$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/z1tub0UdzvqxRFbHRYwrvGRsU0Y.roa File: z1tub0UdzvqxRFbHRYwrvGRsU0Y.roa (raw, json) Hash identifier: iiUoZfFzXeKcHjljm+pGtuLEoXmnWqQ57YQUjsPzIAw= Subject key identifier: CF:5B:6E:6F:45:1D:CE:FA:B1:44:56:C7:45:8C:2B:BC:64:6C:53:46 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1007 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/z1tub0UdzvqxRFbHRYwrvGRsU0Y.roa Signing time: Mon 26 Aug 2024 05:13:19 +0000 ROA not before: Mon 26 Aug 2024 05:13:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 203.217.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4103 (0x1007) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CF5B6E6F451DCEFAB14456C7458C2BBC646C5346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ae:dc:8d:88:a9:1b:b0:4b:00:f9:bf:e1:fc: 78:32:3c:9c:ae:a4:63:ae:1e:9f:fe:da:77:d0:66: dc:53:4f:b6:49:be:bf:b7:1d:7d:02:4b:b8:97:ef: 30:40:ec:9c:f1:28:e9:ac:de:20:6d:05:2e:ba:68: f5:8f:54:97:14:5e:a5:e7:c5:41:eb:62:bb:54:bb: 4c:5e:52:15:9f:f0:cb:5d:b5:9f:be:4f:d5:35:02: c4:a3:9f:c8:e7:63:76:08:23:7e:e4:75:af:ca:99: 24:8e:0b:41:5a:bb:5a:97:4c:6d:b8:2b:1a:96:74: 47:b2:15:17:cd:64:98:1a:c9:56:d2:b1:a3:21:27: 50:b1:4f:c0:e3:0c:8b:6e:5b:85:fa:70:08:a5:1c: 74:07:0e:c8:cf:a4:ca:0b:9a:73:29:f9:10:ab:2a: 7b:f1:49:cc:08:ef:f4:40:7f:55:ba:0a:fe:61:bb: 8f:26:6b:52:f3:97:e4:0a:25:d5:6e:8a:86:2a:6d: b1:ae:72:5f:de:ae:c1:8b:ab:4f:34:28:5e:f5:38: 7f:a1:2d:06:ce:9d:d7:09:55:9a:4b:65:fc:7a:ec: 0f:b2:ec:b6:84:62:4e:74:e1:64:6e:8f:10:4d:32: bc:b6:92:96:10:c9:48:f3:6f:f2:b5:a5:4c:61:36: 42:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:5B:6E:6F:45:1D:CE:FA:B1:44:56:C7:45:8C:2B:BC:64:6C:53:46 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/z1tub0UdzvqxRFbHRYwrvGRsU0Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.217.112.0/20 Signature Algorithm: sha256WithRSAEncryption b0:06:ed:9e:4b:14:3b:1f:72:c0:3e:11:7c:c3:ac:a1:12:b0: a0:37:81:11:b7:c9:7c:f4:5f:7c:4a:a0:d7:0a:59:72:d5:ac: 7c:d6:03:fc:b3:ec:2d:2c:21:67:fe:4d:d5:48:17:22:73:67: 61:08:3d:52:cf:2b:c8:12:d8:35:a2:72:8e:0e:2f:a9:b2:ec: f2:d8:c0:13:05:01:fe:e4:32:cb:b9:d5:77:67:99:65:d6:e2: 89:d5:a7:59:ec:cc:11:aa:8c:c0:97:22:f4:c0:50:b9:13:55: 7e:cf:4b:b5:98:6d:29:31:d3:7c:d2:0e:2f:6c:e2:a8:b5:de: ba:df:03:58:31:59:ec:2a:99:38:ab:3b:6c:4a:57:4c:0d:5d: fc:2c:b7:82:95:e0:66:b4:fb:9e:83:13:4f:91:ad:50:db:89: 70:f2:b2:77:fa:7b:30:a0:81:ed:4e:80:ff:f4:b6:d5:4d:2c: a1:1a:e3:4a:9d:d6:9d:a5:38:0f:f8:78:59:7d:69:10:81:8f: 6e:80:b1:3a:67:3b:d7:3e:1c:e7:fe:a4:57:b7:09:24:d7:ff: 92:35:73:08:86:0a:a1:53:d5:73:9e:8c:ee:b5:60:b0:59:24: eb:0e:61:90:02:85:ea:30:97:1f:bd:68:1c:64:4e:1d:3d:b4: 9d:fd:f1:b4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEAcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENGNUI2RTZGNDUxRENF RkFCMTQ0NTZDNzQ1OEMyQkJDNjQ2QzUzNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCXrtyNiKkbsEsA+b/h/HgyPJyupGOuHp/+2nfQZtxTT7ZJvr+3 HX0CS7iX7zBA7JzxKOms3iBtBS66aPWPVJcUXqXnxUHrYrtUu0xeUhWf8MtdtZ++ T9U1AsSjn8jnY3YII37kda/KmSSOC0Fau1qXTG24KxqWdEeyFRfNZJgayVbSsaMh J1CxT8DjDItuW4X6cAilHHQHDsjPpMoLmnMp+RCrKnvxScwI7/RAf1W6Cv5hu48m a1Lzl+QKJdVuioYqbbGucl/ersGLq080KF71OH+hLQbOndcJVZpLZfx67A+y7LaE Yk504WRujxBNMry2kpYQyUjzb/K1pUxhNkJ9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUz1tub0UdzvqxRFbHRYwrvGRsU0YwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvejF0dWIwVWR6dnF4UkZiSFJZd3J2 R1JzVTBZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMvZcDAN BgkqhkiG9w0BAQsFAAOCAQEAsAbtnksUOx9ywD4RfMOsoRKwoDeBEbfJfPRffEqg 1wpZctWsfNYD/LPsLSwhZ/5N1UgXInNnYQg9Us8ryBLYNaJyjg4vqbLs8tjAEwUB /uQyy7nVd2eZZdbiidWnWezMEaqMwJci9MBQuRNVfs9LtZhtKTHTfNIOL2ziqLXe ut8DWDFZ7CqZOKs7bEpXTA1d/Cy3gpXgZrT7noMTT5GtUNuJcPKyd/p7MKCB7U6A //S21U0soRrjSp3WnaU4D/h4WX1pEIGPboCxOmc71z4c5/6kV7cJJNf/kjVzCIYK oVPVc56M7rVgsFkk6w5hkAKF6jCXH71oHGROHT20nf3xtA== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:04 2024 by rpki-client on console-ams.rpki-client.org