$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/wvwgpQ-EcBwIvg6rUH1UOIpLm90.roa File: wvwgpQ-EcBwIvg6rUH1UOIpLm90.roa (raw, json) Hash identifier: 9bNfWUqR/xlbbGuljDhkB741zgyWp9+XuXWpqsu0Hp0= Subject key identifier: C2:FC:20:A5:0F:84:70:1C:08:BE:0E:AB:50:7D:54:38:8A:4B:9B:DD Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 0E36 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/wvwgpQ-EcBwIvg6rUH1UOIpLm90.roa Signing time: Fri 01 Sep 2023 08:49:25 +0000 ROA not before: Fri 01 Sep 2023 08:49:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38851 IP address blocks: 119.15.216.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3638 (0xe36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Sep 1 08:49:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C2FC20A50F84701C08BE0EAB507D54388A4B9BDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:92:50:ec:d4:e6:04:56:73:7e:a8:2d:f5:f4: 77:37:f8:1f:2f:42:47:e6:00:28:ea:4a:82:ac:97: aa:58:70:fd:05:88:84:e8:e4:c4:80:59:64:38:ef: 44:e4:11:23:88:41:ce:ed:eb:4c:61:f3:c3:b2:14: 2e:a4:5a:05:f8:fc:ed:50:3e:46:cb:a9:bd:4a:ab: ee:a5:a3:28:e6:33:43:a7:fc:d2:7b:67:d3:de:69: 4b:45:8e:5f:ec:41:b4:ee:3e:a2:e2:f6:8a:48:00: 1d:06:ff:02:82:58:e4:77:13:ae:ee:c3:4b:e1:c7: 9c:14:9a:c2:ba:88:45:1c:a3:3a:9d:c3:1c:28:3b: 01:72:db:a3:00:fe:cd:64:b0:5a:19:13:b9:c1:c4: 0f:c6:f7:a6:94:3d:e2:cb:cc:59:ff:67:ea:80:eb: 44:3c:e7:dc:bc:53:01:9f:00:c7:56:4f:b8:84:2f: ab:78:d1:87:65:95:81:23:6d:e1:fe:9e:1b:f1:e3: 0a:57:07:04:eb:83:65:bc:b6:5b:77:00:71:4c:a8: b2:f3:d8:6f:f7:20:7c:7c:8d:77:29:2c:54:6b:86: 92:36:b9:e7:56:74:0a:05:3d:7b:7a:0d:8e:c2:c7: ef:a4:c5:72:bd:45:f6:cf:df:ee:f0:85:5d:89:b6: 03:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:FC:20:A5:0F:84:70:1C:08:BE:0E:AB:50:7D:54:38:8A:4B:9B:DD X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/wvwgpQ-EcBwIvg6rUH1UOIpLm90.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.15.216.0/21 Signature Algorithm: sha256WithRSAEncryption b1:43:a4:e9:d2:6f:17:5d:75:1a:90:3f:e3:89:dc:af:4f:98: 70:76:20:db:84:37:90:c9:8d:f9:06:ba:59:94:49:53:24:de: 0d:9d:00:ee:d4:ff:66:c8:35:8f:dd:bb:c4:cc:2d:2b:2d:b3: 02:17:9e:96:ee:64:4b:c0:d9:bb:92:65:65:5e:f7:f6:5d:02: 19:19:7d:8b:d8:61:c2:c0:68:15:f9:00:60:1e:12:61:31:9f: 83:2b:91:a6:45:d4:27:94:73:3a:0d:6b:fa:12:e3:a4:4d:5e: d9:bd:19:51:32:87:0b:12:34:06:d4:c0:1b:71:66:5e:14:f6: e7:c2:87:c4:a2:25:63:43:37:2a:9e:62:90:40:07:a8:39:37: ed:bc:5c:35:40:0c:ff:ff:5d:10:c8:6a:a8:b4:1f:a6:e7:4a: 91:9f:7a:4a:02:45:b7:de:5b:4b:0e:a7:78:89:4b:5c:36:82: a9:0d:4c:83:d0:7b:a3:f8:e6:ca:5e:02:da:12:a9:ac:9a:d1: ce:76:f0:aa:e8:0c:8e:4a:c3:a3:a9:73:bb:19:18:64:b2:55: bd:db:7a:31:7a:62:ea:1a:da:1b:60:7c:3f:83:01:26:da:29: 2c:c3:b8:7f:1c:b6:6a:22:37:d7:02:a2:82:fa:1f:1f:08:f9: a8:09:5b:9f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw ODQ5MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEMyRkMyMEE1MEY4NDcw MUMwOEJFMEVBQjUwN0Q1NDM4OEE0QjlCREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpklDs1OYEVnN+qC319Hc3+B8vQkfmACjqSoKsl6pYcP0FiITo 5MSAWWQ470TkESOIQc7t60xh88OyFC6kWgX4/O1QPkbLqb1Kq+6loyjmM0On/NJ7 Z9PeaUtFjl/sQbTuPqLi9opIAB0G/wKCWOR3E67uw0vhx5wUmsK6iEUcozqdwxwo OwFy26MA/s1ksFoZE7nBxA/G96aUPeLLzFn/Z+qA60Q859y8UwGfAMdWT7iEL6t4 0YdllYEjbeH+nhvx4wpXBwTrg2W8tlt3AHFMqLLz2G/3IHx8jXcpLFRrhpI2uedW dAoFPXt6DY7Cx++kxXK9RfbP3+7whV2JtgN1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUwvwgpQ+EcBwIvg6rUH1UOIpLm90wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvd3Z3Z3BRLUVjQndJdmc2clVIMVVP SXBMbTkwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3cP2DAN BgkqhkiG9w0BAQsFAAOCAQEAsUOk6dJvF111GpA/44ncr0+YcHYg24Q3kMmN+Qa6 WZRJUyTeDZ0A7tT/Zsg1j927xMwtKy2zAheelu5kS8DZu5JlZV739l0CGRl9i9hh wsBoFfkAYB4SYTGfgyuRpkXUJ5RzOg1r+hLjpE1e2b0ZUTKHCxI0BtTAG3FmXhT2 58KHxKIlY0M3Kp5ikEAHqDk37bxcNUAM//9dEMhqqLQfpudKkZ96SgJFt95bSw6n eIlLXDaCqQ1Mg9B7o/jmyl4C2hKprJrRznbwqugMjkrDo6lzuxkYZLJVvdt6MXpi 6hraG2B8P4MBJtopLMO4fxy2aiI31wKigvofHwj5qAlbnw== -----END CERTIFICATE-----Generated at Mon Jun 3 04:19:39 2024 by rpki-client on console-fra.rpki-client.org