$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/-JCgfFVW1xj2brcjk1b4-gyW1QY.roa File: -JCgfFVW1xj2brcjk1b4-gyW1QY.roa (raw, json) Hash identifier: oO4RdshvbdCPhOy1N3oFa0ParsNZ2rcTMN2+/Whn+zo= Subject key identifier: F8:90:A0:7C:55:56:D7:18:F6:6E:B7:23:93:56:F8:FA:0C:96:D5:06 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0DB3 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/-JCgfFVW1xj2brcjk1b4-gyW1QY.roa Signing time: Mon 10 Feb 2025 14:06:12 +0000 ROA not before: Mon 10 Feb 2025 14:06:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 119.14.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3507 (0xdb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Feb 10 14:06:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F890A07C5556D718F66EB7239356F8FA0C96D506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f3:79:c0:71:aa:1f:e3:e4:cc:36:d5:22:65: 33:47:5b:9f:8b:24:20:de:5e:fc:a3:d7:bc:08:97: 69:f9:f2:ba:7e:4d:5b:ae:78:58:56:c6:0d:6d:8e: 08:ee:fa:32:46:ec:9c:2e:18:d2:c7:8b:38:cb:c7: d3:ab:ad:f0:bb:05:05:5d:d5:c4:91:f2:14:7a:a2: b9:57:ef:79:fe:9a:20:b9:0b:d0:a8:52:8b:45:b3: db:21:25:6c:e4:21:b7:3d:33:2e:fb:38:ff:82:05: 94:ac:c4:52:85:56:87:71:fb:a2:96:a9:3e:c6:00: 8f:2a:bd:d6:71:c7:59:e8:ff:3d:06:36:9a:f5:c1: a7:aa:59:30:ed:04:46:4a:48:f1:52:ce:ff:97:10: 4f:2e:0b:c3:3c:91:64:0b:d1:ca:48:b4:26:18:58: 72:ff:bd:47:98:37:0b:d8:ce:c9:29:43:36:2a:6a: d5:3b:a3:df:20:7d:ee:f0:aa:42:1f:a4:6d:53:e1: f2:f7:0c:ff:f2:c1:0f:60:1e:83:b5:50:3a:19:e6: e3:1b:1d:3f:d4:47:71:c3:a7:70:d1:57:e6:26:c9: 83:04:ab:e3:46:1e:13:ee:db:a4:df:1e:b6:b9:0f: 5f:24:ce:3b:28:7e:70:fd:4d:83:90:24:83:81:a2: 11:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:90:A0:7C:55:56:D7:18:F6:6E:B7:23:93:56:F8:FA:0C:96:D5:06 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/-JCgfFVW1xj2brcjk1b4-gyW1QY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.14.0.0/17 Signature Algorithm: sha256WithRSAEncryption 7d:ec:05:b6:19:4a:3c:a2:f5:24:d5:4f:46:30:f5:bc:c8:de: ce:42:41:2c:e0:0b:9f:f5:e0:af:b0:4b:55:b0:07:8b:a8:9c: 51:86:d4:b9:31:63:8f:bc:e5:20:fb:e8:b0:ad:4a:f9:57:da: 8b:c0:af:3f:35:ed:ca:73:b0:0d:72:bb:78:0e:c3:3b:fb:b7: d1:ed:9a:ca:be:f2:be:28:6e:1c:13:77:89:9d:60:61:5c:02: 84:cd:aa:03:50:a4:aa:f6:d4:f9:5d:8c:7b:bd:e2:fa:55:0c: 6c:da:91:c0:85:19:d3:87:22:16:4a:62:06:5c:2e:42:92:52: e8:b2:b0:9d:74:f8:08:8c:c8:d9:e2:18:5e:aa:b8:60:df:56: e3:1c:e3:d3:91:ad:bd:1d:dd:53:a2:ee:0d:62:36:e6:cc:5b: f3:dc:0b:ec:ea:11:96:ff:18:00:3a:7d:be:24:c2:f3:2a:c4: b8:2b:be:5c:c1:82:aa:e1:56:49:0e:1e:9c:6d:5b:64:1a:c5: 54:d5:2f:61:b0:42:6f:47:f4:fc:e3:64:ad:ff:33:9d:be:74: 49:45:7b:38:fe:ac:01:c0:59:d0:7c:26:75:e3:3d:3d:78:95: e2:0e:4e:34:10:97:28:d0:56:76:8d:86:1c:3e:f4:21:38:a9: b4:db:0b:5f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDbMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx NDA2MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4OTBBMDdDNTU1NkQ3 MThGNjZFQjcyMzkzNTZGOEZBMEM5NkQ1MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC783nAcaof4+TMNtUiZTNHW5+LJCDeXvyj17wIl2n58rp+TVuu eFhWxg1tjgju+jJG7JwuGNLHizjLx9OrrfC7BQVd1cSR8hR6orlX73n+miC5C9Co UotFs9shJWzkIbc9My77OP+CBZSsxFKFVodx+6KWqT7GAI8qvdZxx1no/z0GNpr1 waeqWTDtBEZKSPFSzv+XEE8uC8M8kWQL0cpItCYYWHL/vUeYNwvYzskpQzYqatU7 o98gfe7wqkIfpG1T4fL3DP/ywQ9gHoO1UDoZ5uMbHT/UR3HDp3DRV+YmyYMEq+NG HhPu26TfHra5D18kzjsofnD9TYOQJIOBohHvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+JCgfFVW1xj2brcjk1b4+gyW1QYwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HLy1KQ2dmRlZXMXhqMmJyY2pr MWI0LWd5VzFRWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3 DgAwDQYJKoZIhvcNAQELBQADggEBAH3sBbYZSjyi9STVT0Yw9bzI3s5CQSzgC5/1 4K+wS1WwB4uonFGG1LkxY4+85SD76LCtSvlX2ovArz817cpzsA1yu3gOwzv7t9Ht msq+8r4obhwTd4mdYGFcAoTNqgNQpKr21PldjHu94vpVDGzakcCFGdOHIhZKYgZc LkKSUuiysJ10+AiMyNniGF6quGDfVuMc49ORrb0d3VOi7g1iNubMW/PcC+zqEZb/ GAA6fb4kwvMqxLgrvlzBgqrhVkkOHpxtW2QaxVTVL2GwQm9H9PzjZK3/M52+dElF ezj+rAHAWdB8JnXjPT14leIOTjQQlyjQVnaNhhw+9CE4qbTbC18= -----END CERTIFICATE-----Generated at Wed Feb 19 22:06:17 2025 by rpki-client