$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/twCwhNgTTVmh63y5GFyTLaD9yC8.roa File: twCwhNgTTVmh63y5GFyTLaD9yC8.roa (raw, json) Hash identifier: YNPFWgUr4ou88ai8JCngd2fo22LlYNc7n7XlEfnXz8A= Subject key identifier: B7:00:B0:84:D8:13:4D:59:A1:EB:7C:B9:18:5C:93:2D:A0:FD:C8:2F Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1011 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/twCwhNgTTVmh63y5GFyTLaD9yC8.roa Signing time: Mon 26 Aug 2024 05:13:21 +0000 ROA not before: Mon 26 Aug 2024 05:13:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 182.155.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4113 (0x1011) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B700B084D8134D59A1EB7CB9185C932DA0FDC82F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:01:70:3a:9b:e1:a7:9c:72:60:ca:ad:fb:b1: 64:c4:6a:71:93:00:6c:3c:d7:50:0d:c0:86:14:23: ff:55:47:a9:b8:30:bf:4b:16:55:55:8a:86:f6:14: 1d:7f:ec:a4:0b:14:b4:4b:ff:a6:9f:9c:29:b6:9f: 5d:47:0a:60:89:2f:31:51:69:cd:2b:29:06:e5:c0: 21:fe:7c:b0:d2:b1:e0:89:f3:cf:7b:29:30:7e:ef: b1:4f:79:9b:01:36:90:fb:7e:53:1d:9c:96:37:c7: 28:f0:8b:00:cc:3a:92:66:ee:f1:04:c4:14:f6:f0: af:e9:ca:4b:f5:02:96:ab:50:21:32:ab:7c:e1:6b: 5c:2a:60:b6:f0:a6:60:d3:0f:c9:59:b0:53:33:c7: d5:0f:e9:94:d1:aa:96:0e:af:78:a9:e9:75:f2:28: d8:d8:4d:a1:50:27:73:6c:1f:b3:1c:38:37:cb:ae: 34:3d:24:3f:46:73:0c:6b:78:2f:95:7e:47:90:38: 34:36:38:f3:88:70:54:17:fe:f4:20:e7:31:89:bd: 46:14:bf:29:d1:06:56:6f:75:8a:bb:38:12:ce:08: 97:03:68:8b:1a:ce:6f:0e:1c:65:60:73:f2:2f:ff: ff:a6:f7:c8:4f:63:b1:bf:46:bb:0d:c1:00:b4:9f: e2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:00:B0:84:D8:13:4D:59:A1:EB:7C:B9:18:5C:93:2D:A0:FD:C8:2F X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/twCwhNgTTVmh63y5GFyTLaD9yC8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.155.192.0/18 Signature Algorithm: sha256WithRSAEncryption 73:e5:e3:a5:04:0f:2b:8b:cf:0b:b9:5f:5d:45:8e:85:fd:eb: 0b:ae:13:5d:d7:bb:d8:03:71:84:84:b9:40:08:7a:69:9b:bd: 55:6a:e5:ca:64:2f:5e:ab:48:f1:ff:91:78:36:11:1a:15:0b: 81:11:bc:47:6a:e8:8e:a3:27:7d:18:b7:59:ff:da:73:9b:25: f6:0c:d7:58:aa:1b:68:55:da:68:6b:5d:b2:dd:36:3a:77:12: c4:dc:4c:51:b5:8a:df:bc:41:0b:a5:06:cc:79:fe:89:37:d9: 54:bc:f8:64:4c:8f:87:74:93:71:9c:e5:2a:2c:36:5d:7c:9e: 12:46:38:a8:e9:a0:0e:ed:a4:f3:5b:a2:72:00:37:c9:ac:f8: f4:ec:d5:c3:5f:43:71:a2:16:7c:94:c7:95:a5:04:38:08:c2: 7a:9a:eb:a5:5e:73:0e:40:69:c6:eb:f5:32:72:19:fb:da:dc: 20:0e:02:09:3a:eb:ce:57:27:db:9f:b1:0f:9c:7f:43:02:35: 4b:b7:bd:de:7a:40:a7:92:94:c2:bc:44:b6:f8:a4:c2:e8:76: 98:df:dc:05:6d:27:19:8b:7b:0d:09:26:db:4f:5e:87:af:6e: 0c:d9:43:da:dc:3b:0b:cb:28:62:bc:8e:f6:dc:94:7e:f4:5e: 27:5c:d0:74 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEBEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3MDBCMDg0RDgxMzRE NTlBMUVCN0NCOTE4NUM5MzJEQTBGREM4MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8AXA6m+GnnHJgyq37sWTEanGTAGw811ANwIYUI/9VR6m4ML9L FlVViob2FB1/7KQLFLRL/6afnCm2n11HCmCJLzFRac0rKQblwCH+fLDSseCJ8897 KTB+77FPeZsBNpD7flMdnJY3xyjwiwDMOpJm7vEExBT28K/pykv1AparUCEyq3zh a1wqYLbwpmDTD8lZsFMzx9UP6ZTRqpYOr3ip6XXyKNjYTaFQJ3NsH7McODfLrjQ9 JD9GcwxreC+VfkeQODQ2OPOIcFQX/vQg5zGJvUYUvynRBlZvdYq7OBLOCJcDaIsa zm8OHGVgc/Iv//+m98hPY7G/RrsNwQC0n+LPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUtwCwhNgTTVmh63y5GFyTLaD9yC8wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvdHdDd2hOZ1RUVm1oNjN5NUdGeVRM YUQ5eUM4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBrabwDAN BgkqhkiG9w0BAQsFAAOCAQEAc+XjpQQPK4vPC7lfXUWOhf3rC64TXde72ANxhIS5 QAh6aZu9VWrlymQvXqtI8f+ReDYRGhULgRG8R2rojqMnfRi3Wf/ac5sl9gzXWKob aFXaaGtdst02OncSxNxMUbWK37xBC6UGzHn+iTfZVLz4ZEyPh3STcZzlKiw2XXye EkY4qOmgDu2k81uicgA3yaz49OzVw19DcaIWfJTHlaUEOAjCeprrpV5zDkBpxuv1 MnIZ+9rcIA4CCTrrzlcn25+xD5x/QwI1S7e93npAp5KUwrxEtvikwuh2mN/cBW0n GYt7DQkm209eh69uDNlD2tw7C8soYryO9tyUfvReJ1zQdA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org