$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/GiV0cBS3FTJYP3EGpt0KeLPQI64.roa File: GiV0cBS3FTJYP3EGpt0KeLPQI64.roa (raw, json) Hash identifier: 4TKiy3UyOubfUf1FT4PZVMt83Fv/tbVCzKwii5Saq10= Subject key identifier: 1A:25:74:70:14:B7:15:32:58:3F:71:06:A6:DD:0A:78:B3:D0:23:AE Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D17 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/GiV0cBS3FTJYP3EGpt0KeLPQI64.roa Signing time: Mon 26 Aug 2024 05:19:34 +0000 ROA not before: Mon 26 Aug 2024 05:19:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9416 IP address blocks: 202.151.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3351 (0xd17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 26 05:19:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1A25747014B71532583F7106A6DD0A78B3D023AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0f:7c:88:3c:ec:56:e9:fe:6e:68:62:39:6b: 21:b2:68:a5:7b:78:c5:97:1f:65:88:73:d2:63:97: b0:b8:53:33:fb:08:8a:4e:90:0d:04:3b:23:bc:1e: cf:c1:e4:03:7a:0e:9d:7f:38:54:9e:c3:fc:89:6b: f7:db:3f:28:d5:c4:7b:9d:1d:5e:3f:75:4d:f3:15: 3a:42:0f:72:23:e3:e9:f3:3d:83:c4:82:ff:eb:9b: b3:82:d9:82:6c:79:94:d9:b0:0f:5a:d0:2c:5d:99: f8:ee:22:9a:e2:b3:a6:63:e6:3c:6c:2b:01:fe:75: 7f:6f:d2:2c:6e:09:a5:0e:0e:29:41:80:9a:80:78: ad:22:a4:8a:48:2e:ea:6f:70:09:ef:de:59:e5:fd: 79:eb:de:8a:cd:39:72:7b:c4:10:87:64:44:e9:19: 69:14:0a:0e:4e:f6:be:40:ad:82:ea:cf:0b:d4:1a: f5:15:3f:b8:ac:f6:8f:02:76:7b:ae:f2:47:c3:1e: e4:5c:2d:09:e4:cf:75:56:f4:d9:7e:e5:fd:fe:49: ac:de:c8:f6:4f:43:34:47:81:47:0e:3f:8a:f7:c0: 39:7c:af:77:bc:7e:db:f3:e9:20:08:71:8a:3a:f3: 34:92:20:84:04:48:61:00:d8:36:91:1e:5f:5a:64: 3e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:25:74:70:14:B7:15:32:58:3F:71:06:A6:DD:0A:78:B3:D0:23:AE X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/GiV0cBS3FTJYP3EGpt0KeLPQI64.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.151.48.0/20 Signature Algorithm: sha256WithRSAEncryption 05:74:27:4b:fa:84:9e:22:e9:ec:a6:00:d2:b6:f8:f4:84:89: 20:c4:5b:f4:1f:86:47:c5:4f:04:1e:a0:6e:28:e3:22:38:58: 53:26:3b:a9:22:b5:d1:8c:27:24:ba:96:08:c1:6a:9c:03:09: a1:60:17:61:9a:85:93:f8:af:9e:3a:80:3b:d6:d3:87:54:bd: 72:4c:53:de:bf:98:a6:c5:6d:4d:7d:bf:5f:d0:f9:52:4e:25: a1:42:92:f4:2d:4a:ce:0f:a7:40:31:98:31:e8:ad:76:9e:f5: 54:ce:87:eb:32:73:4b:b8:f1:86:65:87:a8:7b:dc:53:cd:ce: 9d:38:69:59:29:55:96:1b:19:78:4e:39:45:e0:b0:5d:50:11: 86:12:33:76:c9:de:d0:b1:fe:ec:87:a8:ed:67:eb:fa:14:21: a9:14:13:1f:01:7f:ae:2c:b0:1b:03:b4:7d:00:f2:8b:a2:fd: b9:56:c7:bc:b0:1f:36:04:12:8b:6b:c0:a9:99:6b:a9:c6:b6: 74:ad:77:46:3d:cf:e6:bd:a7:fd:fa:3e:8f:12:f5:91:96:f7: 63:f9:f9:b8:db:a4:b7:ef:34:73:ae:1c:ae:c6:ba:f9:b9:33: 7e:39:aa:cc:13:b7:c1:90:e6:f2:8a:0d:d0:46:f3:72:c4:a4: 10:b3:80:2a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDRcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNDA4MjYw NTE5MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFBMjU3NDcwMTRCNzE1 MzI1ODNGNzEwNkE2REQwQTc4QjNEMDIzQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2D3yIPOxW6f5uaGI5ayGyaKV7eMWXH2WIc9Jjl7C4UzP7CIpO kA0EOyO8Hs/B5AN6Dp1/OFSew/yJa/fbPyjVxHudHV4/dU3zFTpCD3Ij4+nzPYPE gv/rm7OC2YJseZTZsA9a0CxdmfjuIpris6Zj5jxsKwH+dX9v0ixuCaUODilBgJqA eK0ipIpILupvcAnv3lnl/Xnr3orNOXJ7xBCHZETpGWkUCg5O9r5ArYLqzwvUGvUV P7is9o8Cdnuu8kfDHuRcLQnkz3VW9Nl+5f3+SazeyPZPQzRHgUcOP4r3wDl8r3e8 ftvz6SAIcYo68zSSIIQESGEA2DaRHl9aZD4jAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGiV0cBS3FTJYP3EGpt0KeLPQI64wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL0dpVjBjQlMzRlRKWVAzRUdw dDBLZUxQUUk2NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATK lzAwDQYJKoZIhvcNAQELBQADggEBAAV0J0v6hJ4i6eymANK2+PSEiSDEW/QfhkfF TwQeoG4o4yI4WFMmO6kitdGMJyS6lgjBapwDCaFgF2GahZP4r546gDvW04dUvXJM U96/mKbFbU19v1/Q+VJOJaFCkvQtSs4Pp0AxmDHorXae9VTOh+syc0u48YZlh6h7 3FPNzp04aVkpVZYbGXhOOUXgsF1QEYYSM3bJ3tCx/uyHqO1n6/oUIakUEx8Bf64s sBsDtH0A8oui/blWx7ywHzYEEotrwKmZa6nGtnStd0Y9z+a9p/36Po8S9ZGW92P5 +bjbpLfvNHOuHK7Guvm5M345qswTt8GQ5vKKDdBG83LEpBCzgCo= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org