$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/aedUVmwgj7eDG0fM7-OBoKtXZ5w.roa File: aedUVmwgj7eDG0fM7-OBoKtXZ5w.roa (raw, json) Hash identifier: BqO1RV2HCRwB4MbRlNemp36dDZ3sfQXWXKFXRQ8VHsI= Subject key identifier: 69:E7:54:56:6C:20:8F:B7:83:1B:47:CC:EF:E3:81:A0:AB:57:67:9C Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0DAC Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/aedUVmwgj7eDG0fM7-OBoKtXZ5w.roa Signing time: Mon 10 Feb 2025 14:06:10 +0000 ROA not before: Mon 10 Feb 2025 14:06:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9416 IP address blocks: 124.155.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3500 (0xdac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Feb 10 14:06:10 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=69E754566C208FB7831B47CCEFE381A0AB57679C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:42:9b:2e:ff:e0:78:a8:5a:af:ed:41:58:e0: f9:35:97:63:b7:03:c4:51:b0:9f:59:63:f5:39:89: 9c:f2:39:37:fa:e2:d8:c7:a7:69:d9:23:5c:d1:0a: 0c:89:50:2d:04:3e:56:7a:ad:1c:0e:32:88:08:bf: d2:0f:8f:0c:bd:3a:8c:07:53:4a:b3:2a:b3:f4:74: bc:23:1f:b9:e1:59:5c:61:f3:ef:96:35:19:52:82: fb:1a:fd:36:96:7c:e7:c9:84:9b:c6:c5:4c:3f:cc: db:5c:c7:d1:54:64:44:e5:2d:77:39:18:8a:96:63: 02:b1:57:01:ce:fe:8d:20:52:dc:18:dd:56:7c:88: c0:f0:41:c3:e3:05:79:6b:0a:a0:08:e6:7e:c2:e1: 4c:8f:bf:1d:f8:cc:bf:cd:98:3b:d7:9d:22:a4:fb: 0f:2b:e8:0f:29:b3:bf:44:7d:cb:8c:d6:fb:e5:59: 63:af:84:51:2d:9a:c1:33:d5:75:66:4c:5d:89:67: 90:c4:92:12:33:40:ee:d2:38:72:57:8d:a1:48:54: 9b:ea:d0:ec:3c:ff:59:50:5f:bf:00:3d:5f:32:7b: 00:ad:e4:40:52:86:83:fc:96:e8:3b:4b:ae:f3:ab: 21:be:cb:5d:d1:3b:29:c4:26:1b:6c:98:ad:81:14: 2f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E7:54:56:6C:20:8F:B7:83:1B:47:CC:EF:E3:81:A0:AB:57:67:9C X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/aedUVmwgj7eDG0fM7-OBoKtXZ5w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.155.128.0/19 Signature Algorithm: sha256WithRSAEncryption b2:4f:71:42:b9:7d:57:cf:ca:73:63:bb:ce:3c:03:b4:49:1c: 90:18:e3:37:f0:b9:76:a2:d7:af:74:93:00:cc:9b:8b:82:e7: e5:af:d6:ee:ae:16:ed:36:c6:ba:2f:af:c8:5d:1a:b0:1a:e4: ae:39:b6:a2:94:5f:2b:e2:36:16:b3:02:b7:c4:0e:ed:aa:4b: 63:c9:32:8a:a1:69:15:58:b5:78:01:0a:85:9e:7c:bb:99:11: d2:90:5a:b6:27:45:bd:49:1f:69:ce:11:39:a4:d0:8e:c4:6a: e6:25:2a:5f:83:f6:c4:75:c7:87:23:50:87:fe:4f:5c:6b:e0: a8:e5:b3:b9:c6:fc:aa:b3:af:43:f6:af:23:07:11:e6:35:19: 76:90:d9:7d:28:0f:a9:10:b7:0d:4a:a7:05:57:47:69:8b:09: b7:4c:5d:31:a5:33:b3:8f:b2:cd:13:c9:f7:5f:39:ad:76:02: f3:96:50:63:d4:97:6c:ac:f0:0f:d1:32:42:86:c6:12:20:10: 7d:e7:e9:df:2d:62:79:4e:e6:ec:de:16:13:de:b7:2b:b9:6b: 10:e7:8f:9b:b3:bc:2f:c9:dc:12:0b:4a:35:f6:35:6b:ff:32: 74:f8:3d:b1:ab:b0:a7:3a:87:bf:34:7c:b9:60:8d:10:2c:7a: b1:cd:55:fd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDawwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx NDA2MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY5RTc1NDU2NkMyMDhG Qjc4MzFCNDdDQ0VGRTM4MUEwQUI1NzY3OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQQpsu/+B4qFqv7UFY4Pk1l2O3A8RRsJ9ZY/U5iZzyOTf64tjH p2nZI1zRCgyJUC0EPlZ6rRwOMogIv9IPjwy9OowHU0qzKrP0dLwjH7nhWVxh8++W NRlSgvsa/TaWfOfJhJvGxUw/zNtcx9FUZETlLXc5GIqWYwKxVwHO/o0gUtwY3VZ8 iMDwQcPjBXlrCqAI5n7C4UyPvx34zL/NmDvXnSKk+w8r6A8ps79EfcuM1vvlWWOv hFEtmsEz1XVmTF2JZ5DEkhIzQO7SOHJXjaFIVJvq0Ow8/1lQX78APV8yewCt5EBS hoP8lug7S67zqyG+y13ROynEJhtsmK2BFC+zAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUaedUVmwgj7eDG0fM7+OBoKtXZ5wwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL2FlZFVWbXdnajdlREcwZk03 LU9Cb0t0WFo1dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8 m4AwDQYJKoZIhvcNAQELBQADggEBALJPcUK5fVfPynNju848A7RJHJAY4zfwuXai 1690kwDMm4uC5+Wv1u6uFu02xrovr8hdGrAa5K45tqKUXyviNhazArfEDu2qS2PJ MoqhaRVYtXgBCoWefLuZEdKQWrYnRb1JH2nOETmk0I7EauYlKl+D9sR1x4cjUIf+ T1xr4Kjls7nG/Kqzr0P2ryMHEeY1GXaQ2X0oD6kQtw1KpwVXR2mLCbdMXTGlM7OP ss0TyfdfOa12AvOWUGPUl2ys8A/RMkKGxhIgEH3n6d8tYnlO5uzeFhPetyu5axDn j5uzvC/J3BILSjX2NWv/MnT4PbGrsKc6h780fLlgjRAserHNVf0= -----END CERTIFICATE-----Generated at Wed Feb 19 22:03:12 2025 by rpki-client