$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/pM7w39h7tLztW-Ogh5WOEOJwm7M.roa File: pM7w39h7tLztW-Ogh5WOEOJwm7M.roa (raw, json) Hash identifier: u0/9S8UV/rRlx+DJbmqeEvrRJ+fvBsWi4n2Q6Gq5vU4= Subject key identifier: A4:CE:F0:DF:D8:7B:B4:BC:ED:5B:E3:A0:87:95:8E:10:E2:70:9B:B3 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E3C Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pM7w39h7tLztW-Ogh5WOEOJwm7M.roa Signing time: Fri 01 Sep 2023 08:49:27 +0000 ROA not before: Fri 01 Sep 2023 08:49:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 121.254.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3644 (0xe3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:27 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A4CEF0DFD87BB4BCED5BE3A087958E10E2709BB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f3:47:14:e7:a2:35:1a:72:b7:ee:b0:22:7d: 13:0d:b1:e2:67:54:ba:e5:b7:39:78:37:b3:03:ff: f5:83:7a:8f:0f:ca:ae:0f:d4:53:37:d9:de:cd:25: cf:7d:1d:c8:10:e3:93:a9:7e:64:5f:2d:48:65:80: cf:f8:3a:72:58:57:71:a9:cf:b8:c5:56:5b:df:d3: fb:03:a4:f5:17:96:a8:dc:26:d6:70:ad:6e:d8:c4: 14:76:fb:71:e6:96:dd:fb:9d:9a:87:65:66:c4:8b: f1:9e:da:19:cb:15:5e:fb:9c:18:1d:39:c5:39:53: f3:1b:e9:ae:f3:88:97:3d:38:15:c3:72:63:40:6f: a0:de:27:bf:d1:53:ff:e8:76:47:e3:21:f3:2c:d7: ee:04:db:fa:51:82:bb:6a:77:12:b4:a2:62:29:9f: 12:93:cb:72:78:51:7c:5a:af:0a:0d:5c:8f:13:3a: 55:b9:eb:ac:93:c9:b1:f2:3a:47:c0:df:1d:0a:09: 6c:67:1f:e5:05:1f:b2:3d:09:03:f9:4c:16:6a:45: dd:ad:88:05:13:43:b7:c0:fb:97:75:3f:06:47:64: 2d:09:1e:7d:15:76:02:38:a3:da:23:6d:cc:bd:d5: e7:f6:19:48:a5:5b:08:98:68:a0:95:24:3b:cd:1e: 08:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:CE:F0:DF:D8:7B:B4:BC:ED:5B:E3:A0:87:95:8E:10:E2:70:9B:B3 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pM7w39h7tLztW-Ogh5WOEOJwm7M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.254.64.0/18 Signature Algorithm: sha256WithRSAEncryption 1b:ce:e6:d4:3b:35:2d:32:fa:30:fe:6b:88:35:68:8f:df:23: fd:0a:43:c9:1c:7e:37:ff:30:86:95:90:b9:8f:d6:2c:4e:5c: 58:58:ed:e3:64:f9:b1:4d:a5:5d:74:5e:e9:60:c0:05:41:33: 49:2e:c6:03:3e:55:e5:30:3d:fb:a4:7d:3a:25:45:6c:89:98: e1:40:53:32:02:f8:6d:19:db:aa:f4:24:5f:7c:04:e0:da:54: a6:72:36:ec:35:95:70:a1:b5:8b:58:81:c0:9e:c1:d6:b0:ff: b5:b4:7c:e9:ad:69:b0:f4:40:64:53:77:67:52:6a:0f:37:df: 7e:65:7e:55:bc:c8:b6:23:fb:83:3b:46:63:fa:35:a4:4c:74: a5:8b:95:72:48:20:0b:84:e3:f8:20:67:e1:7b:8e:c7:20:1f: c0:68:e2:ca:68:ea:1d:27:2e:08:53:8d:81:de:74:e2:88:f5: ed:9e:31:bc:bd:b8:0e:9f:fc:d2:a0:14:a2:78:95:38:ab:b1: a0:5c:d1:20:ab:6c:18:05:fd:ba:80:8a:fd:15:1e:fa:e7:96: 80:96:4e:ac:ad:4a:03:ea:ce:27:50:cd:f2:93:de:0d:60:38: d1:f2:e2:5d:d3:10:fb:b0:cf:19:fc:ff:bf:d4:35:92:f4:e4: 16:4d:12:ac -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDjwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE0Q0VGMERGRDg3QkI0 QkNFRDVCRTNBMDg3OTU4RTEwRTI3MDlCQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC680cU56I1GnK37rAifRMNseJnVLrltzl4N7MD//WDeo8Pyq4P 1FM32d7NJc99HcgQ45OpfmRfLUhlgM/4OnJYV3Gpz7jFVlvf0/sDpPUXlqjcJtZw rW7YxBR2+3Hmlt37nZqHZWbEi/Ge2hnLFV77nBgdOcU5U/Mb6a7ziJc9OBXDcmNA b6DeJ7/RU//odkfjIfMs1+4E2/pRgrtqdxK0omIpnxKTy3J4UXxarwoNXI8TOlW5 66yTybHyOkfA3x0KCWxnH+UFH7I9CQP5TBZqRd2tiAUTQ7fA+5d1PwZHZC0JHn0V dgI4o9ojbcy91ef2GUilWwiYaKCVJDvNHggfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUpM7w39h7tLztW+Ogh5WOEOJwm7MwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvcE03dzM5aDd0THp0Vy1PZ2g1V09F T0p3bTdNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnn+QDAN BgkqhkiG9w0BAQsFAAOCAQEAG87m1Ds1LTL6MP5riDVoj98j/QpDyRx+N/8whpWQ uY/WLE5cWFjt42T5sU2lXXRe6WDABUEzSS7GAz5V5TA9+6R9OiVFbImY4UBTMgL4 bRnbqvQkX3wE4NpUpnI27DWVcKG1i1iBwJ7B1rD/tbR86a1psPRAZFN3Z1JqDzff fmV+VbzItiP7gztGY/o1pEx0pYuVckggC4Tj+CBn4XuOxyAfwGjiymjqHScuCFON gd504oj17Z4xvL24Dp/80qAUoniVOKuxoFzRIKtsGAX9uoCK/RUe+ueWgJZOrK1K A+rOJ1DN8pPeDWA40fLiXdMQ+7DPGfz/v9Q1kvTkFk0SrA== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org