$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/IJ11rWt3tnyPABI0MYKl-Q-X648.roa File: IJ11rWt3tnyPABI0MYKl-Q-X648.roa (raw, json) Hash identifier: M4YNjTCeurC58jnrpJqNE0cfqw9d0uxTe9CE2tkwtMs= Subject key identifier: 20:9D:75:AD:6B:77:B6:7C:8F:00:12:34:31:82:A5:F9:0F:97:EB:8F Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0DA2 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/IJ11rWt3tnyPABI0MYKl-Q-X648.roa Signing time: Mon 10 Feb 2025 14:06:08 +0000 ROA not before: Mon 10 Feb 2025 14:06:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 115.43.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3490 (0xda2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Feb 10 14:06:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=209D75AD6B77B67C8F0012343182A5F90F97EB8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9e:d7:70:c9:74:66:fe:b3:b7:5d:97:36:59: 09:3a:49:b4:f7:c8:2e:be:47:bd:64:f9:ce:6d:0e: d9:16:c4:08:6b:c9:17:6d:6f:9b:40:c4:f8:8e:2c: c6:14:dd:6f:6f:12:eb:0f:4c:4f:f4:ea:84:18:cc: 24:2c:32:49:a4:4c:bc:b8:a4:67:71:cd:c1:02:fe: 4c:1a:58:63:dd:3f:6a:83:f5:69:1d:b2:39:35:72: 0c:d2:3d:f5:34:59:6a:c9:12:b9:f8:07:2e:88:bc: 7a:50:0d:a1:0a:9c:99:45:fa:e1:3f:6e:34:13:10: c0:0a:18:bf:91:d4:81:50:49:2a:a9:d0:9b:76:55: 39:c4:9b:87:63:c0:0a:cd:fc:15:93:56:19:a7:3b: b7:e5:14:c8:5a:4a:a2:16:cf:a9:76:33:9b:9c:00: dd:48:ca:06:2f:33:89:d0:33:7b:12:9c:1c:d7:ac: 8f:5e:ad:ce:16:e7:3d:9f:67:9a:c5:72:0b:39:14: a0:26:20:d0:4d:c3:39:6e:e9:80:d3:7f:12:3c:73: 1b:26:8d:b7:2a:e4:6e:96:f6:cf:75:c2:a3:46:76: 9f:f5:cc:90:b0:af:10:93:5b:70:14:82:51:52:08: e7:0d:82:7b:02:de:c8:73:ae:6b:5d:ec:6b:df:f4: 63:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:9D:75:AD:6B:77:B6:7C:8F:00:12:34:31:82:A5:F9:0F:97:EB:8F X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/IJ11rWt3tnyPABI0MYKl-Q-X648.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.43.128.0/17 Signature Algorithm: sha256WithRSAEncryption 16:bd:f3:1f:fe:17:af:ea:79:af:71:1f:e6:c4:71:2c:97:a9: 2b:2e:80:2e:e3:ea:32:ee:3c:9a:94:a4:41:72:dc:0f:b8:b0: c0:6c:2d:be:13:6e:e4:74:e9:94:91:92:59:36:f1:2a:9f:35: af:16:61:ed:63:b2:94:a3:d2:c7:c5:7a:13:8d:67:af:ee:34: c1:c1:15:f2:f0:27:58:1e:73:4d:13:4b:cc:d8:a1:c7:9c:df: 37:eb:6a:06:87:61:d9:1a:7f:00:99:b8:ed:e5:1b:e8:4d:d5: b1:47:b2:b1:0b:b4:91:82:92:03:25:c5:8b:dd:4c:d0:c1:b2: 16:cd:07:d0:e4:3a:e6:70:8e:50:a7:97:ed:d9:ca:0a:e4:da: e2:13:61:70:78:8a:7a:43:a7:7d:09:1d:57:97:fd:bc:de:ed: 08:d9:62:3b:ff:0f:b9:a2:b8:9f:24:8d:a8:55:e2:d2:2a:09: bd:8e:99:c6:4b:52:b4:6a:10:5c:a5:e5:d6:e5:5b:5f:22:c2: 62:5d:23:c1:f6:14:f8:8c:7a:e8:36:aa:b6:b7:1f:62:4e:76: 76:82:82:9a:01:40:67:94:f6:dd:5a:9b:24:f2:ed:f8:f8:26: f2:ca:b6:90:54:5f:dd:73:dc:94:bf:a3:e1:04:9a:49:cd:30: b5:13:fd:2e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDaIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx NDA2MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIwOUQ3NUFENkI3N0I2 N0M4RjAwMTIzNDMxODJBNUY5MEY5N0VCOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQContdwyXRm/rO3XZc2WQk6SbT3yC6+R71k+c5tDtkWxAhryRdt b5tAxPiOLMYU3W9vEusPTE/06oQYzCQsMkmkTLy4pGdxzcEC/kwaWGPdP2qD9Wkd sjk1cgzSPfU0WWrJErn4By6IvHpQDaEKnJlF+uE/bjQTEMAKGL+R1IFQSSqp0Jt2 VTnEm4djwArN/BWTVhmnO7flFMhaSqIWz6l2M5ucAN1IygYvM4nQM3sSnBzXrI9e rc4W5z2fZ5rFcgs5FKAmINBNwzlu6YDTfxI8cxsmjbcq5G6W9s91wqNGdp/1zJCw rxCTW3AUglFSCOcNgnsC3shzrmtd7Gvf9GP/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIJ11rWt3tnyPABI0MYKl+Q+X648wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL0lKMTFyV3QzdG55UEFCSTBN WUtsLVEtWDY0OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAdz K4AwDQYJKoZIhvcNAQELBQADggEBABa98x/+F6/qea9xH+bEcSyXqSsugC7j6jLu PJqUpEFy3A+4sMBsLb4TbuR06ZSRklk28SqfNa8WYe1jspSj0sfFehONZ6/uNMHB FfLwJ1gec00TS8zYocec3zfragaHYdkafwCZuO3lG+hN1bFHsrELtJGCkgMlxYvd TNDBshbNB9DkOuZwjlCnl+3Zygrk2uITYXB4inpDp30JHVeX/bze7QjZYjv/D7mi uJ8kjahV4tIqCb2OmcZLUrRqEFyl5dblW18iwmJdI8H2FPiMeug2qra3H2JOdnaC gpoBQGeU9t1amyTy7fj4JvLKtpBUX91z3JS/o+EEmknNMLUT/S4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:05:00 2025 by rpki-client