$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/uWisvgxnAxvKAIU-hu105mybV2c.roa File: uWisvgxnAxvKAIU-hu105mybV2c.roa (raw, json) Hash identifier: o2RovVBMLnpZ4KMr0RT6TM1k//nXmR+kz8k8ab65Cho= Subject key identifier: B9:68:AC:BE:0C:67:03:1B:CA:00:85:3E:86:ED:74:E6:6C:9B:57:67 Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D16 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/uWisvgxnAxvKAIU-hu105mybV2c.roa Signing time: Mon 26 Aug 2024 05:19:33 +0000 ROA not before: Mon 26 Aug 2024 05:19:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9416 IP address blocks: 115.43.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3350 (0xd16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 26 05:19:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B968ACBE0C67031BCA00853E86ED74E66C9B5767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:07:5f:65:da:86:67:aa:da:7b:a9:32:bd:80: f0:0b:80:bb:4b:c3:c5:2c:2d:21:d0:8a:a4:c6:67: c0:f9:29:0c:31:a7:2a:48:da:2e:e5:12:d0:c1:42: 5a:ed:a7:72:89:58:cf:6c:50:f9:8f:d4:f0:78:6e: 9e:10:5b:ac:2d:f6:d9:79:aa:4e:0d:5b:fa:dd:9e: 01:19:e3:98:ef:3d:e8:1a:77:ab:1e:ac:5b:f1:18: 92:bf:12:fa:73:87:60:d0:48:cc:f5:2c:62:a8:4c: 22:da:b0:ec:f3:1d:f7:ab:31:1a:78:47:34:01:15: f8:35:bc:3c:6b:eb:c3:97:c5:b1:fe:1c:5c:34:27: 4b:b6:58:51:c7:d5:c0:64:2e:0e:da:f2:0f:b8:ee: 3c:8c:da:3c:52:e8:6e:09:33:67:f9:65:4a:d0:87: 1c:1d:46:aa:56:7f:c3:b2:d4:b0:81:61:3a:81:e6: b7:67:6a:82:e5:60:1b:ba:ea:dc:5a:b0:7a:ce:83: 6e:b9:9f:53:5b:04:93:d8:6f:12:08:a4:fe:b3:98: 45:08:4c:be:ac:5f:1d:90:16:ee:50:4d:18:54:e8: b5:1f:cc:fc:17:1f:45:a1:30:d7:81:df:de:5b:29: 0f:e2:74:d3:06:11:0e:2e:0b:99:88:b5:05:83:26: bb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:68:AC:BE:0C:67:03:1B:CA:00:85:3E:86:ED:74:E6:6C:9B:57:67 X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/uWisvgxnAxvKAIU-hu105mybV2c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.43.0.0/17 Signature Algorithm: sha256WithRSAEncryption 56:38:60:6e:e7:fc:24:a2:fb:61:9b:86:6e:e7:4a:2a:e7:c7: 4b:de:b4:bf:bb:db:00:f1:73:ae:6e:6a:df:99:14:24:fd:38: c3:34:22:bb:52:61:c2:0d:e9:44:68:c8:a4:b1:41:b3:d3:ca: e9:aa:bf:76:98:98:0f:f6:2a:7e:31:84:68:e9:e4:09:de:12: de:bf:34:a7:74:95:5a:1b:4c:da:1d:41:20:9e:2c:0d:bf:8f: ba:b0:30:32:1a:91:93:d2:fd:ff:d7:a4:c5:7e:36:bf:ba:c0: 96:90:75:77:91:b5:11:62:37:c1:65:20:a9:1d:7a:7e:f5:b3: c4:9a:64:9b:61:6a:a6:69:13:6f:70:74:7e:59:a9:49:a0:d4: ff:6c:85:a6:72:81:ff:25:5e:a1:36:70:80:95:cb:9d:01:36: 78:b1:e5:11:d4:8b:fc:d4:b0:c6:20:1b:90:14:47:1f:b3:4b: ea:b8:f1:c2:3f:bc:2a:31:df:9c:b5:a4:b6:10:9e:1e:cb:2e: fc:fd:c0:53:72:3a:ff:3c:cf:c0:39:61:e5:66:1a:12:db:7a: 20:79:79:40:22:ea:d9:01:6b:27:9a:ca:a1:e3:b4:c0:3d:bd: fa:2f:26:a8:5a:d3:e5:36:58:e5:54:86:8a:b8:f2:23:94:6c: 5e:f0:ee:d8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDRYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNDA4MjYw NTE5MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI5NjhBQ0JFMEM2NzAz MUJDQTAwODUzRTg2RUQ3NEU2NkM5QjU3NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeB19l2oZnqtp7qTK9gPALgLtLw8UsLSHQiqTGZ8D5KQwxpypI 2i7lEtDBQlrtp3KJWM9sUPmP1PB4bp4QW6wt9tl5qk4NW/rdngEZ45jvPegad6se rFvxGJK/Evpzh2DQSMz1LGKoTCLasOzzHferMRp4RzQBFfg1vDxr68OXxbH+HFw0 J0u2WFHH1cBkLg7a8g+47jyM2jxS6G4JM2f5ZUrQhxwdRqpWf8Oy1LCBYTqB5rdn aoLlYBu66txasHrOg265n1NbBJPYbxIIpP6zmEUITL6sXx2QFu5QTRhU6LUfzPwX H0WhMNeB395bKQ/idNMGEQ4uC5mItQWDJrvrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUuWisvgxnAxvKAIU+hu105mybV2cwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL3VXaXN2Z3huQXh2S0FJVS1o dTEwNW15YlYyYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAdz KwAwDQYJKoZIhvcNAQELBQADggEBAFY4YG7n/CSi+2Gbhm7nSirnx0vetL+72wDx c65uat+ZFCT9OMM0IrtSYcIN6URoyKSxQbPTyumqv3aYmA/2Kn4xhGjp5AneEt6/ NKd0lVobTNodQSCeLA2/j7qwMDIakZPS/f/XpMV+Nr+6wJaQdXeRtRFiN8FlIKkd en71s8SaZJthaqZpE29wdH5ZqUmg1P9shaZygf8lXqE2cICVy50BNnix5RHUi/zU sMYgG5AURx+zS+q48cI/vCox35y1pLYQnh7LLvz9wFNyOv88z8A5YeVmGhLbeiB5 eUAi6tkBayeayqHjtMA9vfovJqha0+U2WOVUhoq48iOUbF7w7tg= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org