$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_mQaAKK8erNk5lQ5_Xb8s9CEW5A.roa File: _mQaAKK8erNk5lQ5_Xb8s9CEW5A.roa (raw, json) Hash identifier: R/0ZJAv+/uXvG44f2RH5j5cuekmyRL0AglDpFWfJx4Y= Subject key identifier: FE:64:1A:00:A2:BC:7A:B3:64:E6:54:39:FD:76:FC:B3:D0:84:5B:90 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0C01 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_mQaAKK8erNk5lQ5_Xb8s9CEW5A.roa Signing time: Fri 01 Sep 2023 09:11:52 +0000 ROA not before: Fri 01 Sep 2023 09:11:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9416 IP address blocks: 202.151.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3073 (0xc01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Sep 1 09:11:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FE641A00A2BC7AB364E65439FD76FCB3D0845B90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:99:b0:ad:81:d6:5c:a0:59:fc:9c:47:a9:48: 47:34:c4:c6:2b:d9:2a:33:a3:08:41:71:ec:59:78: a7:16:65:f0:a6:a8:b8:9c:ae:88:b0:d5:0d:a4:09: 00:5e:3d:76:d1:28:35:40:d4:ec:4b:47:7f:d8:ed: 7e:53:b5:20:4c:20:ed:96:43:6e:45:3a:e5:5c:20: 02:c5:4b:cc:5e:85:30:d5:ec:2a:a8:8c:ba:ea:89: 65:ff:0f:e0:2d:f4:99:e0:a7:8b:7f:83:2f:e0:fb: a4:b2:d0:f4:f6:9b:6a:cb:46:c4:07:6a:02:b2:a5: e8:37:9e:12:ee:80:ae:c6:f6:74:87:f9:30:2a:34: a9:1b:32:fe:74:da:97:e4:90:27:ec:0c:66:e4:5f: 4d:8f:b1:73:df:0c:1f:76:8c:e7:83:ba:08:11:ac: a6:f5:72:a9:96:3c:13:0e:85:0d:86:2e:2c:d9:54: df:08:93:49:44:3f:0b:06:87:40:5c:19:70:71:5a: 22:cf:6e:dc:36:d0:c7:a5:0e:b1:76:7e:5e:6e:ca: ab:32:c3:4a:63:a7:26:e8:15:18:10:44:ab:64:1b: a7:a2:fc:57:27:94:54:cf:cb:f8:c0:d2:b5:57:14: 11:b2:67:11:e6:bb:9c:1b:c8:db:70:b2:d6:35:a8: c1:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:64:1A:00:A2:BC:7A:B3:64:E6:54:39:FD:76:FC:B3:D0:84:5B:90 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_mQaAKK8erNk5lQ5_Xb8s9CEW5A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.151.48.0/20 Signature Algorithm: sha256WithRSAEncryption 5c:9e:c0:3d:e3:84:d1:7b:00:82:21:63:37:b7:e1:64:7b:59: 30:c7:b8:6d:c1:3f:88:88:ed:1a:60:43:7d:63:c5:2c:ef:10: 41:6b:df:8b:ff:93:92:9c:4e:f5:b4:c6:0b:a1:b6:93:f9:7f: 6c:88:de:1d:ef:5e:6f:9e:ca:46:76:dd:c3:76:d8:50:db:fa: f1:75:06:89:d5:e0:1f:c3:92:5e:e6:cf:41:bf:46:85:50:1f: 83:0a:66:95:12:e3:2b:22:fd:01:75:e9:ec:25:83:1b:eb:18: be:f5:7b:c6:fa:2c:15:d4:ae:48:3c:9c:3e:b9:cd:ee:d1:3c: d1:a4:b2:15:7b:fe:9b:d8:43:3f:4f:c4:d7:d4:f6:33:cc:20: 84:d3:e4:4b:cd:6a:01:42:d9:98:8b:28:2e:23:c1:e0:a9:3f: 57:e2:62:13:62:e9:0e:0b:18:f9:fc:39:73:8e:53:f3:21:77: 7e:e3:27:d1:34:bd:a2:59:61:bd:47:fe:08:88:15:1e:d0:e0: 93:d4:60:a1:96:c6:a7:50:e4:04:66:e5:91:08:2d:ef:54:5c: e8:30:1a:a1:79:e3:69:f9:ef:1d:bc:5b:47:32:e3:ee:8f:4a: b1:c2:df:4f:98:b9:35:f7:9c:87:13:97:ab:c0:64:80:01:5f: 42:a9:62:0f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDAEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMzA5MDEw OTExNTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZFNjQxQTAwQTJCQzdB QjM2NEU2NTQzOUZENzZGQ0IzRDA4NDVCOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnmbCtgdZcoFn8nEepSEc0xMYr2SozowhBcexZeKcWZfCmqLic roiw1Q2kCQBePXbRKDVA1OxLR3/Y7X5TtSBMIO2WQ25FOuVcIALFS8xehTDV7Cqo jLrqiWX/D+At9Jngp4t/gy/g+6Sy0PT2m2rLRsQHagKypeg3nhLugK7G9nSH+TAq NKkbMv502pfkkCfsDGbkX02PsXPfDB92jOeDuggRrKb1cqmWPBMOhQ2GLizZVN8I k0lEPwsGh0BcGXBxWiLPbtw20MelDrF2fl5uyqsyw0pjpyboFRgQRKtkG6ei/Fcn lFTPy/jA0rVXFBGyZxHmu5wbyNtwstY1qMGHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/mQaAKK8erNk5lQ5/Xb8s9CEW5AwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL19tUWFBS0s4ZXJOazVsUTVf WGI4czlDRVc1QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATK lzAwDQYJKoZIhvcNAQELBQADggEBAFyewD3jhNF7AIIhYze34WR7WTDHuG3BP4iI 7RpgQ31jxSzvEEFr34v/k5KcTvW0xguhtpP5f2yI3h3vXm+eykZ23cN22FDb+vF1 BonV4B/Dkl7mz0G/RoVQH4MKZpUS4ysi/QF16ewlgxvrGL71e8b6LBXUrkg8nD65 ze7RPNGkshV7/pvYQz9PxNfU9jPMIITT5EvNagFC2ZiLKC4jweCpP1fiYhNi6Q4L GPn8OXOOU/Mhd37jJ9E0vaJZYb1H/giIFR7Q4JPUYKGWxqdQ5ARm5ZEILe9UXOgw GqF542n57x28W0cy4+6PSrHC30+YuTX3nIcTl6vAZIABX0KpYg8= -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:22 2024 by rpki-client on console-fra.rpki-client.org