$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/q-Wq6lWMQqVTwNUg52JrQIJNTK0.roa File: q-Wq6lWMQqVTwNUg52JrQIJNTK0.roa (raw, json) Hash identifier: gx73p2UnG0M9sAWCdiCBde8U0ghm12g2Q3k9wUu/IaI= Subject key identifier: AB:E5:AA:EA:55:8C:42:A5:53:C0:D5:20:E7:62:6B:40:82:4D:4C:AD Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0DAD Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/q-Wq6lWMQqVTwNUg52JrQIJNTK0.roa Signing time: Mon 10 Feb 2025 14:06:11 +0000 ROA not before: Mon 10 Feb 2025 14:06:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 122.99.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3501 (0xdad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Feb 10 14:06:11 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ABE5AAEA558C42A553C0D520E7626B40824D4CAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:45:4b:fd:8e:d9:d3:fa:9c:71:36:e1:2d:3a: 48:2f:c3:93:5f:8b:30:59:12:25:dc:0e:74:37:bf: f1:5f:95:57:5f:ce:3c:37:e2:99:9e:b4:5d:e4:fe: f2:b1:48:22:5c:74:a6:d5:52:74:ec:b8:4d:ec:0c: 95:ab:66:af:8d:e1:70:fb:31:4f:d4:52:86:c3:80: c3:eb:1f:14:ca:72:94:d2:0d:07:60:dd:10:8f:7f: 91:c3:b3:ca:58:c3:6e:cf:02:0d:a5:de:d5:e5:58: 9e:65:21:be:d4:45:e9:4d:13:9f:d2:eb:09:ca:df: a3:7b:5d:6e:c1:0b:51:09:83:76:12:5d:dc:b4:93: 92:60:ba:77:ed:cf:ac:c9:7d:db:ce:a5:6b:05:fe: 10:9a:1f:84:f3:43:60:ac:e7:2b:a4:0f:41:a7:c7: c3:ea:39:99:da:91:a7:1f:45:31:6c:4c:bd:b2:44: 37:1e:26:d1:4a:6d:fe:2c:83:63:4f:1a:80:44:28: c6:32:26:0f:3a:ac:e5:bf:a1:4a:4a:75:87:9d:09: 04:7b:b0:37:42:91:c8:b7:df:0d:3f:e3:86:12:9d: 44:d7:38:89:b2:01:5c:8d:67:9f:3f:f9:4c:79:ff: f6:ad:0c:30:71:98:3d:27:0b:24:c1:e0:71:a3:99: 67:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E5:AA:EA:55:8C:42:A5:53:C0:D5:20:E7:62:6B:40:82:4D:4C:AD X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/q-Wq6lWMQqVTwNUg52JrQIJNTK0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.99.0.0/18 Signature Algorithm: sha256WithRSAEncryption 73:f9:ae:cd:06:c1:29:81:64:bd:3f:52:b5:0b:24:9a:42:f8: 7e:16:5d:a4:15:88:ca:3f:ba:07:b9:f2:71:72:6b:8c:98:a9: cc:f3:74:8c:fb:63:7b:68:36:1e:b7:78:59:bb:77:3a:12:8f: bc:b1:06:2c:3a:e9:5e:07:6a:dc:d9:03:d7:c3:e3:a4:a3:88: 66:d0:b8:47:42:50:96:e1:3d:36:e6:e7:56:5b:2d:93:f2:b6: 09:84:04:f7:ad:10:75:87:e7:1f:a2:b2:d2:46:96:6a:6f:01: 63:2e:32:53:b7:15:fe:31:90:a5:f6:81:e5:40:b0:4f:f4:06: a6:95:bf:a9:56:3a:f5:34:1a:9f:64:20:0a:e0:d2:52:86:44: 91:c1:7e:ad:fd:9f:46:e0:62:51:88:2a:84:3a:14:20:16:43: d1:6b:8b:0b:10:17:c3:c4:1e:39:c0:87:2d:e8:32:7a:42:eb: 18:6c:5e:34:fb:72:31:0f:8a:39:37:9c:0c:65:3c:4d:32:c3: f7:23:93:ec:51:a4:9b:05:60:20:be:7d:88:0f:eb:25:fd:5e: dc:c3:e0:37:a7:68:00:24:7f:e4:7b:05:4c:62:bd:49:64:b4: db:47:35:19:b7:0a:2b:6b:e4:19:4e:8f:4e:4b:c9:88:f0:f8: 3a:bc:0f:29 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDa0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNTAyMTAx NDA2MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFCRTVBQUVBNTU4QzQy QTU1M0MwRDUyMEU3NjI2QjQwODI0RDRDQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0RUv9jtnT+pxxNuEtOkgvw5NfizBZEiXcDnQ3v/FflVdfzjw3 4pmetF3k/vKxSCJcdKbVUnTsuE3sDJWrZq+N4XD7MU/UUobDgMPrHxTKcpTSDQdg 3RCPf5HDs8pYw27PAg2l3tXlWJ5lIb7URelNE5/S6wnK36N7XW7BC1EJg3YSXdy0 k5Jgunftz6zJfdvOpWsF/hCaH4TzQ2Cs5yukD0Gnx8PqOZnakacfRTFsTL2yRDce JtFKbf4sg2NPGoBEKMYyJg86rOW/oUpKdYedCQR7sDdCkci33w0/44YSnUTXOImy AVyNZ58/+Ux5//atDDBxmD0nCyTB4HGjmWfFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUq+Wq6lWMQqVTwNUg52JrQIJNTK0wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL3EtV3E2bFdNUXFWVHdOVWc1 MkpyUUlKTlRLMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6 YwAwDQYJKoZIhvcNAQELBQADggEBAHP5rs0GwSmBZL0/UrULJJpC+H4WXaQViMo/ uge58nFya4yYqczzdIz7Y3toNh63eFm7dzoSj7yxBiw66V4HatzZA9fD46SjiGbQ uEdCUJbhPTbm51ZbLZPytgmEBPetEHWH5x+istJGlmpvAWMuMlO3Ff4xkKX2geVA sE/0BqaVv6lWOvU0Gp9kIArg0lKGRJHBfq39n0bgYlGIKoQ6FCAWQ9FriwsQF8PE HjnAhy3oMnpC6xhsXjT7cjEPijk3nAxlPE0yw/cjk+xRpJsFYCC+fYgP6yX9XtzD 4DenaAAkf+R7BUxivUlktNtHNRm3Citr5BlOj05LyYjw+Dq8Dyk= -----END CERTIFICATE-----Generated at Wed Feb 19 21:57:32 2025 by rpki-client