$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/p3DLlUznYjZ05nhqGaFVQ2OVls0.roa File: p3DLlUznYjZ05nhqGaFVQ2OVls0.roa (raw, json) Hash identifier: K4A4BIDsT3R5WSSfW0SH9DdakpZGpIHRWHQge92bkPI= Subject key identifier: A7:70:CB:95:4C:E7:62:36:74:E6:78:6A:19:A1:55:43:63:95:96:CD Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1004 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/p3DLlUznYjZ05nhqGaFVQ2OVls0.roa Signing time: Mon 26 Aug 2024 05:13:18 +0000 ROA not before: Mon 26 Aug 2024 05:13:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 182.155.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4100 (0x1004) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A770CB954CE7623674E6786A19A15543639596CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a9:06:62:47:dc:a2:96:d7:16:ef:d0:4c:73: e2:8d:28:37:b4:a5:34:d1:d2:8b:ee:ff:fb:6f:63: 0a:6f:2d:74:c7:e9:d8:48:a2:4e:b1:70:aa:8c:fd: 2b:8b:48:b7:2b:60:46:74:d8:6a:d2:fa:b9:63:8d: f7:77:4c:2c:a8:03:3a:e1:56:37:4b:07:df:3e:d9: de:27:60:d3:c4:f8:95:52:38:cd:3a:d9:d1:7d:a5: b3:16:41:07:79:80:bd:16:2e:4e:5b:2e:a9:0b:88: ab:e3:ba:44:eb:98:51:27:eb:7e:ea:b6:55:ad:58: 21:ad:b4:ec:93:64:18:a4:71:71:f6:67:bc:b2:a3: 15:71:ce:78:87:d4:13:1a:07:3f:84:65:e9:bf:7b: c7:e5:17:89:93:03:4c:21:05:ef:c8:8f:00:d0:6b: 77:1a:b6:c6:c4:77:e0:20:b0:e1:0a:51:65:38:97: 76:4b:79:dd:a9:79:98:b1:3c:61:af:51:59:40:ab: 6d:0c:86:73:83:20:bb:6d:c3:7d:f1:7a:9c:a1:2f: 90:a1:83:0a:b4:6f:46:e6:51:1e:06:26:2f:77:c3: d6:9a:57:fe:88:d6:f6:0c:4a:1f:db:50:42:38:68: 4f:d8:32:2d:77:85:da:a0:09:0c:16:60:96:5a:84: 3c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:70:CB:95:4C:E7:62:36:74:E6:78:6A:19:A1:55:43:63:95:96:CD X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/p3DLlUznYjZ05nhqGaFVQ2OVls0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.128.0/19 Signature Algorithm: sha256WithRSAEncryption 0e:db:7d:ee:07:77:35:f9:ff:94:b7:92:5c:a8:8a:4e:38:3c: 14:f3:53:ef:4f:92:85:43:62:80:91:86:6d:25:b5:18:f1:84: 3a:52:15:48:fb:73:71:e9:0e:24:58:69:8b:bd:43:2d:78:f1: 58:b7:c2:c7:d7:42:4d:39:9e:f8:fa:7b:e9:8c:5d:da:34:94: c8:37:af:85:bb:6c:a3:26:e1:f7:5d:ef:39:95:44:c0:e9:f0: ec:2f:08:4d:68:f7:28:ab:da:e8:bf:a2:0e:6e:db:6c:b2:1a: 5b:1a:a6:25:13:5e:55:34:c3:48:cc:1a:39:af:a2:d9:7c:74: b1:94:18:17:b3:08:56:e4:ec:9e:32:40:05:5c:4f:50:c9:62: 77:08:bf:34:02:18:96:d8:81:c3:25:f7:33:1c:11:9d:02:f2: 3b:33:49:65:07:e8:60:03:20:f7:53:21:3d:59:d0:86:20:3f: d0:03:44:5a:86:12:23:f7:12:41:4c:53:c9:48:5c:0b:50:bd: 23:3a:a1:18:94:d5:e0:5c:ba:6b:d4:a3:cb:62:c2:c4:86:ce: 97:44:eb:a9:73:f0:4e:44:a8:7c:93:30:34:76:ea:68:20:09: 3e:10:1d:bf:32:5f:e3:bd:da:0e:73:e3:0f:1d:7f:99:9b:82: 92:7d:44:c5 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEAQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3NzBDQjk1NENFNzYy MzY3NEU2Nzg2QTE5QTE1NTQzNjM5NTk2Q0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqqQZiR9yiltcW79BMc+KNKDe0pTTR0ovu//tvYwpvLXTH6dhI ok6xcKqM/SuLSLcrYEZ02GrS+rljjfd3TCyoAzrhVjdLB98+2d4nYNPE+JVSOM06 2dF9pbMWQQd5gL0WLk5bLqkLiKvjukTrmFEn637qtlWtWCGttOyTZBikcXH2Z7yy oxVxzniH1BMaBz+EZem/e8flF4mTA0whBe/IjwDQa3catsbEd+AgsOEKUWU4l3ZL ed2peZixPGGvUVlAq20MhnODILttw33xepyhL5Chgwq0b0bmUR4GJi93w9aaV/6I 1vYMSh/bUEI4aE/YMi13hdqgCQwWYJZahDyrAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUp3DLlUznYjZ05nhqGaFVQ2OVls0wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvcDNETGxVem5ZalowNW5ocUdhRlZR Mk9WbHMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabgDAN BgkqhkiG9w0BAQsFAAOCAQEADtt97gd3Nfn/lLeSXKiKTjg8FPNT70+ShUNigJGG bSW1GPGEOlIVSPtzcekOJFhpi71DLXjxWLfCx9dCTTme+Pp76Yxd2jSUyDevhbts oybh913vOZVEwOnw7C8ITWj3KKva6L+iDm7bbLIaWxqmJRNeVTTDSMwaOa+i2Xx0 sZQYF7MIVuTsnjJABVxPUMlidwi/NAIYltiBwyX3MxwRnQLyOzNJZQfoYAMg91Mh PVnQhiA/0ANEWoYSI/cSQUxTyUhcC1C9IzqhGJTV4Fy6a9Sjy2LCxIbOl0TrqXPw TkSofJMwNHbqaCAJPhAdvzJf473aDnPjDx1/mZuCkn1ExQ== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:36 2024 by rpki-client on console-fra.rpki-client.org