$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/dIarZ183NEXj4yCRCAMlfcblqy4.roa File: dIarZ183NEXj4yCRCAMlfcblqy4.roa (raw, json) Hash identifier: I81LLd0aKjx1O3CL4DLFiSUda0wz7ndS5BAKQ0Z0uLQ= Subject key identifier: 74:86:AB:67:5F:37:34:45:E3:E3:20:91:08:03:25:7D:C6:E5:AB:2E Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D9E Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/dIarZ183NEXj4yCRCAMlfcblqy4.roa Signing time: Mon 10 Feb 2025 14:06:07 +0000 ROA not before: Mon 10 Feb 2025 14:06:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9416 IP address blocks: 220.157.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3486 (0xd9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Feb 10 14:06:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7486AB675F373445E3E320910803257DC6E5AB2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a0:0f:a6:69:a2:49:85:34:83:4e:0c:7f:1c: 8c:a7:2e:1d:1a:0a:08:e7:b4:c1:07:92:c0:ef:86: 1e:43:0d:45:58:b5:bf:b1:e1:0d:14:d8:78:cb:7f: 1e:14:1e:c9:f4:c8:c3:43:4f:79:a5:ea:eb:4f:18: 13:74:53:9b:60:e6:bd:cc:78:3a:9c:dc:56:f8:28: 85:eb:98:7c:e2:8e:c2:d7:5a:2f:6f:88:5a:18:7d: 51:90:97:9f:4d:0a:41:55:5b:95:f3:e0:93:3c:12: 38:25:0a:38:82:f8:3e:fc:7d:75:1f:ba:55:0b:b3: cb:69:1f:15:65:c7:6f:61:f7:1e:50:03:78:ae:5e: d3:0d:69:d6:cb:1f:37:30:0d:36:07:0f:ce:4f:ba: 3c:be:05:05:f0:44:09:39:a7:cd:13:a5:f0:e4:0b: 03:5c:7c:5e:73:06:84:47:bc:e2:79:47:e4:68:a8: b7:3c:1e:55:7b:63:42:84:2e:f6:d5:17:c9:b9:a2: 68:75:47:63:e0:1d:85:d5:e5:a7:ca:e4:77:80:46: 85:95:85:ec:eb:33:c7:4e:76:cf:ed:94:1f:05:0f: 79:93:0f:42:8d:b0:95:13:62:35:2c:26:81:6c:f8: cc:aa:f1:74:d8:a2:7f:ff:3c:3e:95:7e:15:fa:0b: 90:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:86:AB:67:5F:37:34:45:E3:E3:20:91:08:03:25:7D:C6:E5:AB:2E X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/dIarZ183NEXj4yCRCAMlfcblqy4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.157.112.0/20 Signature Algorithm: sha256WithRSAEncryption 48:01:1a:8a:dc:f1:39:d4:5a:cc:cd:4c:38:8b:72:61:89:a4: 74:36:41:57:b7:02:76:b3:8f:b0:b9:ca:57:64:3b:7f:9c:75: 63:a2:b5:6c:b7:f2:78:1d:4a:f1:e6:57:fd:c5:61:30:e5:6e: 17:08:f6:3a:85:b6:f3:55:14:57:91:00:a3:fa:0c:3c:a0:5f: 29:5b:30:1e:33:eb:b5:b1:07:e8:ef:b5:e7:fe:55:dd:47:e0: 0f:ea:96:89:d7:4d:fa:82:62:49:c7:89:fb:c7:7e:a7:a0:56: 49:92:b8:4b:1e:00:d4:bd:86:f7:5a:e5:5c:7e:5a:03:fc:70: c8:ee:12:0f:f9:0b:bf:82:37:90:ac:0a:8f:f9:97:82:d3:39: b3:4a:c3:a4:e4:73:df:bb:0a:2a:e1:c4:81:cc:16:6c:38:29: ab:a4:5b:3c:77:57:df:f7:dc:52:83:1b:41:75:69:33:40:a3: 99:0f:09:9d:49:22:5e:b0:e4:0e:aa:aa:2d:c6:9f:d6:51:a7: 04:b0:ae:aa:57:7f:37:a9:0d:85:48:be:7f:f3:d8:6d:0d:d4: 0a:05:e9:18:5d:3c:33:7f:dd:5b:97:43:05:79:50:a7:c9:01: 7f:dc:c6:86:02:dd:48:a4:59:8f:2b:26:14:c0:ec:be:58:47: a4:d6:ba:d7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDZ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx NDA2MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc0ODZBQjY3NUYzNzM0 NDVFM0UzMjA5MTA4MDMyNTdEQzZFNUFCMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFoA+maaJJhTSDTgx/HIynLh0aCgjntMEHksDvhh5DDUVYtb+x 4Q0U2HjLfx4UHsn0yMNDT3ml6utPGBN0U5tg5r3MeDqc3Fb4KIXrmHzijsLXWi9v iFoYfVGQl59NCkFVW5Xz4JM8EjglCjiC+D78fXUfulULs8tpHxVlx29h9x5QA3iu XtMNadbLHzcwDTYHD85Pujy+BQXwRAk5p80TpfDkCwNcfF5zBoRHvOJ5R+RoqLc8 HlV7Y0KELvbVF8m5omh1R2PgHYXV5afK5HeARoWVhezrM8dOds/tlB8FD3mTD0KN sJUTYjUsJoFs+Myq8XTYon//PD6VfhX6C5BZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdIarZ183NEXj4yCRCAMlfcblqy4wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL2RJYXJaMTgzTkVYajR5Q1JD QU1sZmNibHF5NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATc nXAwDQYJKoZIhvcNAQELBQADggEBAEgBGorc8TnUWszNTDiLcmGJpHQ2QVe3Anaz j7C5yldkO3+cdWOitWy38ngdSvHmV/3FYTDlbhcI9jqFtvNVFFeRAKP6DDygXylb MB4z67WxB+jvtef+Vd1H4A/qlonXTfqCYknHifvHfqegVkmSuEseANS9hvda5Vx+ WgP8cMjuEg/5C7+CN5CsCo/5l4LTObNKw6Tkc9+7CirhxIHMFmw4KaukWzx3V9/3 3FKDG0F1aTNAo5kPCZ1JIl6w5A6qqi3Gn9ZRpwSwrqpXfzepDYVIvn/z2G0N1AoF 6RhdPDN/3VuXQwV5UKfJAX/cxoYC3UikWY8rJhTA7L5YR6TWutc= -----END CERTIFICATE-----Generated at Wed Feb 19 22:05:47 2025 by rpki-client