$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/qEBp0Lz4ESK216ZUf_MFcTHsUqY.roa File: qEBp0Lz4ESK216ZUf_MFcTHsUqY.roa (raw, json) Hash identifier: DX+xE2LzaLgM3QB5LoIQ76rFrXxYeLpDR+B+AiCS8jI= Subject key identifier: A8:40:69:D0:BC:F8:11:22:B6:D7:A6:54:7F:F3:05:71:31:EC:52:A6 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1013 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/qEBp0Lz4ESK216ZUf_MFcTHsUqY.roa Signing time: Mon 26 Aug 2024 05:13:21 +0000 ROA not before: Mon 26 Aug 2024 05:13:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 27.96.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4115 (0x1013) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A84069D0BCF81122B6D7A6547FF3057131EC52A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1b:b6:57:c9:42:e8:c4:99:f6:37:ec:45:fd: 05:ea:69:79:e9:53:8d:97:ec:6d:2f:c9:58:44:e5: 17:17:79:5e:c3:1e:74:36:f4:93:36:db:fc:8b:61: 7c:1a:73:0b:60:d5:83:06:7d:d5:7d:da:2d:cb:7f: 7b:3d:07:d7:12:b5:11:c0:3f:00:e8:48:aa:a2:50: 0b:49:e2:b6:54:47:b9:f1:8e:b7:4e:27:d1:da:18: 08:05:f4:f5:b1:29:98:b2:55:86:03:16:e7:0a:32: 83:40:b2:13:74:5a:23:f5:c4:08:8b:52:0b:9e:c5: f8:4d:32:33:67:24:a3:e7:95:f8:c0:ab:2a:9d:fa: d6:27:c4:c0:cc:fa:36:df:00:fc:15:0c:57:75:36: e8:2e:b7:c2:fb:7d:3b:41:fd:99:1c:54:ea:8c:2e: 91:6b:34:bf:35:31:9c:e2:df:20:5c:ec:0a:7e:e0: 24:ee:1d:9f:b9:88:c9:ff:9d:ae:86:b6:1e:d8:a6: f2:e1:7c:0c:52:bb:3b:0c:f3:a2:e7:cc:05:5d:09: 02:e9:81:2e:91:72:d9:b7:43:1f:1f:c1:c4:f6:ae: 9c:c6:9a:20:d5:c7:38:8a:30:14:19:77:a8:f1:4f: 61:a6:5e:a2:78:8f:63:63:2e:03:d0:e1:a9:81:5f: 71:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:40:69:D0:BC:F8:11:22:B6:D7:A6:54:7F:F3:05:71:31:EC:52:A6 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/qEBp0Lz4ESK216ZUf_MFcTHsUqY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.232.0/21 Signature Algorithm: sha256WithRSAEncryption b0:1d:6c:a8:fc:bb:f8:57:11:23:27:b0:d5:38:fa:27:2a:76: 92:c3:3d:b8:09:3e:40:98:6d:e6:3f:26:b6:5d:39:26:37:64: 75:fe:43:c2:dd:90:e5:8d:43:b1:df:7c:bf:35:a3:44:77:95: e1:62:f8:80:31:6a:35:de:8c:6e:04:07:16:33:6e:64:5d:bc: 3f:a4:26:a4:d5:42:f0:49:d7:ee:1d:df:59:c0:4d:5b:8f:d8: ca:b6:21:83:37:6b:e1:eb:31:f3:23:c6:2f:29:56:51:40:bc: 7e:d6:ec:7f:dc:5e:60:f0:fc:7c:4b:a1:60:40:44:1f:64:9d: 84:5e:91:39:7c:5b:25:c4:c8:a8:e9:d9:55:10:c1:f2:d1:52: 87:3c:5b:fa:7d:65:22:5b:ee:07:5e:bf:3a:9b:61:31:6d:61: e5:86:f8:bd:ce:7b:1f:fb:f2:f9:d2:31:24:80:6f:d3:65:71: aa:ad:e4:a0:06:6b:4a:88:b5:25:0c:19:6a:ef:7f:c5:34:48: 33:19:32:9e:ca:15:17:f9:b5:fd:ea:2f:e6:25:77:8b:63:20: af:ff:c0:f0:0b:1c:be:4d:6c:1e:b6:a8:63:4b:9d:e6:0e:75: e0:7e:0f:aa:3a:d0:5c:63:82:11:bd:05:6d:c6:74:fc:11:f9: 30:5b:9c:8c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4NDA2OUQwQkNGODEx MjJCNkQ3QTY1NDdGRjMwNTcxMzFFQzUyQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDG7ZXyULoxJn2N+xF/QXqaXnpU42X7G0vyVhE5RcXeV7DHnQ2 9JM22/yLYXwacwtg1YMGfdV92i3Lf3s9B9cStRHAPwDoSKqiUAtJ4rZUR7nxjrdO J9HaGAgF9PWxKZiyVYYDFucKMoNAshN0WiP1xAiLUguexfhNMjNnJKPnlfjAqyqd +tYnxMDM+jbfAPwVDFd1Nugut8L7fTtB/ZkcVOqMLpFrNL81MZzi3yBc7Ap+4CTu HZ+5iMn/na6Gth7YpvLhfAxSuzsM86LnzAVdCQLpgS6Rctm3Qx8fwcT2rpzGmiDV xziKMBQZd6jxT2GmXqJ4j2NjLgPQ4amBX3GNAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUqEBp0Lz4ESK216ZUf/MFcTHsUqYwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvcUVCcDBMejRFU0syMTZaVWZfTUZj VEhzVXFZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAxtg6DAN BgkqhkiG9w0BAQsFAAOCAQEAsB1sqPy7+FcRIyew1Tj6Jyp2ksM9uAk+QJht5j8m tl05Jjdkdf5Dwt2Q5Y1Dsd98vzWjRHeV4WL4gDFqNd6MbgQHFjNuZF28P6QmpNVC 8EnX7h3fWcBNW4/YyrYhgzdr4esx8yPGLylWUUC8ftbsf9xeYPD8fEuhYEBEH2Sd hF6ROXxbJcTIqOnZVRDB8tFShzxb+n1lIlvuB16/OpthMW1h5Yb4vc57H/vy+dIx JIBv02Vxqq3koAZrSoi1JQwZau9/xTRIMxkynsoVF/m1/eov5iV3i2Mgr//A8Asc vk1sHraoY0ud5g514H4PqjrQXGOCEb0FbcZ0/BH5MFucjA== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org