:db:30:b5:f0:4f:b6:45:8b:a1:b9:07: 02:0a:1d:90:21:76:2f:12:19:c1:e6:91:b9:0b:aa:1c:7c:cc: 66:36:b1:62:d4:98:71:35:21:01:55:6b:30:37:fc:74:bb:38: 1a:49:05:f4:12:0b:e9:02:fa:6c:ce:b2:8b:a7:e4:9e:bd:5c: 04:a4:d8:81:27:11:da:bb:0d:2a:c2:fa:af:00:ee:62:6d:04: f1:4c:de:bc:bb:2a:3a:27:4d:44:80:8c:09:98:69:ab:2e:5b: 71:ee:89:06:31:90:94:61:d7:d7:5a:b3:3d:0a:84:6c:10:1f: 14:c4:b8:7f:8f:b5:93:94:a5:61:02:22:e6:29:7d:92:85:f0: 5f:2a:92:5c:1f:e5:4c:c4:50:54:20:fc:ef:98:2f:0c:23:4b: 04:20:fe:b7:8e:6b:26:6f:c4:4c:f3:59:b5:70:63:b3:9e:79: 46:92:c5:1d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD+kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkxQTkxMjAzMTYxNzY0 QzVCMUQ5NTNCN0YxQzNDNTAzNDJFOUMyMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+0jnUSc1voytatqQ9zPL7L5MhfdPKZl4NH4OzbGnwNCE4pjR9 Kx1WnkAH2+ab55Nlt7QjSvXeyLr/rvQKhOQnxZl1j1hjMJXNOMRLY8MY4qwUA+GX EnaQfETAVUEfAVh72DXKSDSuGhoPa7LN8o+H2P1+5Hyus+XEaVHKxRggGylANkB7 4SMKSIws9O8X0b05nTVMCknHzauZ7I6v+BwS4gkfDF5RgzhN3baSDnJAkg5QUIwt ALrQ8oAHDm0ncqg6tzffJ9GxaeZvlvqsLLmu7x7W4/agvpKEF8CnVtIzHznUw+f0 QIT18QDlcmYrretNiyLMy0ELWllSX+58U13DAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUkakSAxYXZMWx2VO38cPFA0LpwicwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgva2FrU0F4WVhaTVd4MlZPMzhjUEZB MExwd2ljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBrabgDAN BgkqhkiG9w0BAQsFAAOCAQEAGti0Ob4+tg7VeXUv9iBcErz9oqbxR7dBPCOts5XP fPq3UvqcX+erAlVQoUhLXc9XalpxZ8HFjaZD62IVOSCz2MSgZ0QviguCSmGYYYG5 ItswtfBPtkWLobkHAgodkCF2LxIZweaRuQuqHHzMZjaxYtSYcTUhAVVrMDf8dLs4 GkkF9BIL6QL6bM6yi6fknr1cBKTYgScR2rsNKsL6rwDuYm0E8UzevLsqOidNRICM CZhpqy5bce6JBjGQlGHX11qzPQqEbBAfFMS4f4+1k5SlYQIi5il9koXwXyqSXB/l TMRQVCD875gvDCNLBCD+t45rJm/ETPNZtXBjs555RpLFHQ== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org