$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/t_QPZ38UFqh1zbXa8w4K-FJIrKk.roa File: t_QPZ38UFqh1zbXa8w4K-FJIrKk.roa (raw, json) Hash identifier: 6EaU8mG1+OVe0+lqQIYT+6RCe9eycVun7PXA2n9S5HI= Subject key identifier: B7:F4:0F:67:7F:14:16:A8:75:CD:B5:DA:F3:0E:0A:F8:52:48:AC:A9 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1044 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/t_QPZ38UFqh1zbXa8w4K-FJIrKk.roa Signing time: Mon 26 Aug 2024 05:13:34 +0000 ROA not before: Mon 26 Aug 2024 05:13:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 27.96.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4164 (0x1044) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B7F40F677F1416A875CDB5DAF30E0AF85248ACA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ce:d7:9b:d0:6b:eb:bf:b3:b3:df:8e:68:97: 94:db:d0:25:f2:dc:5c:c1:39:4d:2a:5a:30:02:9d: 30:73:8e:de:ca:fb:a0:46:37:b9:cb:83:d6:8c:53: 61:18:dc:3d:68:92:65:dd:77:03:7d:87:22:01:7d: 3d:96:bd:b1:83:55:fb:fe:92:71:66:fa:72:6b:fc: 6c:2c:ea:3a:b1:41:27:c4:82:af:cd:85:db:23:7f: eb:a0:c6:55:f3:4f:76:54:e7:2f:1a:16:5a:c8:74: 97:8a:b8:ea:51:fe:53:a2:5a:74:82:3e:62:3b:d4: af:de:ab:b5:5d:2b:c2:31:55:46:8a:d1:49:e5:1b: 90:3d:fd:04:77:ef:01:30:ae:11:72:25:6c:0a:94: b3:3b:7d:5a:e3:55:4c:a8:45:ad:94:32:f8:39:cf: 75:aa:51:3c:b5:a2:31:93:61:bf:91:eb:e6:6b:c9: fe:0b:4a:29:f5:80:27:a7:f9:48:a1:88:79:17:9f: b4:da:37:08:63:f2:9d:89:1d:67:ed:c5:01:21:95: 6a:fb:08:08:29:f5:12:54:58:da:e0:8d:a3:5d:8c: 02:8c:b6:8d:b4:8c:03:23:60:0b:ab:84:1f:80:1a: 18:f9:3e:cf:2b:85:cd:e2:48:a5:33:95:79:fb:a5: c3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F4:0F:67:7F:14:16:A8:75:CD:B5:DA:F3:0E:0A:F8:52:48:AC:A9 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/t_QPZ38UFqh1zbXa8w4K-FJIrKk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.96.244.0/22 Signature Algorithm: sha256WithRSAEncryption 77:12:4b:56:54:3a:d7:37:4e:33:a3:f7:f2:c5:77:a3:a8:29: 00:7f:92:5c:80:bd:ae:19:09:2f:67:1e:98:64:b2:6f:39:8c: 12:1d:68:a0:62:04:c4:d6:53:d4:77:b7:bf:f3:ca:e6:89:26: ec:db:35:cb:6e:ba:e7:db:5e:80:07:fd:cd:16:f8:98:1a:c2: c4:f4:14:33:e1:65:17:4a:41:7b:8c:37:92:26:fa:23:7d:17: ca:16:1c:99:f9:40:1c:ec:c2:dd:6f:e7:8f:e8:b5:86:aa:49: 92:b6:9d:0f:f3:62:c7:9a:5e:79:bb:86:e3:61:82:b3:07:94: 03:9e:e1:38:a2:4b:f0:82:36:42:09:7f:41:32:18:31:9d:65: e6:8e:a4:93:e4:86:d5:8c:e8:9f:a1:ef:24:fb:9d:23:40:99: 29:ae:2a:1c:23:86:9f:ea:51:25:b9:0c:4d:80:cf:17:8f:b3: 1b:6f:1a:ab:aa:37:85:cf:77:2d:02:d1:76:8b:3c:cf:66:b5: 13:bb:bd:d3:ff:96:42:40:90:f4:e6:cb:9e:c6:7b:29:89:47: ae:d6:0e:8b:86:7e:62:b1:85:91:b4:40:68:09:2d:40:81:3c: d9:41:c7:36:2b:82:71:3d:1e:a0:3b:b3:d2:f5:69:e2:bf:f4: 0f:44:92:78 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEEQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3RjQwRjY3N0YxNDE2 QTg3NUNEQjVEQUYzMEUwQUY4NTI0OEFDQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFzteb0Gvrv7Oz345ol5Tb0CXy3FzBOU0qWjACnTBzjt7K+6BG N7nLg9aMU2EY3D1okmXddwN9hyIBfT2WvbGDVfv+knFm+nJr/Gws6jqxQSfEgq/N hdsjf+ugxlXzT3ZU5y8aFlrIdJeKuOpR/lOiWnSCPmI71K/eq7VdK8IxVUaK0Unl G5A9/QR37wEwrhFyJWwKlLM7fVrjVUyoRa2UMvg5z3WqUTy1ojGTYb+R6+Zryf4L Sin1gCen+UihiHkXn7TaNwhj8p2JHWftxQEhlWr7CAgp9RJUWNrgjaNdjAKMto20 jAMjYAurhB+AGhj5Ps8rhc3iSKUzlXn7pcMJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUt/QPZ38UFqh1zbXa8w4K+FJIrKkwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvdF9RUFozOFVGcWgxemJYYTh3NEst RkpJcktrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhtg9DAN BgkqhkiG9w0BAQsFAAOCAQEAdxJLVlQ61zdOM6P38sV3o6gpAH+SXIC9rhkJL2ce mGSybzmMEh1ooGIExNZT1He3v/PK5okm7Ns1y26659tegAf9zRb4mBrCxPQUM+Fl F0pBe4w3kib6I30XyhYcmflAHOzC3W/nj+i1hqpJkradD/Nix5peebuG42GCsweU A57hOKJL8II2Qgl/QTIYMZ1l5o6kk+SG1Yzon6HvJPudI0CZKa4qHCOGn+pRJbkM TYDPF4+zG28aq6o3hc93LQLRdos8z2a1E7u90/+WQkCQ9ObLnsZ7KYlHrtYOi4Z+ YrGFkbRAaAktQIE82UHHNiuCcT0eoDuz0vVp4r/0D0SSeA== -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:40 2024 by rpki-client on console-fra.rpki-client.org