$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/uUf6pYXIxkopfQUMpH1HfyOBgH4.roa File: uUf6pYXIxkopfQUMpH1HfyOBgH4.roa (raw, json) Hash identifier: a+3fMIDbmIWSQZX68xaCferk2MEli3fwzZhZdKkXYFs= Subject key identifier: B9:47:FA:A5:85:C8:C6:4A:29:7D:05:0C:A4:7D:47:7F:23:81:80:7E Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D1E Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/uUf6pYXIxkopfQUMpH1HfyOBgH4.roa Signing time: Mon 26 Aug 2024 05:19:35 +0000 ROA not before: Mon 26 Aug 2024 05:19:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 115.43.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3358 (0xd1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 26 05:19:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B947FAA585C8C64A297D050CA47D477F2381807E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6d:4f:29:d0:87:68:35:5e:80:84:ba:53:92: 7a:53:a8:b5:98:b6:29:be:f3:dc:29:82:0a:a9:17: c6:50:ce:ec:b8:4f:10:d4:33:1d:a8:71:6b:67:49: f1:9e:2f:eb:7e:ac:e3:d5:6a:93:f8:cd:bc:ad:53: 66:12:14:3e:22:ed:fa:c3:97:30:78:f8:7b:4b:83: 9e:c0:ce:40:b2:e4:62:94:da:33:11:9c:d0:23:90: c1:46:48:03:72:90:3f:27:56:50:e1:ab:00:86:d4: be:ab:93:c1:e9:dd:36:8e:3f:ad:94:4a:22:7d:44: 0a:26:e5:84:3a:21:7b:e8:68:e6:c9:fc:c8:54:d7: ad:61:93:6e:e4:d6:0a:cf:9e:79:e1:cc:86:5d:33: 8a:ec:17:2d:99:f2:c7:df:78:14:d3:bd:26:94:59: 99:4f:aa:37:f7:ef:21:fe:f3:53:5f:2e:14:81:6e: 64:28:9a:95:4b:d2:cd:44:10:c5:69:fd:3f:bd:56: 8c:89:24:05:35:eb:26:68:54:c6:8a:de:ee:59:78: 80:15:0b:60:bd:1e:4f:83:24:38:54:a5:e1:f8:b5: 26:b1:46:f0:ba:bd:87:ea:23:e8:d5:5a:cb:8d:b2: 4f:8f:41:cb:f6:4b:74:52:8e:5b:49:4b:b1:ba:a0: 4c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:47:FA:A5:85:C8:C6:4A:29:7D:05:0C:A4:7D:47:7F:23:81:80:7E X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/uUf6pYXIxkopfQUMpH1HfyOBgH4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.43.0.0/17 Signature Algorithm: sha256WithRSAEncryption 30:de:c3:c8:8c:c2:59:ca:ec:4a:cd:b6:80:cf:5b:89:ef:93: 06:b5:6f:52:0a:c1:af:b1:49:84:db:0b:88:5e:d0:29:69:41: e6:6a:97:fd:9b:0f:aa:a1:9a:cd:e9:b7:68:f6:f3:7a:ae:45: fc:3e:66:30:a5:e6:38:a3:61:c3:b1:9e:bb:60:64:32:c9:b5: 07:2b:00:ff:c7:90:d0:25:22:d1:de:27:72:9e:53:52:8a:2b: 79:85:af:0b:5d:7a:70:7f:59:8a:4e:7e:fb:ce:7d:b1:04:1b: 94:fd:45:97:7c:d8:29:58:bb:8b:9b:12:01:bd:17:ab:42:5f: 42:43:8b:de:bc:36:fa:41:68:2c:10:27:a4:b0:c6:8f:5c:69: 52:a7:15:88:44:89:72:4e:cc:39:bb:f1:04:51:1e:81:dc:24: ff:ae:f5:fa:03:65:cf:22:a0:39:bb:3a:fd:2a:83:35:fb:ae: 07:ec:dd:5e:4a:31:ba:1a:b8:8c:6e:61:c2:b3:1c:b8:2c:93: 43:9e:fe:e1:93:2e:09:8e:87:02:73:8f:ae:76:08:8b:00:d8: 19:64:28:90:36:07:fc:84:4f:b5:44:a5:71:3d:c0:4d:b4:40: 2a:ad:a8:72:92:48:12:00:2a:26:9d:af:60:83:c9:27:05:22: f5:ce:9f:22 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDR4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNDA4MjYw NTE5MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI5NDdGQUE1ODVDOEM2 NEEyOTdEMDUwQ0E0N0Q0NzdGMjM4MTgwN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChbU8p0IdoNV6AhLpTknpTqLWYtim+89wpggqpF8ZQzuy4TxDU Mx2ocWtnSfGeL+t+rOPVapP4zbytU2YSFD4i7frDlzB4+HtLg57AzkCy5GKU2jMR nNAjkMFGSANykD8nVlDhqwCG1L6rk8Hp3TaOP62USiJ9RAom5YQ6IXvoaObJ/MhU 161hk27k1grPnnnhzIZdM4rsFy2Z8sffeBTTvSaUWZlPqjf37yH+81NfLhSBbmQo mpVL0s1EEMVp/T+9VoyJJAU16yZoVMaK3u5ZeIAVC2C9Hk+DJDhUpeH4tSaxRvC6 vYfqI+jVWsuNsk+PQcv2S3RSjltJS7G6oEwDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUuUf6pYXIxkopfQUMpH1HfyOBgH4wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL3VVZjZwWVhJeGtvcGZRVU1w SDFIZnlPQmdINC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAdz KwAwDQYJKoZIhvcNAQELBQADggEBADDew8iMwlnK7ErNtoDPW4nvkwa1b1IKwa+x SYTbC4he0ClpQeZql/2bD6qhms3pt2j283quRfw+ZjCl5jijYcOxnrtgZDLJtQcr AP/HkNAlItHeJ3KeU1KKK3mFrwtdenB/WYpOfvvOfbEEG5T9RZd82ClYu4ubEgG9 F6tCX0JDi968NvpBaCwQJ6Swxo9caVKnFYhEiXJOzDm78QRRHoHcJP+u9foDZc8i oDm7Ov0qgzX7rgfs3V5KMboauIxuYcKzHLgsk0Oe/uGTLgmOhwJzj652CIsA2Blk KJA2B/yET7VEpXE9wE20QCqtqHKSSBIAKiadr2CDyScFIvXOnyI= -----END CERTIFICATE-----Generated at Fri Sep 27 23:36:46 2024 by rpki-client on console-fra.rpki-client.org