$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/qTCiCEpFwfQLJeBFl5f2VY1j-lE.roa File: qTCiCEpFwfQLJeBFl5f2VY1j-lE.roa (raw, json) Hash identifier: 6aiiSmi/Nlht3tAQBpYdkC+BP4SXlx4BaW8tmgw8P9E= Subject key identifier: A9:30:A2:08:4A:45:C1:F4:0B:25:E0:45:97:97:F6:55:8D:63:FA:51 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0FFB Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/qTCiCEpFwfQLJeBFl5f2VY1j-lE.roa Signing time: Mon 26 Aug 2024 05:13:16 +0000 ROA not before: Mon 26 Aug 2024 05:13:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 113.61.128.0/17 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4091 (0xffb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A930A2084A45C1F40B25E0459797F6558D63FA51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:2c:9f:9f:20:ed:3c:ce:d5:3d:23:f7:aa:6a: 38:86:22:c1:c1:3b:30:41:01:5f:15:12:4a:39:f3: 37:6f:7b:fc:00:81:a0:51:24:5e:7d:26:38:ec:09: 2a:4e:34:23:02:94:4e:46:24:5e:6a:96:9c:72:40: 23:53:ca:14:48:30:36:01:d1:de:9c:15:44:86:98: 4e:c1:e5:05:ef:d9:e9:7f:2f:46:1e:33:01:fe:32: d4:aa:75:33:03:02:54:a0:61:66:d7:b4:6d:a0:4c: 64:f3:f4:16:7a:aa:64:09:a1:d1:13:93:c5:26:2e: a8:b1:bc:4f:34:35:64:a0:c1:8a:6e:33:66:51:c7: ae:0a:66:58:26:13:4f:ee:5a:a0:9a:f8:75:47:56: 4a:59:83:63:42:fd:9e:0f:21:8c:2a:f4:cf:9a:be: 05:35:49:05:ef:6e:2d:d8:a5:55:7b:85:09:eb:27: 9d:24:e0:ea:1c:84:0d:a3:9a:bc:65:8c:d7:16:06: b4:36:d9:64:21:30:45:af:1a:a0:e1:91:4f:72:ec: fd:79:f0:2c:57:ef:24:2b:e1:83:a8:94:0a:36:e8: 40:46:66:c0:a0:97:5a:ba:50:96:c7:4a:fc:e1:e1: 57:47:14:d7:e3:d0:fb:d0:87:ba:5c:3c:83:ff:13: 4a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:30:A2:08:4A:45:C1:F4:0B:25:E0:45:97:97:F6:55:8D:63:FA:51 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/qTCiCEpFwfQLJeBFl5f2VY1j-lE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.128.0/17 Signature Algorithm: sha256WithRSAEncryption 07:bf:b9:f7:5a:6b:1b:42:30:c9:fc:79:d9:5a:22:3c:f5:51: ee:44:45:6c:6a:e4:66:66:ac:48:10:13:c4:d7:5f:87:f7:6d: a9:85:ed:ef:b5:1e:a7:66:9d:60:2a:7d:20:1b:a5:4c:11:60: 60:73:50:c8:77:e7:bd:90:1f:dc:c8:0d:da:19:1a:6f:68:11: 17:7e:b2:dd:6f:96:1b:82:3b:1a:5d:b3:bf:7c:34:d8:9a:32: e5:17:65:06:3c:53:6c:36:92:f4:32:c9:36:9e:66:e4:93:13: 63:e8:85:d9:ff:15:49:da:f6:97:bc:3d:45:7e:66:20:ff:c2: da:f0:f7:0a:64:30:bb:48:87:ba:6a:a4:c2:f6:6e:9c:1f:b4: 64:27:58:c2:85:4a:52:b7:5c:d9:bb:e7:fd:dc:0f:48:31:9f: 2b:50:fb:ac:c6:b1:c0:47:4e:48:48:dc:0c:4b:15:da:c0:a9: 10:62:7a:15:62:df:f4:f2:ba:ec:e9:9a:b9:8b:c9:c1:36:f4: 64:fe:36:51:ad:56:46:5a:81:b9:b5:0f:17:de:b4:2e:92:70: 27:e7:67:ef:d0:68:34:c2:bb:63:71:b4:76:99:a0:95:19:b7: e5:b6:66:18:4b:a3:ce:85:2a:86:c1:3b:b7:a2:60:c6:cb:92: b8:6f:bf:a1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICD/swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE5MzBBMjA4NEE0NUMx RjQwQjI1RTA0NTk3OTdGNjU1OEQ2M0ZBNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbLJ+fIO08ztU9I/eqajiGIsHBOzBBAV8VEko58zdve/wAgaBR JF59JjjsCSpONCMClE5GJF5qlpxyQCNTyhRIMDYB0d6cFUSGmE7B5QXv2el/L0Ye MwH+MtSqdTMDAlSgYWbXtG2gTGTz9BZ6qmQJodETk8UmLqixvE80NWSgwYpuM2ZR x64KZlgmE0/uWqCa+HVHVkpZg2NC/Z4PIYwq9M+avgU1SQXvbi3YpVV7hQnrJ50k 4OochA2jmrxljNcWBrQ22WQhMEWvGqDhkU9y7P158CxX7yQr4YOolAo26EBGZsCg l1q6UJbHSvzh4VdHFNfj0PvQh7pcPIP/E0ohAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUqTCiCEpFwfQLJeBFl5f2VY1j+lEwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvcVRDaUNFcEZ3ZlFMSmVCRmw1ZjJW WTFqLWxFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3E9gDAN BgkqhkiG9w0BAQsFAAOCAQEAB7+591prG0Iwyfx52VoiPPVR7kRFbGrkZmasSBAT xNdfh/dtqYXt77Uep2adYCp9IBulTBFgYHNQyHfnvZAf3MgN2hkab2gRF36y3W+W G4I7Gl2zv3w02Joy5RdlBjxTbDaS9DLJNp5m5JMTY+iF2f8VSdr2l7w9RX5mIP/C 2vD3CmQwu0iHumqkwvZunB+0ZCdYwoVKUrdc2bvn/dwPSDGfK1D7rMaxwEdOSEjc DEsV2sCpEGJ6FWLf9PK67OmauYvJwTb0ZP42Ua1WRlqBubUPF960LpJwJ+dn79Bo NMK7Y3G0dpmglRm35bZmGEujzoUqhsE7t6JgxsuSuG+/oQ== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org