$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/sNkv6N3A975bTXJyiAwW3wPBPNI.roa File: sNkv6N3A975bTXJyiAwW3wPBPNI.roa (raw, json) Hash identifier: FF87Rwv7+DkGnR8ApcEOSj2yh/VPFhzZ+r7WDX95ZNI= Subject key identifier: B0:D9:2F:E8:DD:C0:F7:BE:5B:4D:72:72:88:0C:16:DF:03:C1:3C:D2 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E23 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/sNkv6N3A975bTXJyiAwW3wPBPNI.roa Signing time: Fri 01 Sep 2023 08:49:19 +0000 ROA not before: Fri 01 Sep 2023 08:49:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17809 IP address blocks: 203.222.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3619 (0xe23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B0D92FE8DDC0F7BE5B4D7272880C16DF03C13CD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b8:40:8a:9b:53:42:0a:29:4a:1f:14:99:6f: 79:05:22:f2:03:e5:0f:74:81:c3:fa:6d:ba:de:fe: 1f:2c:af:5d:cc:5a:3f:68:f4:bf:c2:72:b3:67:56: 97:8e:2e:9d:f9:a9:96:8c:5e:61:90:b6:ac:2d:52: 33:db:3a:93:38:ce:28:95:7e:03:97:14:39:fa:29: 37:df:37:81:b0:20:36:f3:3f:fd:b5:3a:24:74:db: 9f:85:53:c2:87:fe:68:13:dd:18:7d:97:ca:2b:b7: ae:59:ac:31:c5:af:61:c4:b2:a3:0b:17:1f:b8:3b: aa:03:1c:c6:9a:4c:a1:f2:d2:41:f7:4d:38:97:ac: fb:f2:c7:82:b5:30:ad:13:f7:ab:b2:d2:00:7e:35: d4:b3:23:6d:62:c6:57:a0:44:c4:60:dc:3b:10:10: c8:aa:62:bb:c3:17:8e:31:7b:71:20:cb:24:a7:eb: 2d:6d:fc:12:c2:05:ed:e5:b5:57:24:10:9e:ea:a3: 3d:02:ef:fc:ba:41:77:a1:12:f5:05:dc:8e:b1:90: f3:51:8a:6b:37:c1:e5:be:cc:ab:ea:8a:0c:05:30: 6c:95:22:9b:b9:8e:4d:cd:5c:af:75:06:78:13:5f: aa:7f:d3:7a:de:87:2d:1c:4d:d9:63:6a:62:85:b8: 12:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D9:2F:E8:DD:C0:F7:BE:5B:4D:72:72:88:0C:16:DF:03:C1:3C:D2 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/sNkv6N3A975bTXJyiAwW3wPBPNI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.222.4.0/22 Signature Algorithm: sha256WithRSAEncryption 12:24:94:72:4f:8f:79:a1:49:00:8d:55:e8:92:19:4c:ac:a1: 41:43:a4:91:62:bd:7e:e3:f6:46:b7:1e:02:9e:19:32:2b:61: d9:c8:80:a5:c7:59:12:7a:da:47:f6:ff:0f:ab:c3:e6:d1:e3: 40:ca:7d:b7:66:ab:33:3c:d0:c3:5f:e4:d1:2e:dd:65:27:b5: 8d:aa:0e:ff:85:da:15:35:51:88:18:97:d2:39:b6:d5:5e:73: 69:3e:f9:47:c2:d9:02:05:e3:13:d3:b9:be:c1:21:0f:5c:ad: 78:f1:f2:65:41:ea:c8:85:23:7b:f8:54:06:b2:c2:64:87:9b: 23:f8:7d:55:c1:96:bf:59:cc:f6:1c:36:07:49:da:26:6f:e8: 05:28:d6:e0:dc:24:f6:35:12:d2:29:9f:95:97:7d:3d:bb:ac: 47:f6:eb:50:9c:6b:b1:6b:bb:1b:3e:45:ef:a4:86:b0:a8:3f: 5a:88:a0:2d:0b:00:87:4b:68:98:7f:5c:c4:e3:03:b8:e7:51: ec:9b:50:a1:ac:f0:4a:c5:74:f0:72:5c:45:e3:40:43:5e:8d: e9:38:68:2e:c9:0c:b9:27:e2:1a:ed:d0:06:1f:4b:5c:c1:fc: 71:a5:62:ce:5b:1d:b6:53:65:b0:a2:a6:26:48:eb:92:74:6a: e8:10:e6:89 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDiMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIwRDkyRkU4RERDMEY3 QkU1QjRENzI3Mjg4MEMxNkRGMDNDMTNDRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8uECKm1NCCilKHxSZb3kFIvID5Q90gcP6bbre/h8sr13MWj9o 9L/CcrNnVpeOLp35qZaMXmGQtqwtUjPbOpM4ziiVfgOXFDn6KTffN4GwIDbzP/21 OiR025+FU8KH/mgT3Rh9l8ort65ZrDHFr2HEsqMLFx+4O6oDHMaaTKHy0kH3TTiX rPvyx4K1MK0T96uy0gB+NdSzI21ixlegRMRg3DsQEMiqYrvDF44xe3EgyySn6y1t /BLCBe3ltVckEJ7qoz0C7/y6QXehEvUF3I6xkPNRims3weW+zKvqigwFMGyVIpu5 jk3NXK91BngTX6p/03rehy0cTdljamKFuBLNAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUsNkv6N3A975bTXJyiAwW3wPBPNIwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvc05rdjZOM0E5NzViVFhKeWlBd1cz d1BCUE5JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsveBDAN BgkqhkiG9w0BAQsFAAOCAQEAEiSUck+PeaFJAI1V6JIZTKyhQUOkkWK9fuP2Rrce Ap4ZMith2ciApcdZEnraR/b/D6vD5tHjQMp9t2arMzzQw1/k0S7dZSe1jaoO/4Xa FTVRiBiX0jm21V5zaT75R8LZAgXjE9O5vsEhD1ytePHyZUHqyIUje/hUBrLCZIeb I/h9VcGWv1nM9hw2B0naJm/oBSjW4Nwk9jUS0imflZd9PbusR/brUJxrsWu7Gz5F 76SGsKg/WoigLQsAh0tomH9cxOMDuOdR7JtQoazwSsV08HJcReNAQ16N6ThoLskM uSfiGu3QBh9LXMH8caVizlsdtlNlsKKmJkjrknRq6BDmiQ== -----END CERTIFICATE-----Generated at Mon Jun 3 06:07:08 2024 by rpki-client on console-ams.rpki-client.org