$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/FB8v7zwguXqAYn6v6dJyElXNI_o.roa File: FB8v7zwguXqAYn6v6dJyElXNI_o.roa (raw, json) Hash identifier: T+dAzxvJgQnjENflVWX2sUxWtQbv05jVeGA/oM20dos= Subject key identifier: 14:1F:2F:EF:3C:20:B9:7A:80:62:7E:AF:E9:D2:72:12:55:CD:23:FA Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0DA8 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/FB8v7zwguXqAYn6v6dJyElXNI_o.roa Signing time: Mon 10 Feb 2025 14:06:10 +0000 ROA not before: Mon 10 Feb 2025 14:06:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 220.157.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3496 (0xda8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Feb 10 14:06:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=141F2FEF3C20B97A80627EAFE9D2721255CD23FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:28:41:4e:01:80:51:b6:2c:2c:05:3b:7d:99: 9e:9b:d4:b9:bf:21:cb:4a:67:c5:00:1b:31:7b:bd: 7d:5c:48:1d:93:4f:c9:f8:a3:e0:a5:7d:2e:e4:bf: 50:4c:a7:80:d9:a5:7f:a0:03:1e:d5:5b:61:5f:1c: 98:15:ea:f9:0d:9b:4a:08:08:a4:c3:7d:9f:47:e9: 33:34:31:b0:f9:2b:3c:e0:82:91:72:0c:84:b1:73: ed:7b:63:15:83:2c:24:a2:97:a4:e5:d9:3b:e8:1e: d4:33:3a:d1:96:7b:52:b8:45:50:6b:6c:d1:df:3a: 92:c3:0a:65:f7:f4:3b:94:95:d9:12:77:25:ff:a8: 08:ca:ff:e2:cd:11:17:37:9a:36:79:50:03:0b:08: a1:2f:8e:94:5c:3c:42:c4:0f:7b:5a:d1:87:f5:a2: a6:64:03:3f:16:33:21:f1:c8:8a:cd:ae:0c:ba:7f: 13:e6:df:e0:cf:28:86:1a:65:94:52:16:d9:40:53: 1d:93:03:a0:e1:dc:fb:41:f0:97:db:ff:a9:96:de: ec:dc:69:b7:9f:2f:fd:f2:f8:79:32:eb:41:3b:3e: d3:b3:d1:85:3e:47:c5:0a:f6:93:fe:64:a2:16:12: 7e:ba:99:d5:02:14:29:02:35:ac:ae:3b:7d:a7:d9: ba:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:1F:2F:EF:3C:20:B9:7A:80:62:7E:AF:E9:D2:72:12:55:CD:23:FA X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/FB8v7zwguXqAYn6v6dJyElXNI_o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.157.112.0/20 Signature Algorithm: sha256WithRSAEncryption 95:0f:fa:90:d3:ca:ac:bd:f4:f8:75:bb:ac:06:49:08:ea:d1: cb:9e:94:d7:9c:6c:48:cf:28:d3:61:88:9f:69:e2:89:f6:40: e6:98:ed:7b:f3:35:fe:2b:39:28:9d:1e:31:d8:54:6d:64:2c: 8b:09:04:12:32:96:60:41:44:48:34:36:9e:e6:86:94:22:d3: b2:5b:1a:ce:72:36:12:db:39:57:a3:b2:6a:4f:8f:b6:cb:12: e3:16:8f:8b:fb:4c:62:44:a8:7d:45:7d:70:c0:c9:12:9b:3c: ca:26:e9:f8:15:17:45:fe:38:bf:c3:4e:f5:07:dc:ba:a5:f3: 98:bc:9d:0a:16:74:68:f7:11:a9:3c:6f:d3:bf:35:3c:c9:46: 5a:f1:be:87:e7:06:e6:82:0d:f3:7e:58:f1:33:ff:7d:6f:bd: 27:18:79:f4:99:d1:20:51:76:99:80:2b:d3:e2:1e:02:2b:b9: a6:64:37:2d:50:af:c4:9f:40:2d:67:2f:0f:97:4d:dc:19:05: c8:99:2d:8a:2f:cb:c4:a2:6e:5f:ce:16:89:e1:83:b5:2f:38: 05:d4:bb:70:92:08:42:bb:34:31:b8:ad:f4:ff:69:df:ec:6e: 18:e8:42:76:35:cf:ae:d2:2c:9a:d1:8f:23:29:0c:9b:c5:5a: 9c:0e:b8:25 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDagwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx NDA2MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0MUYyRkVGM0MyMEI5 N0E4MDYyN0VBRkU5RDI3MjEyNTVDRDIzRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSKEFOAYBRtiwsBTt9mZ6b1Lm/IctKZ8UAGzF7vX1cSB2TT8n4 o+ClfS7kv1BMp4DZpX+gAx7VW2FfHJgV6vkNm0oICKTDfZ9H6TM0MbD5KzzggpFy DISxc+17YxWDLCSil6Tl2TvoHtQzOtGWe1K4RVBrbNHfOpLDCmX39DuUldkSdyX/ qAjK/+LNERc3mjZ5UAMLCKEvjpRcPELED3ta0Yf1oqZkAz8WMyHxyIrNrgy6fxPm 3+DPKIYaZZRSFtlAUx2TA6Dh3PtB8Jfb/6mW3uzcabefL/3y+Hky60E7PtOz0YU+ R8UK9pP+ZKIWEn66mdUCFCkCNayuO32n2bp/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFB8v7zwguXqAYn6v6dJyElXNI/owHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL0ZCOHY3endndVhxQVluNnY2 ZEp5RWxYTklfby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATc nXAwDQYJKoZIhvcNAQELBQADggEBAJUP+pDTyqy99Ph1u6wGSQjq0cuelNecbEjP KNNhiJ9p4on2QOaY7XvzNf4rOSidHjHYVG1kLIsJBBIylmBBREg0Np7mhpQi07Jb Gs5yNhLbOVejsmpPj7bLEuMWj4v7TGJEqH1FfXDAyRKbPMom6fgVF0X+OL/DTvUH 3Lql85i8nQoWdGj3Eak8b9O/NTzJRlrxvofnBuaCDfN+WPEz/31vvScYefSZ0SBR dpmAK9PiHgIruaZkNy1Qr8SfQC1nLw+XTdwZBciZLYovy8Sibl/OFonhg7UvOAXU u3CSCEK7NDG4rfT/ad/sbhjoQnY1z67SLJrRjyMpDJvFWpwOuCU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:05:08 2025 by rpki-client