$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/1dplT5SM7R94ktWWnFP6NW4ccz8.roa File: 1dplT5SM7R94ktWWnFP6NW4ccz8.roa (raw, json) Hash identifier: Uy20XTDgjDx9o5Xvzc2ENgqk4rxvUUG8zqEKsQdw6IM= Subject key identifier: D5:DA:65:4F:94:8C:ED:1F:78:92:D5:96:9C:53:FA:35:6E:1C:73:3F Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0DA7 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/1dplT5SM7R94ktWWnFP6NW4ccz8.roa Signing time: Mon 10 Feb 2025 14:06:10 +0000 ROA not before: Mon 10 Feb 2025 14:06:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9416 IP address blocks: 123.252.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3495 (0xda7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Feb 10 14:06:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D5DA654F948CED1F7892D5969C53FA356E1C733F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:46:91:3a:8a:81:25:12:1a:0e:84:e8:38:a1: c8:11:b8:39:01:ae:9a:61:04:bb:44:9e:dd:94:ee: 22:a2:d4:29:8e:26:52:c7:cb:9d:d8:a8:e0:94:b7: de:92:08:80:33:aa:65:17:1a:ee:1b:21:14:32:5e: 79:2b:4d:bc:1f:aa:15:b2:0c:03:ea:9e:fa:f8:38: e9:af:ee:7f:a4:96:8b:53:c6:80:56:0a:a0:3f:b5: 18:26:f3:35:65:6c:06:30:f9:c9:8d:b5:6a:3c:5f: 3e:1f:f2:7b:f0:3f:08:d8:44:15:fb:6a:2b:3b:4c: 76:06:01:a9:43:e0:62:de:d0:1a:ef:7c:92:73:84: 46:2a:49:42:05:ae:24:7f:1c:7d:9e:e1:82:e9:17: 97:35:bc:a1:1d:06:83:4f:47:b4:fe:03:6e:1c:aa: 9c:0f:eb:39:ae:7a:8f:87:bb:5d:41:bf:89:0d:46: 66:5c:0d:9a:c7:75:31:0c:09:76:8a:ff:fd:59:fa: 9e:d8:c5:78:41:c8:51:3f:c6:b6:21:f2:1f:f0:36: 95:6e:14:7c:c4:cb:94:ee:5f:4d:2b:b1:69:8d:28: e0:1d:d4:d2:39:8a:ff:3c:e6:85:09:8c:fb:e7:80: fc:ca:ed:b5:d1:41:0a:75:74:3b:da:11:cb:75:7f: 7e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:DA:65:4F:94:8C:ED:1F:78:92:D5:96:9C:53:FA:35:6E:1C:73:3F X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/1dplT5SM7R94ktWWnFP6NW4ccz8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.252.0.0/18 Signature Algorithm: sha256WithRSAEncryption 6a:29:8f:dc:33:f1:af:c1:cf:a2:db:5a:90:ca:34:0f:b4:a9: 8f:c9:2d:ce:36:75:f0:8a:90:7f:34:eb:40:45:d7:a5:c4:b1: 40:53:61:e6:a9:f4:4b:97:57:9c:49:0c:28:a8:ba:00:f8:76: 07:d1:fa:c1:01:65:10:e0:5e:4c:35:55:b5:22:7d:61:c6:23: 6f:25:85:9c:89:f9:b1:40:47:26:a6:35:e8:ca:b2:9a:68:ab: 53:ea:5c:28:d5:24:ad:30:b1:c0:94:1f:65:d5:22:9c:31:bd: 7e:84:75:e0:0d:e1:c8:e0:c7:bf:50:54:c4:86:65:d7:3a:a8: 3a:a8:2a:03:b4:ae:7c:d6:49:16:f2:01:d4:c2:9b:e0:c0:ec: 32:b1:9d:26:8b:1c:cf:ab:f4:70:e6:35:00:58:92:7f:61:32: 5f:36:9a:6c:61:f3:63:60:e7:5e:dd:b0:a1:ea:4e:76:bc:e3: 57:10:3f:c6:67:c0:56:a0:ac:d6:e3:75:f7:86:34:25:aa:72: 3f:cf:41:4e:1a:66:2f:dd:bc:93:e1:78:8a:d6:13:5b:7e:2c: 1e:2b:8e:25:c5:01:ce:e9:b4:90:d9:99:b7:03:1f:06:83:af: 15:1c:50:f5:bb:27:b5:f6:b1:82:cb:ab:6c:45:8a:37:da:81: 9b:ea:7b:c1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDacwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx NDA2MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ1REE2NTRGOTQ4Q0VE MUY3ODkyRDU5NjlDNTNGQTM1NkUxQzczM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDORpE6ioElEhoOhOg4ocgRuDkBrpphBLtEnt2U7iKi1CmOJlLH y53YqOCUt96SCIAzqmUXGu4bIRQyXnkrTbwfqhWyDAPqnvr4OOmv7n+klotTxoBW CqA/tRgm8zVlbAYw+cmNtWo8Xz4f8nvwPwjYRBX7ais7THYGAalD4GLe0BrvfJJz hEYqSUIFriR/HH2e4YLpF5c1vKEdBoNPR7T+A24cqpwP6zmueo+Hu11Bv4kNRmZc DZrHdTEMCXaK//1Z+p7YxXhByFE/xrYh8h/wNpVuFHzEy5TuX00rsWmNKOAd1NI5 iv885oUJjPvngPzK7bXRQQp1dDvaEct1f35dAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1dplT5SM7R94ktWWnFP6NW4ccz8wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HLzFkcGxUNVNNN1I5NGt0V1du RlA2Tlc0Y2N6OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7 /AAwDQYJKoZIhvcNAQELBQADggEBAGopj9wz8a/Bz6LbWpDKNA+0qY/JLc42dfCK kH8060BF16XEsUBTYeap9EuXV5xJDCiougD4dgfR+sEBZRDgXkw1VbUifWHGI28l hZyJ+bFARyamNejKsppoq1PqXCjVJK0wscCUH2XVIpwxvX6EdeAN4cjgx79QVMSG Zdc6qDqoKgO0rnzWSRbyAdTCm+DA7DKxnSaLHM+r9HDmNQBYkn9hMl82mmxh82Ng 517dsKHqTna841cQP8ZnwFagrNbjdfeGNCWqcj/PQU4aZi/dvJPheIrWE1t+LB4r jiXFAc7ptJDZmbcDHwaDrxUcUPW7J7X2sYLLq2xFijfagZvqe8E= -----END CERTIFICATE-----Generated at Wed Feb 19 22:00:38 2025 by rpki-client