$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/kXy2V6DD3tFUQR94QhQeLifsQC4.roa File: kXy2V6DD3tFUQR94QhQeLifsQC4.roa (raw, json) Hash identifier: PzOE9nizAAibhz3jdWzPAzi0NIZlj9bHqY3xcXDe/iQ= Subject key identifier: 91:7C:B6:57:A0:C3:DE:D1:54:41:1F:78:42:14:1E:2E:27:EC:40:2E Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0BF5 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/kXy2V6DD3tFUQR94QhQeLifsQC4.roa Signing time: Fri 01 Sep 2023 09:11:49 +0000 ROA not before: Fri 01 Sep 2023 09:11:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9416 IP address blocks: 123.252.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3061 (0xbf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Sep 1 09:11:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=917CB657A0C3DED154411F7842141E2E27EC402E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:23:01:ff:4e:62:fe:96:fd:1a:0d:6c:a7:d2: df:e1:5d:67:73:68:f9:97:16:4b:3c:a9:35:66:a7: 22:0c:16:58:a2:31:00:fc:da:c5:27:c5:cf:a4:56: 1f:58:0e:7e:cd:0a:42:b3:50:2f:cb:3c:e8:eb:bf: 22:b8:fa:7a:84:8e:36:27:ba:d1:ac:79:ef:4c:71: 38:c4:75:21:e1:75:0e:5f:c9:5a:5b:3e:59:d1:75: 2e:d4:dd:6d:36:13:81:29:3b:cc:ce:32:08:ba:cc: ad:8c:2e:31:2a:3a:2f:15:88:a9:f0:e0:61:e6:71: db:f9:4c:a2:be:24:7c:40:f6:16:4a:bb:57:77:a6: 5a:f2:80:48:a2:09:8b:69:bf:68:9c:41:a2:73:c8: bb:f7:4f:b9:eb:f3:5e:5f:bc:2b:a5:2b:ae:f6:39: f8:26:57:a4:cf:45:7a:c8:f6:8e:95:49:71:2b:05: b8:d5:54:e9:be:e8:0d:4b:6c:85:9e:14:21:e7:81: 53:23:52:c9:69:fd:00:4c:3c:68:0b:4f:31:59:d0: 64:48:7f:46:37:22:a6:57:32:2f:5c:0e:82:c9:2e: e4:c0:4b:24:6c:53:92:94:ed:bc:73:03:3d:3c:70: 64:3b:5e:97:9d:c9:23:f6:f3:f7:76:96:b1:76:ed: 9d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:7C:B6:57:A0:C3:DE:D1:54:41:1F:78:42:14:1E:2E:27:EC:40:2E X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/kXy2V6DD3tFUQR94QhQeLifsQC4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.252.0.0/18 Signature Algorithm: sha256WithRSAEncryption 5a:0a:a7:04:43:09:87:c9:80:c8:4b:c1:ed:46:3c:47:2a:ed: 37:7e:59:67:e1:a6:97:1e:79:98:ce:a5:bc:8d:68:47:f8:41: 06:7b:28:88:0e:1f:fd:19:6e:29:c9:99:63:49:47:76:0d:9c: 12:37:f1:32:c4:40:b4:05:e9:83:07:5b:95:20:be:3f:24:5b: ae:79:0b:cc:66:ce:56:2d:a0:2f:28:fc:42:09:93:45:88:85: 38:ef:bd:59:f2:c1:c5:4a:6f:b8:66:14:89:13:08:64:11:be: 1a:d9:cc:a7:e9:22:08:f8:3e:af:55:5d:24:4f:71:de:0c:d0: 7e:3a:20:c0:af:72:44:34:7f:dc:47:00:5c:82:3b:ab:95:81: 72:08:73:69:b8:4b:59:59:ee:ec:d7:54:6b:f5:08:c5:f0:6d: dd:85:51:21:6b:5b:83:8e:a2:b1:38:99:e7:5a:5b:b5:57:18: 5d:9c:76:1e:e7:3a:b0:67:a2:44:3d:74:a2:cc:19:3e:9f:39: 74:4b:f9:5e:2c:8a:f4:b8:c8:58:c0:3f:0b:c9:90:56:32:ad: 6e:22:63:0c:4e:d9:e7:4b:75:41:c4:2b:47:d3:76:f6:bf:32: 6f:40:4a:03:81:cd:bf:02:63:41:a6:94:a9:b3:22:b2:ba:e7: 49:ca:91:21 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMzA5MDEw OTExNDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkxN0NCNjU3QTBDM0RF RDE1NDQxMUY3ODQyMTQxRTJFMjdFQzQwMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRIwH/TmL+lv0aDWyn0t/hXWdzaPmXFks8qTVmpyIMFliiMQD8 2sUnxc+kVh9YDn7NCkKzUC/LPOjrvyK4+nqEjjYnutGsee9McTjEdSHhdQ5fyVpb PlnRdS7U3W02E4EpO8zOMgi6zK2MLjEqOi8ViKnw4GHmcdv5TKK+JHxA9hZKu1d3 plrygEiiCYtpv2icQaJzyLv3T7nr815fvCulK672OfgmV6TPRXrI9o6VSXErBbjV VOm+6A1LbIWeFCHngVMjUslp/QBMPGgLTzFZ0GRIf0Y3IqZXMi9cDoLJLuTASyRs U5KU7bxzAz08cGQ7XpedySP28/d2lrF27Z0vAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUkXy2V6DD3tFUQR94QhQeLifsQC4wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL2tYeTJWNkREM3RGVVFSOTRR aFFlTGlmc1FDNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7 /AAwDQYJKoZIhvcNAQELBQADggEBAFoKpwRDCYfJgMhLwe1GPEcq7Td+WWfhppce eZjOpbyNaEf4QQZ7KIgOH/0ZbinJmWNJR3YNnBI38TLEQLQF6YMHW5Ugvj8kW655 C8xmzlYtoC8o/EIJk0WIhTjvvVnywcVKb7hmFIkTCGQRvhrZzKfpIgj4Pq9VXSRP cd4M0H46IMCvckQ0f9xHAFyCO6uVgXIIc2m4S1lZ7uzXVGv1CMXwbd2FUSFrW4OO orE4medaW7VXGF2cdh7nOrBnokQ9dKLMGT6fOXRL+V4sivS4yFjAPwvJkFYyrW4i YwxO2edLdUHEK0fTdva/Mm9ASgOBzb8CY0GmlKmzIrK650nKkSE= -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:22 2024 by rpki-client on console-fra.rpki-client.org