$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/qoHbjvg1bwqJ8m2rzFQ7Hhqy-L0.roa File: qoHbjvg1bwqJ8m2rzFQ7Hhqy-L0.roa (raw, json) Hash identifier: W4h3ivxspaPAoQXH5CE4+dIptRucf9hZ/Ynxk8LP7Og= Subject key identifier: AA:81:DB:8E:F8:35:6F:0A:89:F2:6D:AB:CC:54:3B:1E:1A:B2:F8:BD Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E2B Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/qoHbjvg1bwqJ8m2rzFQ7Hhqy-L0.roa Signing time: Fri 01 Sep 2023 08:49:22 +0000 ROA not before: Fri 01 Sep 2023 08:49:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 113.61.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3627 (0xe2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AA81DB8EF8356F0A89F26DABCC543B1E1AB2F8BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e8:3c:f9:21:b3:c7:82:1c:a6:ff:af:49:e0: 6b:c9:36:91:45:0e:16:5f:69:95:29:a4:76:1b:b3: 69:12:7d:e1:b6:77:04:c7:7b:7b:f3:b1:12:6a:1c: ad:ed:ea:54:04:59:5e:db:8b:a0:0a:d6:f5:fa:76: 69:8c:cb:c7:cc:54:e9:a8:55:d0:70:0d:08:15:c2: 75:2f:35:12:eb:0a:82:14:50:7a:4a:67:46:fb:b3: fc:c0:6c:b0:d7:16:56:bd:c5:c8:88:2f:74:f4:2a: 0c:98:b3:b4:bb:ad:23:c9:a4:31:24:2b:bf:a3:ea: c5:cf:19:7b:f9:f4:54:62:6e:d7:d3:1e:56:f6:53: f4:36:dc:8b:83:e2:53:bd:16:7b:96:97:8c:5b:19: 11:62:d3:ea:42:97:51:ee:d3:85:a1:44:67:34:14: 77:6c:d8:76:0c:56:d4:d3:3f:dc:45:08:fe:44:20: 4b:78:f6:c1:e2:0d:4c:43:88:6e:82:ee:ad:c9:14: 36:8c:b8:12:43:80:92:bc:68:81:e9:7d:a7:84:cf: 5a:2c:65:d2:58:45:e0:40:01:1f:41:1a:5f:e3:1d: 5f:ac:72:36:4e:d8:13:1c:5b:74:6f:c4:38:f7:36: 39:f9:c6:55:03:78:3e:aa:af:d5:c5:ea:0c:ca:be: be:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:81:DB:8E:F8:35:6F:0A:89:F2:6D:AB:CC:54:3B:1E:1A:B2:F8:BD X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/qoHbjvg1bwqJ8m2rzFQ7Hhqy-L0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.128.0/19 Signature Algorithm: sha256WithRSAEncryption 0b:c1:e8:4f:38:b7:08:1c:b0:7b:f0:1e:55:bb:27:e9:37:be: 48:ba:78:f9:bc:0a:e5:bf:a0:36:f6:28:21:00:ca:6a:bb:60: be:12:08:e9:81:01:81:dd:e8:6c:d0:5b:08:55:4a:9d:5b:1a: f0:fb:7d:0d:33:06:c9:2f:7c:4a:f4:54:4b:23:0d:33:64:97: d0:02:49:df:7b:40:73:2f:cf:d0:d7:40:13:16:f4:d3:27:a1: bb:da:d2:a7:73:24:9c:15:d5:c1:c7:ba:58:1d:e7:bf:f3:32: 4c:7e:01:3b:30:12:de:ce:91:91:30:44:00:b0:fb:3f:75:f0: ba:c1:df:b7:1a:ae:d0:5f:6d:26:92:62:e1:b2:2e:bc:a3:85: 4c:23:da:d1:bc:fe:cb:38:f2:d4:a1:8e:5a:d8:49:50:4e:f3: 6b:a6:7b:22:01:19:ae:c8:42:e0:49:52:9d:94:01:65:f9:56: b0:f1:42:e5:61:b2:88:be:7e:35:37:15:9e:bd:c7:48:9d:99: 69:69:1d:69:88:0e:fb:86:d6:3d:32:e4:7f:62:ea:de:53:5e: 0e:a7:cf:bc:22:e7:c8:e1:0b:24:9c:35:de:85:6b:f6:12:b8: 12:aa:66:19:ee:a9:ef:1b:04:46:8d:11:e6:68:c5:66:4d:fd: 43:b8:6e:06 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDiswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFBODFEQjhFRjgzNTZG MEE4OUYyNkRBQkNDNTQzQjFFMUFCMkY4QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDk6Dz5IbPHghym/69J4GvJNpFFDhZfaZUppHYbs2kSfeG2dwTH e3vzsRJqHK3t6lQEWV7bi6AK1vX6dmmMy8fMVOmoVdBwDQgVwnUvNRLrCoIUUHpK Z0b7s/zAbLDXFla9xciIL3T0KgyYs7S7rSPJpDEkK7+j6sXPGXv59FRibtfTHlb2 U/Q23IuD4lO9FnuWl4xbGRFi0+pCl1Hu04WhRGc0FHds2HYMVtTTP9xFCP5EIEt4 9sHiDUxDiG6C7q3JFDaMuBJDgJK8aIHpfaeEz1osZdJYReBAAR9BGl/jHV+scjZO 2BMcW3RvxDj3Njn5xlUDeD6qr9XF6gzKvr7JAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUqoHbjvg1bwqJ8m2rzFQ7Hhqy+L0wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvcW9IYmp2ZzFid3FKOG0ycnpGUTdI aHF5LUwwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXE9gDAN BgkqhkiG9w0BAQsFAAOCAQEAC8HoTzi3CBywe/AeVbsn6Te+SLp4+bwK5b+gNvYo IQDKartgvhII6YEBgd3obNBbCFVKnVsa8Pt9DTMGyS98SvRUSyMNM2SX0AJJ33tA cy/P0NdAExb00yehu9rSp3MknBXVwce6WB3nv/MyTH4BOzAS3s6RkTBEALD7P3Xw usHftxqu0F9tJpJi4bIuvKOFTCPa0bz+yzjy1KGOWthJUE7za6Z7IgEZrshC4ElS nZQBZflWsPFC5WGyiL5+NTcVnr3HSJ2ZaWkdaYgO+4bWPTLkf2Lq3lNeDqfPvCLn yOELJJw13oVr9hK4EqpmGe6p7xsERo0R5mjFZk39Q7huBg== -----END CERTIFICATE-----Generated at Mon Jun 3 06:07:08 2024 by rpki-client on console-ams.rpki-client.org