$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/R244PYQdHkuwhppWNZ3DkQb3d8I.roa File: R244PYQdHkuwhppWNZ3DkQb3d8I.roa (raw, json) Hash identifier: lwN424i92lpPMCXfSt0AirDQKS5LaJqaPwZc4STKuK8= Subject key identifier: 47:6E:38:3D:84:1D:1E:4B:B0:86:9A:56:35:9D:C3:91:06:F7:77:C2 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D24 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/R244PYQdHkuwhppWNZ3DkQb3d8I.roa Signing time: Mon 26 Aug 2024 05:19:36 +0000 ROA not before: Mon 26 Aug 2024 05:19:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9416 IP address blocks: 115.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3364 (0xd24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 26 05:19:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=476E383D841D1E4BB0869A56359DC39106F777C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ef:91:12:fa:b1:1d:5c:30:9e:39:03:43:4d: 75:d0:7a:7c:6f:0b:be:69:16:b9:d9:ee:31:d4:74: 15:1a:85:a7:44:8a:83:f2:7c:77:83:ff:cd:fa:f6: 61:7f:ea:cb:8f:04:d0:ab:a8:59:bc:20:ef:d1:06: 12:b4:94:e8:6e:cf:0d:a6:24:eb:17:1c:9c:58:7f: 71:7f:da:bf:1b:46:f2:90:ad:a4:6f:7a:5f:44:0b: ac:df:8a:ad:46:f6:12:17:d2:c3:fb:fe:ef:84:e2: 14:29:02:0e:96:21:6f:d4:47:e1:39:10:4b:5f:24: 44:7d:64:7f:17:26:44:e4:ad:09:02:2c:35:4b:bd: d2:06:16:6c:77:5d:06:7f:26:6f:cd:75:a0:60:90: 8e:b9:69:29:8e:f1:bb:ac:ba:9f:11:42:1c:bb:79: d4:00:04:58:a3:28:0f:0c:a2:ce:ef:c1:3e:e0:53: 47:6a:a1:9f:db:70:c5:d5:bd:91:93:a5:82:75:3b: 46:be:8f:dd:e7:15:ee:2c:6f:63:3b:52:c8:c4:b0: 41:9a:d5:84:3a:4f:a1:9d:e8:86:8a:d9:f3:b6:a2: b2:98:66:19:7f:1f:14:6e:91:10:7e:34:e0:c0:31: 4a:f9:4a:62:ca:df:31:da:f9:c5:09:43:b6:ad:ba: 84:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:6E:38:3D:84:1D:1E:4B:B0:86:9A:56:35:9D:C3:91:06:F7:77:C2 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/R244PYQdHkuwhppWNZ3DkQb3d8I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4d:4d:c7:ee:67:bb:10:1c:00:0b:01:3c:80:0c:9c:a2:6c:17: fa:e9:1c:ac:35:d4:26:e8:51:9c:c2:d3:86:9b:bc:15:3f:f8: fa:ae:e7:4e:c4:8d:74:88:4a:a7:aa:44:35:20:74:2f:bc:6e: a7:e1:95:b2:50:8e:2c:5e:f5:b2:14:56:6f:e3:c8:34:a5:d0: fe:46:2f:20:4b:16:0c:f1:2a:7d:02:2d:6d:8d:0a:f5:5c:50: b4:10:80:35:6f:a6:5d:e4:a9:1d:e2:95:3c:ac:4b:18:78:66: cd:a1:1e:45:88:f4:e2:20:89:68:76:57:e2:71:22:e6:95:8c: 04:73:02:d9:53:b1:e0:f6:bd:1e:e6:7b:25:21:6e:9a:8e:51: 06:9d:5d:79:01:5a:7d:9b:a9:d7:c6:d2:5b:d8:69:7a:a6:23: e6:ef:4d:0f:b1:43:5e:72:7c:56:c6:b3:17:ed:0b:3b:8a:38: c0:ae:e8:3e:4f:75:99:82:33:88:af:14:f8:f4:42:44:ef:85: 3d:6f:c0:26:67:df:53:1b:08:61:5b:71:2d:1b:27:94:d8:43: 5f:ed:fc:e6:95:9e:bc:16:df:09:b6:c6:6b:69:5a:80:78:a9: c7:8b:b4:dd:da:87:91:4c:4b:a0:63:37:ea:e6:12:19:d0:ce: ad:4e:eb:46 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDSQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNDA4MjYw NTE5MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ3NkUzODNEODQxRDFF NEJCMDg2OUE1NjM1OURDMzkxMDZGNzc3QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo75ES+rEdXDCeOQNDTXXQenxvC75pFrnZ7jHUdBUahadEioPy fHeD/8369mF/6suPBNCrqFm8IO/RBhK0lOhuzw2mJOsXHJxYf3F/2r8bRvKQraRv el9EC6zfiq1G9hIX0sP7/u+E4hQpAg6WIW/UR+E5EEtfJER9ZH8XJkTkrQkCLDVL vdIGFmx3XQZ/Jm/NdaBgkI65aSmO8busup8RQhy7edQABFijKA8Mos7vwT7gU0dq oZ/bcMXVvZGTpYJ1O0a+j93nFe4sb2M7UsjEsEGa1YQ6T6Gd6IaK2fO2orKYZhl/ HxRukRB+NODAMUr5SmLK3zHa+cUJQ7atuoSrAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUR244PYQdHkuwhppWNZ3DkQb3d8IwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1IyNDRQWVFkSGt1d2hwcFdO WjNEa1FiM2Q4SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwBz KzANBgkqhkiG9w0BAQsFAAOCAQEATU3H7me7EBwACwE8gAycomwX+ukcrDXUJuhR nMLThpu8FT/4+q7nTsSNdIhKp6pENSB0L7xup+GVslCOLF71shRWb+PINKXQ/kYv IEsWDPEqfQItbY0K9VxQtBCANW+mXeSpHeKVPKxLGHhmzaEeRYj04iCJaHZX4nEi 5pWMBHMC2VOx4Pa9HuZ7JSFumo5RBp1deQFafZup18bSW9hpeqYj5u9ND7FDXnJ8 VsazF+0LO4o4wK7oPk91mYIziK8U+PRCRO+FPW/AJmffUxsIYVtxLRsnlNhDX+38 5pWevBbfCbbGa2lagHipx4u03dqHkUxLoGM36uYSGdDOrU7rRg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org