$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/eMex7iyaZw4xgVrtGoUze3ZjB5g.roa File: eMex7iyaZw4xgVrtGoUze3ZjB5g.roa (raw, json) Hash identifier: FjFtagB1RDd+GS8ZlNdTZXbvO+rKeMTje1qpmVWkAtI= Subject key identifier: 78:C7:B1:EE:2C:9A:67:0E:31:81:5A:ED:1A:85:33:7B:76:63:07:98 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D4A Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/eMex7iyaZw4xgVrtGoUze3ZjB5g.roa Signing time: Mon 15 Jan 2024 21:25:46 +0000 ROA not before: Mon 15 Jan 2024 21:25:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 210.200.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3402 (0xd4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:25:46 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=78C7B1EE2C9A670E31815AED1A85337B76630798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d1:36:43:ee:40:7c:fc:e0:16:e5:66:84:d2: ac:ba:a4:5b:05:54:f4:c7:b1:0a:c1:6a:1b:86:1d: 28:33:de:00:96:f5:71:53:af:24:2d:dc:f8:02:19: aa:1d:a3:47:83:81:68:72:77:51:1b:3f:3f:24:ec: c3:60:80:d1:0f:a7:3e:cc:6b:5d:8c:9b:35:38:f4: 1e:50:b6:0e:69:7c:0b:10:d5:9e:6c:81:a2:ea:4a: 2b:48:5c:95:b1:b5:b5:dd:e9:1c:e2:60:32:86:30: 18:50:6d:be:27:55:5d:84:f6:b4:67:e6:16:31:22: c1:28:e1:7b:88:43:81:e5:b5:5a:d2:e5:fc:9a:32: e2:b5:08:23:7c:d3:82:53:51:e6:b1:6e:07:6a:0e: a9:fe:e6:60:4e:d3:d3:61:c3:01:e1:3f:26:7b:5e: 7b:00:c7:5a:84:58:20:5b:24:b0:68:99:41:82:bf: f2:8d:ed:73:a2:c3:a6:20:6c:e4:01:38:74:83:9c: ed:33:d4:ef:45:ed:0e:b9:d8:f5:5d:78:c8:10:5e: 78:4b:ac:26:9e:94:bf:d9:58:66:4d:35:d3:31:43: 22:8a:a4:20:f2:88:77:dd:1b:9d:5f:02:f0:8c:04: f7:58:8a:82:28:e2:16:c5:8e:e3:5c:41:0f:f1:16: 89:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C7:B1:EE:2C:9A:67:0E:31:81:5A:ED:1A:85:33:7B:76:63:07:98 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/eMex7iyaZw4xgVrtGoUze3ZjB5g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.64.0/18 Signature Algorithm: sha256WithRSAEncryption 46:dd:e8:d0:ea:f7:02:fb:d1:82:80:8d:af:02:3e:1f:46:f9: a2:07:e2:37:1b:0d:8d:a8:69:0b:fb:bf:98:dd:d7:5d:31:86: ef:06:1f:c1:53:50:8c:7f:b5:2b:f6:72:ac:0f:e8:20:05:6b: c4:2c:7a:a2:3d:50:fc:30:5c:77:6a:c4:01:f5:22:ea:55:90: 93:fc:5a:2d:82:d7:b4:75:72:43:c3:58:c4:14:bd:07:d8:b2: 93:0a:9c:f1:a9:65:90:c0:d7:4b:81:04:b0:75:7a:f6:a8:3c: 0b:cd:0c:71:3e:87:39:fd:8b:fc:2e:2c:a5:48:74:b2:3d:0d: db:0e:ec:cf:d7:e9:50:fa:75:10:b8:d9:0b:c5:96:83:33:39: b6:10:33:64:a9:2f:8e:d5:a7:f7:66:e7:81:ba:79:6b:d4:96: ab:9f:0e:46:ca:ee:ec:c5:0f:7c:d5:1d:a2:97:c6:61:57:6f: 51:3d:ba:ab:51:64:e6:32:c9:b4:ae:73:52:f9:00:1c:4c:6e: fa:9c:b9:9b:44:c9:a4:cd:38:4b:78:36:be:0c:0c:20:8a:47: 12:4e:93:d0:c6:5e:9a:6f:85:0d:d9:df:81:55:b3:b0:99:e5: 8b:73:3c:b5:1c:dd:da:6a:b5:69:20:e5:3b:cb:1c:96:f5:19: d9:1c:21:3e -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDUowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI1NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc4QzdCMUVFMkM5QTY3 MEUzMTgxNUFFRDFBODUzMzdCNzY2MzA3OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCi0TZD7kB8/OAW5WaE0qy6pFsFVPTHsQrBahuGHSgz3gCW9XFT ryQt3PgCGaodo0eDgWhyd1EbPz8k7MNggNEPpz7Ma12MmzU49B5Qtg5pfAsQ1Z5s gaLqSitIXJWxtbXd6RziYDKGMBhQbb4nVV2E9rRn5hYxIsEo4XuIQ4HltVrS5fya MuK1CCN804JTUeaxbgdqDqn+5mBO09NhwwHhPyZ7XnsAx1qEWCBbJLBomUGCv/KN 7XOiw6YgbOQBOHSDnO0z1O9F7Q652PVdeMgQXnhLrCaelL/ZWGZNNdMxQyKKpCDy iHfdG51fAvCMBPdYioIo4hbFjuNcQQ/xFoknAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUeMex7iyaZw4xgVrtGoUze3ZjB5gwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2VNZXg3aXlhWnc0eGdWcnRHb1V6ZTNa akI1Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSyEAwDQYJ KoZIhvcNAQELBQADggEBAEbd6NDq9wL70YKAja8CPh9G+aIH4jcbDY2oaQv7v5jd 110xhu8GH8FTUIx/tSv2cqwP6CAFa8QseqI9UPwwXHdqxAH1IupVkJP8Wi2C17R1 ckPDWMQUvQfYspMKnPGpZZDA10uBBLB1evaoPAvNDHE+hzn9i/wuLKVIdLI9DdsO 7M/X6VD6dRC42QvFloMzObYQM2SpL47Vp/dm54G6eWvUlqufDkbK7uzFD3zVHaKX xmFXb1E9uqtRZOYyybSuc1L5ABxMbvqcuZtEyaTNOEt4Nr4MDCCKRxJOk9DGXppv hQ3Z34FVs7CZ5YtzPLUc3dpqtWkg5TvLHJb1GdkcIT4= -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org