$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/nLpzbhbeXBk6O45DbvMH4Olu6BQ.roa File: nLpzbhbeXBk6O45DbvMH4Olu6BQ.roa (raw, json) Hash identifier: LpwMtXXF4KAqx1nF5cNkmoLLzZg9j0/P+9PydLO/rcA= Subject key identifier: 9C:BA:73:6E:16:DE:5C:19:3A:3B:8E:43:6E:F3:07:E0:E9:6E:E8:14 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E38 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/nLpzbhbeXBk6O45DbvMH4Olu6BQ.roa Signing time: Fri 01 Sep 2023 08:49:25 +0000 ROA not before: Fri 01 Sep 2023 08:49:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 210.209.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3640 (0xe38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9CBA736E16DE5C193A3B8E436EF307E0E96EE814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:20:05:13:e0:ea:95:17:a9:aa:35:5e:58:55: 20:42:d4:1f:e5:ae:04:f1:3a:53:8f:02:d7:80:2e: 1f:1f:59:22:70:7c:43:c4:3e:b7:ac:3b:9f:18:46: 01:18:da:2f:32:12:43:ac:f1:57:45:16:f6:a0:6f: 7b:68:ed:62:e8:35:c1:27:a6:b9:d3:c9:97:c3:ee: f3:89:d5:93:69:86:34:82:19:94:ea:b0:b6:b2:4a: fa:f5:02:8a:dd:12:28:f9:9e:98:51:2c:58:05:5e: e6:69:a5:a5:e9:8e:78:35:2b:9d:62:91:09:e1:32: 4f:a6:25:26:db:d4:de:9d:a2:3d:ad:d5:53:87:a8: 97:f4:f9:ac:90:02:7f:45:70:22:58:19:90:79:2e: 32:cd:41:50:fb:8b:63:61:0d:a8:ab:35:96:be:47: fc:04:a6:7d:15:73:61:9e:e2:e4:7e:fe:b0:c2:4a: 22:6a:76:89:e2:ee:74:04:b7:a5:1d:33:32:e4:13: f5:38:17:6c:16:82:bf:65:b3:63:7e:1c:b0:6d:a9: c6:92:aa:87:e8:78:73:05:f2:0f:3b:cb:0d:8f:4e: 8a:d7:bc:3d:de:0f:60:47:a3:77:a0:de:d7:bf:69: 99:40:7d:de:6a:6f:2a:f8:ec:86:4b:bf:c2:44:2e: f9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BA:73:6E:16:DE:5C:19:3A:3B:8E:43:6E:F3:07:E0:E9:6E:E8:14 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/nLpzbhbeXBk6O45DbvMH4Olu6BQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.209.192.0/19 Signature Algorithm: sha256WithRSAEncryption 98:30:c2:62:ff:45:38:bc:d2:3b:b8:3f:5d:a9:ec:e2:b3:e8: 9f:f1:5d:63:46:dd:df:cf:af:bd:42:ee:61:ef:96:6d:f7:3a: c7:fe:cc:46:72:15:7b:49:eb:8e:e5:f9:9b:1d:df:de:83:b4: 57:4f:b8:7e:82:84:45:d5:80:d0:04:d6:cc:9e:b7:5a:1f:ab: 55:7a:df:64:f2:44:b2:0a:59:79:2e:d5:5d:f7:ff:ff:60:17: 3d:db:3a:f4:1f:79:35:07:1d:5c:d1:05:73:0c:13:59:e0:51: ce:49:5c:63:d8:d4:24:fc:f4:20:2a:fd:af:30:5a:27:e4:39: 32:41:3f:f4:ed:01:7d:b3:62:86:82:49:46:f0:d6:9b:f8:47: 83:a5:25:ab:ab:7e:44:5d:83:b0:0d:e3:0f:32:5a:9c:f2:6c: d2:b4:4d:fb:f5:d9:ac:29:5a:ad:16:4b:01:76:6f:63:45:b8: 07:cc:a0:7f:25:bb:e8:64:da:9d:07:01:35:43:a5:d6:6f:64: 1b:09:61:ad:8a:23:f1:99:4c:86:7c:04:02:f2:46:5d:63:00: 29:fc:1c:ee:ea:0c:f6:8a:f8:43:a9:33:db:8d:a0:90:10:d9: 44:96:70:cf:d4:df:a3:ba:e7:7d:31:93:63:2f:42:b2:08:30: b3:00:0e:6c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDjgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlDQkE3MzZFMTZERTVD MTkzQTNCOEU0MzZFRjMwN0UwRTk2RUU4MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCXIAUT4OqVF6mqNV5YVSBC1B/lrgTxOlOPAteALh8fWSJwfEPE PresO58YRgEY2i8yEkOs8VdFFvagb3to7WLoNcEnprnTyZfD7vOJ1ZNphjSCGZTq sLaySvr1AordEij5nphRLFgFXuZppaXpjng1K51ikQnhMk+mJSbb1N6doj2t1VOH qJf0+ayQAn9FcCJYGZB5LjLNQVD7i2NhDairNZa+R/wEpn0Vc2Ge4uR+/rDCSiJq doni7nQEt6UdMzLkE/U4F2wWgr9ls2N+HLBtqcaSqofoeHMF8g87yw2PTorXvD3e D2BHo3eg3te/aZlAfd5qbyr47IZLv8JELvm1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUnLpzbhbeXBk6O45DbvMH4Olu6BQwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvbkxwemJoYmVYQms2TzQ1RGJ2TUg0 T2x1NkJRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdLRwDAN BgkqhkiG9w0BAQsFAAOCAQEAmDDCYv9FOLzSO7g/Xans4rPon/FdY0bd38+vvULu Ye+Wbfc6x/7MRnIVe0nrjuX5mx3f3oO0V0+4foKERdWA0ATWzJ63Wh+rVXrfZPJE sgpZeS7VXff//2AXPds69B95NQcdXNEFcwwTWeBRzklcY9jUJPz0ICr9rzBaJ+Q5 MkE/9O0BfbNihoJJRvDWm/hHg6Ulq6t+RF2DsA3jDzJanPJs0rRN+/XZrClarRZL AXZvY0W4B8ygfyW76GTanQcBNUOl1m9kGwlhrYoj8ZlMhnwEAvJGXWMAKfwc7uoM 9or4Q6kz242gkBDZRJZwz9Tfo7rnfTGTYy9CsggwswAObA== -----END CERTIFICATE-----Generated at Mon Jun 3 06:07:08 2024 by rpki-client on console-ams.rpki-client.org