$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ZFjd0n2nTw3DBQJ5vAiBZsEfUak.roa File: ZFjd0n2nTw3DBQJ5vAiBZsEfUak.roa (raw, json) Hash identifier: zo4eSY5bIWr0JPqn2LkCm3sWLUSiWyKWWCD0fneW+PM= Subject key identifier: 64:58:DD:D2:7D:A7:4F:0D:C3:05:02:79:BC:08:81:66:C1:1F:51:A9 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D1A Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ZFjd0n2nTw3DBQJ5vAiBZsEfUak.roa Signing time: Mon 26 Aug 2024 05:19:34 +0000 ROA not before: Mon 26 Aug 2024 05:19:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9416 IP address blocks: 119.14.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3354 (0xd1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 26 05:19:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6458DDD27DA74F0DC3050279BC088166C11F51A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e7:12:7e:81:7e:4a:18:93:4c:69:f7:fa:70: 9b:81:75:8c:7f:09:13:4c:57:33:33:78:89:1c:47: f7:dd:ec:f8:34:68:61:fe:8a:15:5e:fd:d4:45:5c: 8e:24:5d:a0:ad:89:3e:e2:31:3f:45:6b:31:66:73: 33:a8:cd:dc:3f:79:6d:f2:1b:de:cb:52:f9:7e:03: a2:19:5e:9e:7a:3a:01:ac:5c:f1:df:95:72:b7:0d: cd:a9:6e:b0:ff:b8:4c:d6:fb:b3:36:5d:1d:70:ea: ec:07:0a:b0:27:64:ba:9f:a8:0b:bd:3c:ed:b5:35: f0:da:3b:fb:d5:14:4f:22:53:62:9e:49:8c:a7:8e: f5:6e:d9:ee:17:cc:7c:1a:83:0b:26:eb:07:88:13: 15:00:6e:f8:e5:77:1e:65:19:f2:dc:71:52:ff:fd: 82:22:75:2d:31:65:de:2d:23:39:0d:84:5f:36:f5: c5:20:61:d9:ba:08:8a:71:30:e8:f2:ce:5e:e2:25: 7f:e6:b5:e6:a3:4a:d0:d5:5a:eb:a4:94:92:6f:36: f5:37:26:07:91:51:43:9c:b1:f1:7a:d4:7a:1d:40: 9b:58:f4:30:85:ad:b4:ad:92:e8:f0:7d:d5:1e:c9: 03:c2:fa:06:1a:9e:d3:bf:8c:f1:37:96:1a:54:dc: 65:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:58:DD:D2:7D:A7:4F:0D:C3:05:02:79:BC:08:81:66:C1:1F:51:A9 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ZFjd0n2nTw3DBQJ5vAiBZsEfUak.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.14.128.0/17 Signature Algorithm: sha256WithRSAEncryption 49:a5:61:92:90:6a:fa:82:a4:61:db:c4:c8:1d:c9:cf:72:ea: 8d:8a:46:a5:1a:17:cc:a5:0b:4a:85:76:79:a8:18:ff:bd:1e: f0:4e:49:11:b3:a2:4b:13:69:01:77:29:cc:73:55:2a:bd:18: 66:ba:66:95:91:ff:a0:98:d5:44:d7:64:1d:23:46:38:b6:9b: 74:0b:0d:d4:a7:d1:5e:fc:06:72:47:59:23:fd:b8:cb:16:36: 97:62:cd:0c:56:82:14:64:9f:6f:e8:b6:fe:06:c8:cc:ae:37: ca:50:5f:bf:af:1a:80:60:5e:08:e2:5f:0f:e4:91:08:d3:16: ab:99:08:0b:55:c8:55:43:f9:17:73:82:ea:d4:72:f0:3a:81: 43:45:11:6e:76:3a:d5:96:ef:41:7e:28:f2:39:f7:22:08:75: a2:b0:6b:d0:e9:53:2c:21:99:3c:7e:43:34:0d:7f:32:d4:f4: 62:8d:f6:2d:f5:fe:4b:14:6f:c9:58:9c:d8:fd:ef:f8:83:d7: 7a:d9:d5:59:2b:93:8b:67:18:f1:1c:ce:d9:86:ac:79:60:2c: a2:48:d0:0a:05:7a:3e:55:13:7e:7f:6f:63:63:b6:60:cb:2c: 3a:54:22:bc:b1:5e:49:a4:aa:d5:d3:21:d0:1b:36:90:a9:95: a9:6f:22:b4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDRowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNDA4MjYw NTE5MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0NThEREQyN0RBNzRG MERDMzA1MDI3OUJDMDg4MTY2QzExRjUxQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC05xJ+gX5KGJNMaff6cJuBdYx/CRNMVzMzeIkcR/fd7Pg0aGH+ ihVe/dRFXI4kXaCtiT7iMT9FazFmczOozdw/eW3yG97LUvl+A6IZXp56OgGsXPHf lXK3Dc2pbrD/uEzW+7M2XR1w6uwHCrAnZLqfqAu9PO21NfDaO/vVFE8iU2KeSYyn jvVu2e4XzHwagwsm6weIExUAbvjldx5lGfLccVL//YIidS0xZd4tIzkNhF829cUg Ydm6CIpxMOjyzl7iJX/mteajStDVWuuklJJvNvU3JgeRUUOcsfF61HodQJtY9DCF rbStkujwfdUeyQPC+gYantO/jPE3lhpU3GVJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZFjd0n2nTw3DBQJ5vAiBZsEfUakwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1pGamQwbjJuVHczREJRSjV2 QWlCWnNFZlVhay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3 DoAwDQYJKoZIhvcNAQELBQADggEBAEmlYZKQavqCpGHbxMgdyc9y6o2KRqUaF8yl C0qFdnmoGP+9HvBOSRGzoksTaQF3KcxzVSq9GGa6ZpWR/6CY1UTXZB0jRji2m3QL DdSn0V78BnJHWSP9uMsWNpdizQxWghRkn2/otv4GyMyuN8pQX7+vGoBgXgjiXw/k kQjTFquZCAtVyFVD+RdzgurUcvA6gUNFEW52OtWW70F+KPI59yIIdaKwa9DpUywh mTx+QzQNfzLU9GKN9i31/ksUb8lYnNj97/iD13rZ1Vkrk4tnGPEcztmGrHlgLKJI 0AoFej5VE35/b2NjtmDLLDpUIryxXkmkqtXTIdAbNpCplalvIrQ= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org