$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/EiZwJDoZyAvvtrT67rMgBofrQcY.roa File: EiZwJDoZyAvvtrT67rMgBofrQcY.roa (raw, json) Hash identifier: cRMNPVJYgzg8bYQCt/Ek3P60I2fnLFGVQmN74UXjxco= Subject key identifier: 12:26:70:24:3A:19:C8:0B:EF:B6:B4:FA:EE:B3:20:06:87:EB:41:C6 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0DA3 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/EiZwJDoZyAvvtrT67rMgBofrQcY.roa Signing time: Mon 10 Feb 2025 14:06:08 +0000 ROA not before: Mon 10 Feb 2025 14:06:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 202.151.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3491 (0xda3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Feb 10 14:06:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=122670243A19C80BEFB6B4FAEEB3200687EB41C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:63:c3:be:3d:52:8c:b7:ac:fd:68:42:69:22: f3:d1:ac:ea:74:5e:d8:4d:98:3f:e3:b5:00:28:a7: 34:4e:d4:e5:46:11:d4:59:f8:d3:ac:18:1f:b2:92: 0a:f8:b3:5e:99:ba:ab:84:f6:64:75:cc:18:50:1c: 07:72:ed:02:a0:22:8b:13:df:d4:5f:4b:20:45:46: 0c:d0:18:11:a9:d3:bb:02:82:d8:e8:80:a4:c5:1b: 03:3b:ce:72:af:95:70:be:3a:88:c5:cf:b2:ef:e4: 21:25:13:4d:7b:8c:e5:60:c8:e2:cb:dc:6e:42:e0: e3:53:69:77:bd:4b:82:9a:f1:4e:f2:ec:f1:ff:29: 34:3c:71:54:d6:57:9d:be:84:39:92:67:f4:28:2a: 97:fb:f2:f7:bb:a9:93:a7:f6:42:56:bf:78:32:a6: 4e:c5:f2:06:8e:b5:c3:88:e7:27:96:0b:f0:03:5c: 37:5c:90:75:a2:8d:72:bf:ae:d7:25:5d:73:02:95: b0:7a:26:c8:b8:03:af:4d:9a:2a:9e:26:1e:bd:69: 77:34:fd:0f:df:a0:97:ea:6d:49:39:79:2e:0c:80: a0:c0:d6:48:ff:22:87:67:52:07:b6:92:89:c2:31: 5a:54:cf:1e:91:36:d6:c0:96:ec:7b:89:20:cf:9e: bf:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:26:70:24:3A:19:C8:0B:EF:B6:B4:FA:EE:B3:20:06:87:EB:41:C6 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/EiZwJDoZyAvvtrT67rMgBofrQcY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.151.48.0/20 Signature Algorithm: sha256WithRSAEncryption 77:72:eb:2f:4c:68:ba:ec:2f:09:59:0c:71:3f:39:6f:72:31: 14:5e:bc:9e:01:3c:74:dd:08:ba:d2:3f:86:87:92:43:ef:dc: e7:a8:4a:ec:32:8f:3c:a6:27:1e:b1:c6:81:e9:43:d0:32:b5: a6:94:af:7d:0c:b7:ae:75:08:82:9e:fb:31:80:03:e6:18:fb: 8e:ba:dd:4e:e2:3e:39:31:69:0b:b4:61:c8:b4:40:42:1b:9d: 66:c8:1c:09:27:fb:34:42:f5:78:64:4b:89:52:9e:73:bc:d6: 26:8f:34:5f:0f:75:92:7a:3b:11:cc:a1:71:aa:57:4f:98:d3: 5a:46:2e:ce:d8:e7:60:32:1b:e1:00:82:64:75:c1:6f:1e:b4: 8a:ff:3b:09:63:32:c5:21:2a:04:00:1e:dc:70:6f:25:ab:d1: 3b:a9:1a:6b:7f:25:c6:8d:94:b2:e7:aa:4e:dd:20:4b:80:1a: df:4c:2e:39:c8:ac:be:c6:7c:fa:63:6e:d7:99:a7:09:34:26: 34:70:76:3e:f0:60:df:1a:0d:79:be:2b:bd:de:2d:00:90:ab: b4:56:d6:fc:d5:96:ef:e4:fd:36:9c:f3:e5:b5:4d:5b:a5:48: f2:02:94:7e:51:a6:d6:8a:d4:0e:ab:59:e2:76:9d:f7:08:1b: 7c:81:90:ec -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDaMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx NDA2MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEyMjY3MDI0M0ExOUM4 MEJFRkI2QjRGQUVFQjMyMDA2ODdFQjQxQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqY8O+PVKMt6z9aEJpIvPRrOp0XthNmD/jtQAopzRO1OVGEdRZ +NOsGB+ykgr4s16ZuquE9mR1zBhQHAdy7QKgIosT39RfSyBFRgzQGBGp07sCgtjo gKTFGwM7znKvlXC+OojFz7Lv5CElE017jOVgyOLL3G5C4ONTaXe9S4Ka8U7y7PH/ KTQ8cVTWV52+hDmSZ/QoKpf78ve7qZOn9kJWv3gypk7F8gaOtcOI5yeWC/ADXDdc kHWijXK/rtclXXMClbB6Jsi4A69NmiqeJh69aXc0/Q/foJfqbUk5eS4MgKDA1kj/ IodnUge2konCMVpUzx6RNtbAlux7iSDPnr+XAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUEiZwJDoZyAvvtrT67rMgBofrQcYwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL0VpWndKRG9aeUF2dnRyVDY3 ck1nQm9mclFjWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATK lzAwDQYJKoZIhvcNAQELBQADggEBAHdy6y9MaLrsLwlZDHE/OW9yMRRevJ4BPHTd CLrSP4aHkkPv3OeoSuwyjzymJx6xxoHpQ9AytaaUr30Mt651CIKe+zGAA+YY+466 3U7iPjkxaQu0Yci0QEIbnWbIHAkn+zRC9XhkS4lSnnO81iaPNF8PdZJ6OxHMoXGq V0+Y01pGLs7Y52AyG+EAgmR1wW8etIr/OwljMsUhKgQAHtxwbyWr0TupGmt/JcaN lLLnqk7dIEuAGt9MLjnIrL7GfPpjbteZpwk0JjRwdj7wYN8aDXm+K73eLQCQq7RW 1vzVlu/k/Tac8+W1TVulSPIClH5RptaK1A6rWeJ2nfcIG3yBkOw= -----END CERTIFICATE-----Generated at Wed Feb 19 22:08:50 2025 by rpki-client