$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/v8bK9RTdfJzpAH-Z78V1wADWM6U.roa File: v8bK9RTdfJzpAH-Z78V1wADWM6U.roa (raw, json) Hash identifier: yhAJmQDmmBYL8CXkuDFGPeFHxB5qkjewfitsFV13t1Q= Subject key identifier: BF:C6:CA:F5:14:DD:7C:9C:E9:00:7F:99:EF:C5:75:C0:00:D6:33:A5 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 103E Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/v8bK9RTdfJzpAH-Z78V1wADWM6U.roa Signing time: Mon 26 Aug 2024 05:13:32 +0000 ROA not before: Mon 26 Aug 2024 05:13:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 113.61.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4158 (0x103e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BFC6CAF514DD7C9CE9007F99EFC575C000D633A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:85:8f:fe:65:64:5a:9d:79:ba:4f:4a:78:ad: 6f:07:91:dd:50:77:20:f6:37:05:2f:4e:5c:be:9f: 29:9c:15:5b:e3:a2:5b:e8:66:17:5b:a5:3e:e2:94: 1b:e2:cb:e9:c0:5d:7f:eb:c9:c5:8c:a6:c9:bf:53: 86:3d:bc:45:8c:2c:1b:f2:e2:fd:04:5d:15:83:d2: d9:17:dd:15:28:0f:0e:35:ed:9f:7f:1b:97:4c:96: a9:43:0e:df:c4:cc:b1:c2:2d:c6:4b:16:dc:c2:02: c1:f4:6c:85:10:8c:71:4f:01:dd:10:cc:b9:94:9d: dc:c9:4a:fd:d5:38:34:5a:56:44:91:44:a9:97:af: dd:cf:83:d0:52:c1:11:6e:f8:fb:9d:30:6b:fe:3a: 15:59:42:e4:87:fe:dd:e3:da:c1:2b:0b:d5:b5:c5: 9b:df:58:65:f7:fd:0b:94:52:35:88:a4:11:ba:56: 85:76:a2:01:5b:76:b3:e9:6d:d4:25:9b:a1:05:c2: 98:10:d0:31:45:c9:79:e1:4d:49:59:d5:e2:f5:37: 01:a2:33:c9:b8:34:c6:b8:ef:a3:82:3f:ab:48:e1: 35:c6:64:c5:59:b6:6b:39:7f:fe:c4:df:09:7e:f3: 38:6b:c4:48:95:7e:da:b6:7b:ce:45:5f:e1:a5:78: 56:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C6:CA:F5:14:DD:7C:9C:E9:00:7F:99:EF:C5:75:C0:00:D6:33:A5 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/v8bK9RTdfJzpAH-Z78V1wADWM6U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.160.0/20 Signature Algorithm: sha256WithRSAEncryption a8:fa:ac:d6:01:e1:a0:3e:c7:a4:fe:fc:80:17:40:64:37:ec: e8:7d:cf:cf:e8:95:00:ed:d4:64:eb:45:9a:2f:2d:c1:7e:da: 9e:22:4b:2a:e4:36:b5:d2:68:ae:da:27:1b:77:6b:af:20:0f: 93:b5:22:6d:e9:99:bb:b1:d1:25:40:eb:2a:f0:65:ec:cd:10: 9e:ca:ca:a3:0d:90:d3:80:af:cf:89:55:39:80:e8:e9:9b:54: 2e:6f:a6:23:f3:d0:0a:ef:80:9c:02:82:58:d3:df:6b:e2:0e: 80:c3:41:9b:85:f7:56:78:21:de:f8:85:56:6d:8a:02:50:d6: 9b:b3:9b:ee:24:74:a9:8f:a8:57:a7:19:27:e6:77:73:24:8d: f6:f6:9a:1d:b2:72:f0:41:9a:04:c9:a7:8d:c5:a5:26:a9:e4: ba:9f:d0:c4:f6:6f:8f:cf:bc:b8:51:55:56:87:77:85:fb:8c: f3:28:db:0e:ee:a2:38:e1:1e:c6:61:72:65:6f:20:2f:a8:69: b7:cf:2d:f3:d0:53:12:f9:6c:82:24:05:e8:47:d7:3d:00:9f: 88:72:9d:15:5d:85:61:30:d0:a8:23:b2:61:f7:3e:16:17:24: b7:64:64:f1:89:80:6a:87:3d:3b:33:12:b9:9f:ce:1a:29:b1: cf:e0:61:c2 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICED4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJGQzZDQUY1MTRERDdD OUNFOTAwN0Y5OUVGQzU3NUMwMDBENjMzQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIhY/+ZWRanXm6T0p4rW8Hkd1QdyD2NwUvTly+nymcFVvjolvo ZhdbpT7ilBviy+nAXX/rycWMpsm/U4Y9vEWMLBvy4v0EXRWD0tkX3RUoDw417Z9/ G5dMlqlDDt/EzLHCLcZLFtzCAsH0bIUQjHFPAd0QzLmUndzJSv3VODRaVkSRRKmX r93Pg9BSwRFu+PudMGv+OhVZQuSH/t3j2sErC9W1xZvfWGX3/QuUUjWIpBG6VoV2 ogFbdrPpbdQlm6EFwpgQ0DFFyXnhTUlZ1eL1NwGiM8m4NMa476OCP6tI4TXGZMVZ tms5f/7E3wl+8zhrxEiVftq2e85FX+GleFa5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUv8bK9RTdfJzpAH+Z78V1wADWM6UwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvdjhiSzlSVGRmSnpwQUgtWjc4VjF3 QURXTTZVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHE9oDAN BgkqhkiG9w0BAQsFAAOCAQEAqPqs1gHhoD7HpP78gBdAZDfs6H3Pz+iVAO3UZOtF mi8twX7aniJLKuQ2tdJortonG3drryAPk7UibemZu7HRJUDrKvBl7M0QnsrKow2Q 04Cvz4lVOYDo6ZtULm+mI/PQCu+AnAKCWNPfa+IOgMNBm4X3Vngh3viFVm2KAlDW m7Ob7iR0qY+oV6cZJ+Z3cySN9vaaHbJy8EGaBMmnjcWlJqnkup/QxPZvj8+8uFFV Vod3hfuM8yjbDu6iOOEexmFyZW8gL6hpt88t89BTEvlsgiQF6EfXPQCfiHKdFV2F YTDQqCOyYfc+Fhckt2Rk8YmAaoc9OzMSuZ/OGimxz+Bhwg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org