$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/y6MW2txH2s9nMg4jJBoBr2TS9o0.roa File: y6MW2txH2s9nMg4jJBoBr2TS9o0.roa (raw, json) Hash identifier: aEP6c6EpjwcHbw6QpYXXiKJb8WOC3dqbVSmimT2hD1Q= Subject key identifier: CB:A3:16:DA:DC:47:DA:CF:67:32:0E:23:24:1A:01:AF:64:D2:F6:8D Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1039 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/y6MW2txH2s9nMg4jJBoBr2TS9o0.roa Signing time: Mon 26 Aug 2024 05:13:31 +0000 ROA not before: Mon 26 Aug 2024 05:13:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.217.96.0/19 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4153 (0x1039) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:31 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CBA316DADC47DACF67320E23241A01AF64D2F68D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0f:48:61:f5:43:3a:d4:b8:57:63:2a:f7:f0: c2:7e:fc:f5:68:71:26:18:22:6d:5e:25:c7:07:fa: cd:cc:62:03:3a:95:db:a2:3f:60:76:00:5d:a5:2f: 94:b5:7e:a9:88:bb:f1:5d:e7:80:5f:63:46:68:9a: bf:29:5b:19:07:d4:85:26:aa:08:99:1f:9e:72:d2: 76:6c:a1:aa:07:3d:24:f7:b8:59:03:2b:6d:3f:db: 69:1b:c8:28:d6:66:6f:a6:35:5f:22:74:47:da:65: 62:d9:91:54:be:e8:17:03:fc:de:0c:78:43:89:b1: be:d0:34:75:5b:c1:bf:9a:4b:af:90:3c:62:01:60: 36:09:24:82:eb:36:69:ce:7c:ff:02:96:32:1e:c4: e6:a2:53:bc:76:b8:d8:fe:23:f7:95:ba:53:40:8a: e9:89:22:b5:5a:35:18:ec:7a:1a:b0:d6:4a:36:0b: 6b:ac:28:da:80:5a:d8:50:d6:59:2b:a6:a8:91:53: 18:80:b7:71:60:83:50:96:eb:86:e7:bb:72:f9:be: 8e:e4:06:eb:a7:47:02:c2:89:10:ca:f2:6b:32:f2: 82:0f:16:a9:eb:b4:03:4c:10:18:ea:7a:5c:d2:7f: ec:53:9e:29:a2:a1:bb:b5:95:c4:27:1c:61:e7:30: 2d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:A3:16:DA:DC:47:DA:CF:67:32:0E:23:24:1A:01:AF:64:D2:F6:8D X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/y6MW2txH2s9nMg4jJBoBr2TS9o0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.217.96.0/19 Signature Algorithm: sha256WithRSAEncryption 68:0e:2c:2c:a6:19:1d:fb:d9:15:40:7c:d8:23:57:ac:12:4c: 0a:0d:4f:51:c9:df:17:33:77:00:20:0e:db:1f:91:99:87:8d: 14:e7:d1:57:dc:94:12:38:62:e6:94:fc:18:c6:5c:9f:37:21: fe:93:e2:cf:7b:46:97:36:be:fc:47:13:e3:ec:a2:d4:b5:12: 10:d7:15:4e:af:77:99:d4:cb:e5:b3:cc:5d:8b:9c:bf:97:ac: d5:82:97:cc:d4:29:e5:19:c9:9c:b8:ce:51:41:40:4d:07:8d: 19:c5:e2:89:c7:ea:1a:ce:28:af:2e:b7:4f:10:47:14:ea:f0: ab:02:42:be:31:45:59:d2:bf:a9:86:84:8f:d8:61:2e:ca:f3: b7:03:05:c2:89:74:ac:d4:d2:25:24:93:5d:1f:d4:85:49:04: 73:01:f8:9b:90:52:0a:c5:3e:3b:bf:07:db:ea:ae:d9:ff:ca: 6a:00:bf:94:bd:22:77:e6:97:94:d6:ca:e0:a3:46:a4:06:33: 72:fc:de:a5:02:e8:59:eb:91:99:5f:cb:dd:68:76:a6:de:41: db:b0:fc:a2:90:eb:f9:af:c7:2c:17:7c:9c:7a:be:86:b9:f8: 23:25:08:e1:67:46:92:61:76:c4:1e:55:8c:98:ea:29:5d:ad: ac:9c:48:05 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEDkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENCQTMxNkRBREM0N0RB Q0Y2NzMyMEUyMzI0MUEwMUFGNjREMkY2OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkD0hh9UM61LhXYyr38MJ+/PVocSYYIm1eJccH+s3MYgM6ldui P2B2AF2lL5S1fqmIu/Fd54BfY0Zomr8pWxkH1IUmqgiZH55y0nZsoaoHPST3uFkD K20/22kbyCjWZm+mNV8idEfaZWLZkVS+6BcD/N4MeEOJsb7QNHVbwb+aS6+QPGIB YDYJJILrNmnOfP8CljIexOaiU7x2uNj+I/eVulNAiumJIrVaNRjsehqw1ko2C2us KNqAWthQ1lkrpqiRUxiAt3Fgg1CW64bnu3L5vo7kBuunRwLCiRDK8msy8oIPFqnr tANMEBjqelzSf+xTnimiobu1lcQnHGHnMC21AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUy6MW2txH2s9nMg4jJBoBr2TS9o0wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgveTZNVzJ0eEgyczluTWc0akpCb0Jy MlRTOW8wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcvZYDAN BgkqhkiG9w0BAQsFAAOCAQEAaA4sLKYZHfvZFUB82CNXrBJMCg1PUcnfFzN3ACAO 2x+RmYeNFOfRV9yUEjhi5pT8GMZcnzch/pPiz3tGlza+/EcT4+yi1LUSENcVTq93 mdTL5bPMXYucv5es1YKXzNQp5RnJnLjOUUFATQeNGcXiicfqGs4ory63TxBHFOrw qwJCvjFFWdK/qYaEj9hhLsrztwMFwol0rNTSJSSTXR/UhUkEcwH4m5BSCsU+O78H 2+qu2f/KagC/lL0id+aXlNbK4KNGpAYzcvzepQLoWeuRmV/L3Wh2pt5B27D8opDr +a/HLBd8nHq+hrn4IyUI4WdGkmF2xB5VjJjqKV2trJxIBQ== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:46 2024 by rpki-client on console-ams.rpki-client.org