$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/WB6pWXEDFoyHp-ozKzcudllc-aY.roa File: WB6pWXEDFoyHp-ozKzcudllc-aY.roa (raw, json) Hash identifier: mWl+7lTH3TMOp0L4A4x6QhkAffUGJNWAdwZUNWuC7MU= Subject key identifier: 58:1E:A9:59:71:03:16:8C:87:A7:EA:33:2B:37:2E:76:59:5C:F9:A6 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0E38 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/WB6pWXEDFoyHp-ozKzcudllc-aY.roa Signing time: Thu 20 Mar 2025 07:33:29 +0000 ROA not before: Thu 20 Mar 2025 07:33:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9416 IP address blocks: 203.118.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 03:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3640 (0xe38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Mar 20 07:33:29 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=581EA9597103168C87A7EA332B372E76595CF9A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2c:cc:ae:c0:54:a0:5d:ac:59:b3:cf:9a:5f: 43:9d:14:0e:c8:03:ab:6f:34:83:3d:7d:3c:a6:68: 9b:dd:32:0d:26:af:1e:5c:a5:93:0a:52:3b:21:f0: ea:5d:77:8e:5c:8f:f4:ad:f4:a6:18:e3:e7:1d:81: 2f:8a:4c:b1:0e:ce:d1:7a:2c:a0:a1:24:31:22:40: 77:6c:82:7f:18:0a:f7:e3:5b:31:c7:d8:4e:19:d8: 5f:f3:a3:71:91:92:50:2b:44:52:3c:a4:ba:13:43: 57:ea:d1:ec:a6:8d:75:6f:40:ed:a5:8b:68:2b:5c: c5:c7:51:5d:12:ea:18:fc:f7:54:5b:8a:4a:51:d7: 1d:b8:f8:35:4e:e0:c0:51:a3:67:a9:c8:f4:f5:c5: 13:f8:e7:fc:1d:2b:71:5b:3a:77:20:2b:19:c0:2c: 40:b3:63:41:bc:2e:f4:d1:2e:67:10:37:42:23:6a: 21:94:e0:b9:59:0c:6b:26:d5:25:72:da:1b:d4:bf: 8d:b3:b5:d8:b3:b4:2f:74:d8:f9:27:ed:2e:16:12: f9:de:4e:f6:6e:96:40:b7:3e:79:0e:ee:e1:f2:cc: 84:ae:c0:11:08:d9:d0:6f:fe:36:54:b5:96:7a:10: 98:b0:7a:1e:a6:b7:4d:74:da:81:55:27:01:b8:91: cc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1E:A9:59:71:03:16:8C:87:A7:EA:33:2B:37:2E:76:59:5C:F9:A6 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/WB6pWXEDFoyHp-ozKzcudllc-aY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.118.224.0/20 Signature Algorithm: sha256WithRSAEncryption 13:bf:49:99:3e:97:a8:1c:e4:47:3f:12:31:8c:f1:a7:89:75: cc:59:47:97:67:5e:29:e3:3f:8d:e9:16:aa:ce:76:98:a1:e9: ac:f9:a6:98:47:46:a3:c5:ef:82:bf:f0:e8:38:b7:69:d9:b9: 11:51:ff:24:1c:52:37:ff:2c:0c:b3:94:32:7d:e5:55:35:7d: 31:6c:4b:fa:a5:29:ec:09:17:6b:f8:40:82:b7:36:84:30:bd: 9c:fe:5b:cd:12:4b:fd:47:33:18:f0:4e:4b:36:b6:4e:27:c1: f5:77:36:47:3a:5c:17:68:29:a0:01:e6:a3:ea:50:7c:c1:fe: 7f:b7:90:01:d1:02:81:fa:6b:e4:df:9e:05:47:9d:6a:f8:bb: b7:89:9d:2a:23:b5:f0:80:dd:8a:1b:77:df:94:3c:ee:bb:8f: 70:73:28:8e:52:07:09:25:1d:33:74:9f:38:ea:ad:c6:dd:e1: ad:6b:d3:12:3f:27:81:d7:f5:9d:65:e2:88:c1:fe:6b:09:e1: f3:32:7a:1d:56:d8:8f:18:bd:08:32:00:aa:59:11:a9:80:0d: 04:44:f8:49:c2:27:66:31:11:57:78:19:ae:f7:28:f6:62:a6: b1:55:eb:a3:49:13:66:42:f5:33:7d:58:6e:cb:a9:8c:d4:9c: 96:ba:81:31 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDjgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAzMjAw NzMzMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU4MUVBOTU5NzEwMzE2 OEM4N0E3RUEzMzJCMzcyRTc2NTk1Q0Y5QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiLMyuwFSgXaxZs8+aX0OdFA7IA6tvNIM9fTymaJvdMg0mrx5c pZMKUjsh8Opdd45cj/St9KYY4+cdgS+KTLEOztF6LKChJDEiQHdsgn8YCvfjWzHH 2E4Z2F/zo3GRklArRFI8pLoTQ1fq0eymjXVvQO2li2grXMXHUV0S6hj891RbikpR 1x24+DVO4MBRo2epyPT1xRP45/wdK3FbOncgKxnALECzY0G8LvTRLmcQN0IjaiGU 4LlZDGsm1SVy2hvUv42ztdiztC902Pkn7S4WEvneTvZulkC3PnkO7uHyzISuwBEI 2dBv/jZUtZZ6EJiweh6mt0102oFVJwG4kcxtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUWB6pWXEDFoyHp+ozKzcudllc+aYwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1dCNnBXWEVERm95SHAtb3pL emN1ZGxsYy1hWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATL duAwDQYJKoZIhvcNAQELBQADggEBABO/SZk+l6gc5Ec/EjGM8aeJdcxZR5dnXinj P43pFqrOdpih6az5pphHRqPF74K/8Og4t2nZuRFR/yQcUjf/LAyzlDJ95VU1fTFs S/qlKewJF2v4QIK3NoQwvZz+W80SS/1HMxjwTks2tk4nwfV3Nkc6XBdoKaAB5qPq UHzB/n+3kAHRAoH6a+TfngVHnWr4u7eJnSojtfCA3Yobd9+UPO67j3BzKI5SBwkl HTN0nzjqrcbd4a1r0xI/J4HX9Z1l4ojB/msJ4fMyeh1W2I8YvQgyAKpZEamADQRE +EnCJ2YxEVd4Ga73KPZiprFV66NJE2ZC9TN9WG7LqYzUnJa6gTE= -----END CERTIFICATE-----Generated at Fri Apr 18 02:25:59 2025 by rpki-client