$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/zzfbNWYS2SW4ysUTCEYg4x_6qAc.roa File: zzfbNWYS2SW4ysUTCEYg4x_6qAc.roa (raw, json) Hash identifier: LgVIYCnDpCJX91dU09XcbhuBRmI+JulGnNMZABdT9Nw= Subject key identifier: CF:37:DB:35:66:12:D9:25:B8:CA:C5:13:08:46:20:E3:1F:FA:A8:07 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 1028 Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zzfbNWYS2SW4ysUTCEYg4x_6qAc.roa Signing time: Mon 26 Aug 2024 05:13:26 +0000 ROA not before: Mon 26 Aug 2024 05:13:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17809 IP address blocks: 113.61.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4136 (0x1028) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 26 05:13:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CF37DB356612D925B8CAC513084620E31FFAA807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bf:0d:7f:9c:60:b0:7c:60:74:20:6f:79:38: fe:eb:ac:1e:4f:67:0b:21:06:4d:f5:c4:9d:7f:6a: 21:0b:75:ad:05:80:50:4c:74:ba:84:1b:9d:ef:52: 5b:51:d6:a4:8f:de:8f:42:89:99:17:ef:76:51:fd: 43:c8:0d:6c:8e:60:7a:28:e1:61:12:c1:d2:7d:8f: c7:11:54:f4:a4:1b:95:db:44:ec:97:6f:50:48:82: e5:15:9e:62:01:13:b6:f9:6f:aa:1f:f2:0b:55:7e: 60:39:e1:78:e6:a1:2c:5f:1e:a6:de:97:20:f3:5e: bf:ec:a7:1a:6a:7d:38:4d:d7:0a:49:c3:34:b5:4f: 6c:31:68:71:d7:c7:88:df:52:f7:36:06:d8:c8:f2: 52:bd:2a:2b:79:07:78:e1:65:cf:78:64:b2:5f:59: 07:07:dd:45:0b:2f:1a:71:fd:55:fc:1c:4b:3a:f3: 2a:61:2b:f6:66:13:a3:c1:0d:7a:53:7b:43:cd:b8: 65:54:cf:10:18:f1:88:9f:8f:ba:5e:1d:50:ac:fd: a3:90:b0:1d:9c:fd:64:ae:12:f6:a8:75:5f:89:a9: fe:08:6c:f6:7e:c9:f4:33:20:29:57:44:7a:64:1a: d3:05:66:f5:99:c0:67:df:92:c3:26:32:4c:4c:1c: ef:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:37:DB:35:66:12:D9:25:B8:CA:C5:13:08:46:20:E3:1F:FA:A8:07 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zzfbNWYS2SW4ysUTCEYg4x_6qAc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.128.0/19 Signature Algorithm: sha256WithRSAEncryption 55:c9:60:e4:3b:e7:5e:79:b5:8e:53:9c:b3:b7:02:10:2c:ed: de:68:d1:57:ad:1b:f6:fb:ca:3e:f0:44:4a:4b:6e:ad:13:84: 91:19:42:e8:19:df:39:6a:1e:ad:d4:d8:1d:6c:db:f1:6d:54: 3f:5f:96:e4:d3:50:9e:a2:64:96:27:39:60:01:b3:29:8e:b4: b6:f4:b4:c7:84:ac:96:02:cf:2c:e2:83:13:b5:ae:49:c3:ff: 02:d2:8d:aa:47:b6:40:f2:de:e5:35:5f:97:a6:88:05:3c:ca: a4:18:fe:4f:a8:4c:85:44:90:33:b2:72:7b:2e:e3:39:00:4f: 77:f5:a3:c1:b2:c9:54:f3:59:36:13:b6:13:e1:63:9f:e0:ec: 16:30:07:04:99:1e:e8:e2:83:f4:0b:27:28:ac:54:84:b5:2a: 28:e3:af:02:b9:ca:80:aa:7c:25:73:94:51:f7:08:4a:3d:35: 1b:d8:c9:37:78:c8:d5:2b:af:23:cb:a9:7e:b0:b6:06:8a:37: 72:24:3b:64:86:50:54:14:1b:41:49:6e:6c:ec:7a:11:30:03: c2:3a:a6:b0:f5:18:9d:3f:77:87:72:06:eb:28:0b:45:fd:c1: cc:06:12:fd:55:c9:ef:09:e2:22:19:54:3f:a4:cf:bb:e0:67: c7:ea:cc:22 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICECgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNDA4MjYw NTEzMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENGMzdEQjM1NjYxMkQ5 MjVCOENBQzUxMzA4NDYyMEUzMUZGQUE4MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLvw1/nGCwfGB0IG95OP7rrB5PZwshBk31xJ1/aiELda0FgFBM dLqEG53vUltR1qSP3o9CiZkX73ZR/UPIDWyOYHoo4WESwdJ9j8cRVPSkG5XbROyX b1BIguUVnmIBE7b5b6of8gtVfmA54XjmoSxfHqbelyDzXr/spxpqfThN1wpJwzS1 T2wxaHHXx4jfUvc2BtjI8lK9Kit5B3jhZc94ZLJfWQcH3UULLxpx/VX8HEs68yph K/ZmE6PBDXpTe0PNuGVUzxAY8Yifj7peHVCs/aOQsB2c/WSuEvaodV+Jqf4IbPZ+ yfQzIClXRHpkGtMFZvWZwGffksMmMkxMHO9bAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUzzfbNWYS2SW4ysUTCEYg4x/6qAcwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvenpmYk5XWVMyU1c0eXNVVENFWWc0 eF82cUFjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXE9gDAN BgkqhkiG9w0BAQsFAAOCAQEAVclg5DvnXnm1jlOcs7cCECzt3mjRV60b9vvKPvBE SkturROEkRlC6BnfOWoerdTYHWzb8W1UP1+W5NNQnqJklic5YAGzKY60tvS0x4Ss lgLPLOKDE7WuScP/AtKNqke2QPLe5TVfl6aIBTzKpBj+T6hMhUSQM7Jyey7jOQBP d/WjwbLJVPNZNhO2E+Fjn+DsFjAHBJke6OKD9AsnKKxUhLUqKOOvArnKgKp8JXOU UfcISj01G9jJN3jI1SuvI8upfrC2Boo3ciQ7ZIZQVBQbQUlubOx6ETADwjqmsPUY nT93h3IG6ygLRf3BzAYS/VXJ7wniIhlUP6TPu+Bnx+rMIg== -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:40 2024 by rpki-client on console-fra.rpki-client.org