$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/18_3HhBAfjTGtrEiqxyzOhoQgf0.roa File: 18_3HhBAfjTGtrEiqxyzOhoQgf0.roa (raw, json) Hash identifier: WY+233z5yIeXkwEKbC8ejtiPAbBbmBcudv/Cfx5hTvQ= Subject key identifier: D7:CF:F7:1E:10:40:7E:34:C6:B6:B1:22:AB:1C:B3:3A:1A:10:81:FD Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D9C Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/18_3HhBAfjTGtrEiqxyzOhoQgf0.roa Signing time: Mon 10 Feb 2025 14:06:07 +0000 ROA not before: Mon 10 Feb 2025 14:06:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 119.14.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3484 (0xd9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Feb 10 14:06:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D7CFF71E10407E34C6B6B122AB1CB33A1A1081FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6c:1f:d6:f0:54:77:a1:f1:de:f4:b7:6f:69: 22:18:ca:19:32:20:6c:05:d1:49:c2:a4:3b:59:25: 75:90:54:77:ec:06:da:dc:b1:91:7d:4d:09:83:ad: b4:45:e9:d6:22:8b:b4:ac:41:9a:01:a5:b1:1c:5c: c1:95:b8:6e:76:eb:ab:f2:5d:83:da:10:76:bf:a5: 03:34:15:f5:cd:7d:7c:81:dc:6e:aa:b1:57:af:d0: 31:a3:8a:21:d5:5b:92:22:e9:d1:ae:29:0e:e6:f4: 6e:9e:8a:41:fe:f0:2b:d8:15:3f:a2:53:db:f1:07: 4b:6f:f4:07:dd:29:db:7c:9e:7e:dc:fb:0d:fd:dd: 7b:42:9a:93:6e:f9:d1:08:02:fa:3c:cd:a8:8f:5c: 93:30:fe:22:12:5f:7c:0c:12:1a:2a:fb:96:b3:4a: 57:2c:8b:3b:d5:c2:29:f2:64:11:d6:17:93:9d:f7: e7:2a:e1:c9:38:5d:3e:a2:d4:4e:b1:63:f4:86:eb: ff:e8:a7:4f:2a:e2:d8:a0:34:1a:f3:28:33:ea:c0: b6:a6:dd:f7:5d:ec:71:32:5c:3e:11:b0:14:67:2e: 45:59:5f:a3:72:ab:8f:13:73:00:58:35:08:c9:68: 7b:c2:86:0f:21:b0:ee:68:7b:b1:57:00:7f:63:4e: f1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:CF:F7:1E:10:40:7E:34:C6:B6:B1:22:AB:1C:B3:3A:1A:10:81:FD X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/18_3HhBAfjTGtrEiqxyzOhoQgf0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.14.0.0/16 Signature Algorithm: sha256WithRSAEncryption 92:0c:54:c9:a6:87:1d:b8:16:da:c0:0a:f9:fb:c6:2c:15:e8: 17:ac:ed:43:ce:93:9a:a1:26:60:6c:88:be:21:88:2f:2c:95: 8a:61:25:1f:c0:f9:ab:79:ae:82:5d:4d:04:23:4a:7b:6f:9d: c9:81:4f:17:20:4d:25:ea:c4:4b:2d:d4:22:32:d2:17:9b:9f: db:1d:99:61:e6:b7:d6:eb:a4:d8:fe:b8:98:23:29:1c:e2:52: 2e:8c:4b:d8:38:bf:bd:49:29:7c:45:d8:2e:b4:b1:b5:80:da: 0c:43:78:ad:71:5a:b0:26:c6:4f:11:56:ca:9c:09:b7:63:e8: 36:c4:91:25:06:6d:0e:a1:8b:6d:24:c8:f0:36:ab:57:f4:ee: 46:7e:80:24:a9:ff:18:a7:75:45:3c:2f:6a:64:9e:07:fa:b8: 7e:45:07:d9:88:ff:93:6f:1f:00:60:e9:d2:84:25:9f:f1:25: 2f:4d:d2:9a:4c:a8:9d:12:6f:2b:46:d1:a2:d3:de:5a:fe:12: fa:f8:78:14:5a:ea:70:ca:30:90:2f:ff:09:e6:ef:97:99:e6: ba:9b:77:77:fd:78:ac:0b:f5:38:12:7c:fa:39:5a:57:c3:51: 94:59:a2:56:cb:86:be:ed:2f:c2:6d:9f:d0:7a:66:4f:bb:db: 29:eb:f5:82 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDZwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx NDA2MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3Q0ZGNzFFMTA0MDdF MzRDNkI2QjEyMkFCMUNCMzNBMUExMDgxRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtbB/W8FR3ofHe9LdvaSIYyhkyIGwF0UnCpDtZJXWQVHfsBtrc sZF9TQmDrbRF6dYii7SsQZoBpbEcXMGVuG5266vyXYPaEHa/pQM0FfXNfXyB3G6q sVev0DGjiiHVW5Ii6dGuKQ7m9G6eikH+8CvYFT+iU9vxB0tv9AfdKdt8nn7c+w39 3XtCmpNu+dEIAvo8zaiPXJMw/iISX3wMEhoq+5azSlcsizvVwinyZBHWF5Od9+cq 4ck4XT6i1E6xY/SG6//op08q4tigNBrzKDPqwLam3fdd7HEyXD4RsBRnLkVZX6Ny q48TcwBYNQjJaHvChg8hsO5oe7FXAH9jTvGJAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU18/3HhBAfjTGtrEiqxyzOhoQgf0wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HLzE4XzNIaEJBZmpUR3RyRWlx eHl6T2hvUWdmMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB3 DjANBgkqhkiG9w0BAQsFAAOCAQEAkgxUyaaHHbgW2sAK+fvGLBXoF6ztQ86TmqEm YGyIviGILyyVimElH8D5q3mugl1NBCNKe2+dyYFPFyBNJerESy3UIjLSF5uf2x2Z Yea31uuk2P64mCMpHOJSLoxL2Di/vUkpfEXYLrSxtYDaDEN4rXFasCbGTxFWypwJ t2PoNsSRJQZtDqGLbSTI8DarV/TuRn6AJKn/GKd1RTwvamSeB/q4fkUH2Yj/k28f AGDp0oQln/ElL03SmkyonRJvK0bRotPeWv4S+vh4FFrqcMowkC//Cebvl5nmupt3 d/14rAv1OBJ8+jlaV8NRlFmiVsuGvu0vwm2f0HpmT7vbKev1gg== -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:43 2025 by rpki-client