$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Q8Z6WfgQHcuRL5rdX3l1tNZIl98.roa File: Q8Z6WfgQHcuRL5rdX3l1tNZIl98.roa (raw, json) Hash identifier: C6NaV+NG2cH3Q+5hrEDJM87TwrihrZCe1HAMsE2adjc= Subject key identifier: 43:C6:7A:59:F8:10:1D:CB:91:2F:9A:DD:5F:79:75:B4:D6:48:97:DF Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D25 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Q8Z6WfgQHcuRL5rdX3l1tNZIl98.roa Signing time: Mon 26 Aug 2024 05:19:36 +0000 ROA not before: Mon 26 Aug 2024 05:19:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9416 IP address blocks: 119.14.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3365 (0xd25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 26 05:19:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=43C67A59F8101DCB912F9ADD5F7975B4D64897DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:80:1a:87:a9:a5:6e:9a:ea:a4:d1:a5:77:86: 4d:27:3d:7e:82:05:33:29:45:ae:22:a7:2e:ff:89: 01:e9:6d:0c:22:a9:88:06:ab:74:dc:c3:b7:f6:5b: 08:ce:a0:80:4c:7f:1d:7a:53:54:ce:90:88:7c:53: 9f:cb:36:1c:d6:d8:61:05:bb:0b:12:5b:e1:75:a3: 46:9e:53:1c:c0:44:78:39:66:44:a9:71:1a:db:b5: 46:da:d3:34:d4:fd:77:18:f6:45:93:d9:63:49:b1: 7f:86:9a:8a:b3:41:54:ce:36:e6:e2:de:19:93:e1: 37:0a:bf:8c:9e:5d:f4:8c:6c:a2:63:4a:db:1b:7f: ff:b4:d6:77:99:96:84:a2:d1:8a:ab:bd:93:2b:30: 9a:f8:21:73:b4:bf:42:1e:1f:42:ff:07:e3:05:cd: 3b:ef:e4:c9:4a:89:bf:b3:f9:33:ec:fb:d4:e7:39: fd:a2:1c:49:9f:17:a9:ab:33:b2:65:70:9f:ee:f0: 38:df:ca:06:c9:fb:a2:2c:9e:11:17:a9:cd:94:7e: 60:a1:37:46:e2:cc:4d:2e:c9:d5:f7:f6:38:a8:5f: 1d:3a:b5:ed:f2:98:6a:a8:2f:b5:3c:24:91:9d:7a: 7a:88:68:6d:5e:c2:a7:0e:d3:6a:b2:02:00:af:e4: 96:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C6:7A:59:F8:10:1D:CB:91:2F:9A:DD:5F:79:75:B4:D6:48:97:DF X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Q8Z6WfgQHcuRL5rdX3l1tNZIl98.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.14.0.0/16 Signature Algorithm: sha256WithRSAEncryption 01:74:b4:a8:58:70:49:fb:e0:50:0d:4a:d4:58:95:c1:9b:8e: a7:c3:6c:15:51:4d:7a:40:11:40:41:8e:4e:52:ce:fc:9f:e9: 1d:96:d3:1d:05:10:93:52:b4:32:e1:2b:91:b2:1a:e7:92:fb: a1:24:d9:db:40:59:d6:64:fe:8b:99:ad:39:46:d7:be:e5:6a: 8c:2d:5a:84:60:4a:e4:23:b7:9b:d0:7e:a7:65:7e:58:a9:c4: 56:83:d9:3d:57:46:9b:1b:2a:1e:b9:05:dc:2c:b7:9d:3d:2b: e4:f1:66:31:67:90:ac:ea:e8:c5:c6:ea:3b:65:25:f2:41:df: f3:d7:15:54:1f:61:f0:41:11:36:86:d8:12:a4:de:25:d4:df: 5b:47:f6:ff:2a:c7:11:07:dd:ed:af:e8:7f:07:e6:60:53:56: 03:72:de:cc:6c:d2:c8:26:a4:a2:c7:2b:a7:f3:81:c7:2e:7b: 88:bd:8e:9c:d0:17:ae:c5:1c:ac:bb:61:6a:ea:49:9c:bf:9c: 8b:eb:c9:4c:b9:5c:26:25:8c:66:05:e3:ab:f7:ad:d8:1e:a9: e6:12:9f:e8:ab:10:84:0c:e2:6a:da:52:c6:cc:1b:1c:56:9c: a2:1d:17:4e:40:9b:b6:36:5a:df:a4:4a:4a:bf:69:ac:17:40: f5:fd:6c:cf -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDSUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNDA4MjYw NTE5MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQzQzY3QTU5RjgxMDFE Q0I5MTJGOUFERDVGNzk3NUI0RDY0ODk3REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDagBqHqaVumuqk0aV3hk0nPX6CBTMpRa4ipy7/iQHpbQwiqYgG q3Tcw7f2WwjOoIBMfx16U1TOkIh8U5/LNhzW2GEFuwsSW+F1o0aeUxzARHg5ZkSp cRrbtUba0zTU/XcY9kWT2WNJsX+GmoqzQVTONubi3hmT4TcKv4yeXfSMbKJjStsb f/+01neZloSi0YqrvZMrMJr4IXO0v0IeH0L/B+MFzTvv5MlKib+z+TPs+9TnOf2i HEmfF6mrM7JlcJ/u8DjfygbJ+6IsnhEXqc2UfmChN0bizE0uydX39jioXx06te3y mGqoL7U8JJGdenqIaG1ewqcO02qyAgCv5JYpAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUQ8Z6WfgQHcuRL5rdX3l1tNZIl98wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1E4WjZXZmdRSGN1Ukw1cmRY M2wxdE5aSWw5OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB3 DjANBgkqhkiG9w0BAQsFAAOCAQEAAXS0qFhwSfvgUA1K1FiVwZuOp8NsFVFNekAR QEGOTlLO/J/pHZbTHQUQk1K0MuErkbIa55L7oSTZ20BZ1mT+i5mtOUbXvuVqjC1a hGBK5CO3m9B+p2V+WKnEVoPZPVdGmxsqHrkF3Cy3nT0r5PFmMWeQrOroxcbqO2Ul 8kHf89cVVB9h8EERNobYEqTeJdTfW0f2/yrHEQfd7a/ofwfmYFNWA3LezGzSyCak oscrp/OBxy57iL2OnNAXrsUcrLthaupJnL+ci+vJTLlcJiWMZgXjq/et2B6p5hKf 6KsQhAziatpSxswbHFacoh0XTkCbtjZa36RKSr9prBdA9f1szw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org