$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/s-xhLNxbk1-KeU0XDTsMiVmKpoo.roa File: s-xhLNxbk1-KeU0XDTsMiVmKpoo.roa (raw, json) Hash identifier: OOhb6Dw4agjIuwkOc7d3DQwXi5kovG59tSyjf55VhVI= Subject key identifier: B3:EC:61:2C:DC:5B:93:5F:8A:79:4D:17:0D:3B:0C:89:59:8A:A6:8A Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D21 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/s-xhLNxbk1-KeU0XDTsMiVmKpoo.roa Signing time: Mon 26 Aug 2024 05:19:35 +0000 ROA not before: Mon 26 Aug 2024 05:19:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 115.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3361 (0xd21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 26 05:19:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B3EC612CDC5B935F8A794D170D3B0C89598AA68A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:d9:0f:0d:6c:4f:13:fb:8e:bd:7c:29:b8:38: 29:00:f6:ee:6b:ac:7c:d5:bf:81:e5:56:1c:1f:ee: 33:b9:78:bf:b5:e2:36:4e:8a:8e:1d:80:99:80:88: eb:86:71:bd:65:72:fe:7d:1e:e7:52:7b:55:48:f6: bd:cd:b3:00:f1:5a:38:ff:9c:43:a3:02:fc:bf:31: ce:27:24:67:7a:ff:07:f2:fd:a8:13:c0:c2:ba:91: 67:ec:a9:bf:94:72:d6:18:63:d3:a6:da:75:e4:b1: 75:db:30:42:be:96:41:63:f8:a3:db:6b:5f:52:60: 14:64:44:35:92:e5:c4:f2:88:f4:30:44:31:a2:83: d1:c5:94:7d:ef:b4:b6:f3:ee:bb:cc:c4:94:0e:bf: 2c:10:52:24:71:fd:5f:fe:c2:e8:87:06:41:b9:00: 50:cb:b7:0f:2b:48:58:59:a0:0a:99:45:8d:5d:ce: c4:cb:4c:b8:ff:e1:df:c2:82:04:10:c9:0b:14:6c: 61:5e:1e:cf:99:06:7b:4d:38:57:f0:43:6a:b9:0e: b4:0d:b1:e5:88:35:b3:d6:a0:ad:bd:9c:f1:b6:58: c1:0f:96:ad:1b:a0:c6:bd:ec:f2:3d:60:86:a8:8f: d0:55:5f:75:f4:c1:5c:02:7e:cf:c3:b1:4a:96:30: 58:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:EC:61:2C:DC:5B:93:5F:8A:79:4D:17:0D:3B:0C:89:59:8A:A6:8A X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/s-xhLNxbk1-KeU0XDTsMiVmKpoo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:0f:26:f3:4e:95:ca:32:78:8b:48:66:22:3f:08:82:ce:81: 90:fe:88:22:52:17:e2:cf:d3:44:15:b4:22:e7:14:be:43:35: 3f:d7:23:20:61:b4:65:88:ed:43:d2:7e:b0:9e:5f:6a:67:d6: 9a:07:ad:9f:c0:e0:a0:73:4b:c6:90:61:6f:9e:5f:03:48:8d: 7c:e0:9f:58:ca:4a:31:81:de:e5:8c:7e:46:94:eb:c9:26:14: 2a:c6:07:6f:e0:fe:98:fc:ff:fb:f1:1a:97:31:e0:0a:c0:bf: 9b:57:0a:63:e9:0b:06:21:f6:0f:14:ec:68:4d:e0:ff:1a:83: 33:43:e0:ee:df:70:21:ea:1b:a0:7e:62:81:66:67:3e:cb:08: d3:af:ec:a7:d7:ca:21:e2:c2:09:9b:ae:21:27:52:40:64:07: b9:57:a1:8c:9d:6e:08:ef:7b:f7:ca:08:4e:ad:69:7e:ec:82: 7f:b5:84:eb:c0:3e:f5:ba:a2:40:d2:f7:ec:e6:bc:f4:d2:7a: 82:61:fb:66:a8:42:3e:20:49:da:7e:63:51:46:74:2d:19:ba: 1b:13:31:c4:47:20:3a:47:6c:50:08:fe:d0:4d:b4:d0:1d:43: 07:10:29:4b:3a:20:33:74:53:2a:ab:f4:58:6e:85:7a:bb:d7: 1c:69:75:d0 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDSEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNDA4MjYw NTE5MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIzRUM2MTJDREM1Qjkz NUY4QTc5NEQxNzBEM0IwQzg5NTk4QUE2OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD32Q8NbE8T+469fCm4OCkA9u5rrHzVv4HlVhwf7jO5eL+14jZO io4dgJmAiOuGcb1lcv59HudSe1VI9r3NswDxWjj/nEOjAvy/Mc4nJGd6/wfy/agT wMK6kWfsqb+UctYYY9Om2nXksXXbMEK+lkFj+KPba19SYBRkRDWS5cTyiPQwRDGi g9HFlH3vtLbz7rvMxJQOvywQUiRx/V/+wuiHBkG5AFDLtw8rSFhZoAqZRY1dzsTL TLj/4d/CggQQyQsUbGFeHs+ZBntNOFfwQ2q5DrQNseWINbPWoK29nPG2WMEPlq0b oMa97PI9YIaoj9BVX3X0wVwCfs/DsUqWMFg1AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUs+xhLNxbk1+KeU0XDTsMiVmKpoowHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL3MteGhMTnhiazEtS2VVMFhE VHNNaVZtS3Bvby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwBz KzANBgkqhkiG9w0BAQsFAAOCAQEAeQ8m806VyjJ4i0hmIj8Igs6BkP6IIlIX4s/T RBW0IucUvkM1P9cjIGG0ZYjtQ9J+sJ5famfWmgetn8DgoHNLxpBhb55fA0iNfOCf WMpKMYHe5Yx+RpTrySYUKsYHb+D+mPz/+/EalzHgCsC/m1cKY+kLBiH2DxTsaE3g /xqDM0Pg7t9wIeoboH5igWZnPssI06/sp9fKIeLCCZuuISdSQGQHuVehjJ1uCO97 98oITq1pfuyCf7WE68A+9bqiQNL37Oa89NJ6gmH7ZqhCPiBJ2n5jUUZ0LRm6GxMx xEcgOkdsUAj+0E200B1DBxApSzogM3RTKqv0WG6FervXHGl10A== -----END CERTIFICATE-----Generated at Fri Sep 27 23:36:46 2024 by rpki-client on console-fra.rpki-client.org