$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ue0BzL8oRuiHqCF0oHWtMyMfKdw.roa File: Ue0BzL8oRuiHqCF0oHWtMyMfKdw.roa (raw, json) Hash identifier: OuXQL0oT/LGfatNDI6HYryIHDZH8JDNN/9V9R7/ajGA= Subject key identifier: 51:ED:01:CC:BF:28:46:E8:87:A8:21:74:A0:75:AD:33:23:1F:29:DC Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D23 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ue0BzL8oRuiHqCF0oHWtMyMfKdw.roa Signing time: Mon 26 Aug 2024 05:19:36 +0000 ROA not before: Mon 26 Aug 2024 05:19:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9416 IP address blocks: 123.252.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3363 (0xd23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 26 05:19:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=51ED01CCBF2846E887A82174A075AD33231F29DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e2:9f:c6:93:9d:44:f7:44:96:3b:85:d2:6c: fe:ab:2f:ad:cd:21:af:b2:41:e9:60:c6:a5:f2:20: bc:ec:ff:42:93:14:0b:00:c4:ce:92:33:62:e5:4e: 44:9e:e5:45:68:e3:eb:48:61:97:a6:ba:95:70:93: c5:e3:11:5b:cb:5e:9b:c4:10:94:2e:1c:98:20:3c: d4:79:2f:bc:4e:1d:98:5e:72:e8:1d:18:a5:d7:b3: 66:ac:33:83:c5:7b:e9:f2:7f:e3:45:3f:c6:9e:a4: 2a:0c:35:40:bf:d3:20:03:e6:92:7b:25:44:2e:97: 1d:d1:6c:9c:49:cc:3f:01:9d:ee:d3:7a:57:a3:d8: ab:42:ea:04:b8:d5:45:a3:31:5c:13:8f:b7:64:2f: 49:1b:11:91:61:d4:02:65:1e:82:82:60:44:45:6e: 9e:0e:3f:96:ce:cd:bd:c9:74:b5:51:0c:c6:2b:be: 6d:62:b7:22:59:73:d6:3b:51:24:b7:97:03:9b:33: 9f:4b:73:76:ae:4b:1c:eb:f4:c4:2f:88:69:11:d5: 0e:08:41:c8:28:ed:86:38:83:f0:32:06:b0:35:e5: 38:b3:51:02:96:83:90:f8:f4:55:c3:3d:3c:ec:ba: 88:be:d2:b2:c5:10:29:d1:b1:5d:fd:b7:34:94:9f: e6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:ED:01:CC:BF:28:46:E8:87:A8:21:74:A0:75:AD:33:23:1F:29:DC X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ue0BzL8oRuiHqCF0oHWtMyMfKdw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.252.0.0/18 Signature Algorithm: sha256WithRSAEncryption 94:f2:67:a0:f9:47:28:75:f4:84:17:8e:29:61:54:19:6e:ac: cb:78:9d:5c:6b:0b:b2:20:ee:f9:34:ba:f3:53:85:21:ef:76: 8b:4d:6c:fa:67:1b:9f:4a:5e:05:28:35:4f:c5:59:ee:6c:48: 80:2a:a4:fd:98:95:d2:44:70:25:12:af:3c:70:e0:09:73:86: 3f:47:74:04:0a:a0:64:cb:16:22:85:04:f7:e7:fc:20:b9:1d: 80:44:10:14:4b:ec:b5:13:50:ba:5d:95:6b:c4:8a:cc:97:10: ec:ea:45:25:29:d4:d7:76:1c:c1:30:c1:34:34:0b:cb:06:d2: f4:43:db:69:02:d8:f3:d0:a7:df:d8:d9:28:74:be:7c:98:67: ed:26:88:b1:6f:09:90:38:ed:6d:d4:c6:d5:5b:0d:eb:bb:c7: 06:4c:8c:36:5f:40:78:2f:8a:26:47:a6:6e:a8:78:b4:8b:9b: 8e:68:99:a7:dc:ab:11:a6:27:a1:39:6a:98:10:56:59:a1:cc: bd:41:04:9e:0a:ff:d1:f0:87:73:93:23:1a:42:80:61:7e:16: 03:9a:60:f8:7d:52:55:59:08:bf:b3:e2:0e:93:94:0c:28:a0: f6:a0:4f:7a:78:83:e8:5c:8e:2c:68:b9:29:d0:ef:6d:d0:a0: 78:87:99:08 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDSMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNDA4MjYw NTE5MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxRUQwMUNDQkYyODQ2 RTg4N0E4MjE3NEEwNzVBRDMzMjMxRjI5REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE4p/Gk51E90SWO4XSbP6rL63NIa+yQelgxqXyILzs/0KTFAsA xM6SM2LlTkSe5UVo4+tIYZemupVwk8XjEVvLXpvEEJQuHJggPNR5L7xOHZhecugd GKXXs2asM4PFe+nyf+NFP8aepCoMNUC/0yAD5pJ7JUQulx3RbJxJzD8Bne7Telej 2KtC6gS41UWjMVwTj7dkL0kbEZFh1AJlHoKCYERFbp4OP5bOzb3JdLVRDMYrvm1i tyJZc9Y7USS3lwObM59Lc3auSxzr9MQviGkR1Q4IQcgo7YY4g/AyBrA15TizUQKW g5D49FXDPTzsuoi+0rLFECnRsV39tzSUn+aHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUe0BzL8oRuiHqCF0oHWtMyMfKdwwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1VlMEJ6TDhvUnVpSHFDRjBv SFd0TXlNZktkdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7 /AAwDQYJKoZIhvcNAQELBQADggEBAJTyZ6D5Ryh19IQXjilhVBlurMt4nVxrC7Ig 7vk0uvNThSHvdotNbPpnG59KXgUoNU/FWe5sSIAqpP2YldJEcCUSrzxw4Alzhj9H dAQKoGTLFiKFBPfn/CC5HYBEEBRL7LUTULpdlWvEisyXEOzqRSUp1Nd2HMEwwTQ0 C8sG0vRD22kC2PPQp9/Y2Sh0vnyYZ+0miLFvCZA47W3UxtVbDeu7xwZMjDZfQHgv iiZHpm6oeLSLm45omafcqxGmJ6E5apgQVlmhzL1BBJ4K/9Hwh3OTIxpCgGF+FgOa YPh9UlVZCL+z4g6TlAwooPagT3p4g+hcjixouSnQ723QoHiHmQg= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:08 2024 by rpki-client on console-ams.rpki-client.org