$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/yKtoukL--xaX9tAphrQ5WhovY6s.roa File: yKtoukL--xaX9tAphrQ5WhovY6s.roa (raw, json) Hash identifier: LZ/s7iva/wGPP8KEdiNj/Opo4G1/9uxbE9+jecI36dQ= Subject key identifier: C8:AB:68:BA:42:FE:FB:16:97:F6:D0:29:86:B4:39:5A:1A:2F:63:AB Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Certificate serial: 0D27 Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/yKtoukL--xaX9tAphrQ5WhovY6s.roa Signing time: Mon 26 Aug 2024 05:19:36 +0000 ROA not before: Mon 26 Aug 2024 05:19:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 124.155.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3367 (0xd27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929 Validity Not Before: Aug 26 05:19:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C8AB68BA42FEFB1697F6D02986B4395A1A2F63AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:28:3c:55:55:70:6a:7f:5a:45:c9:46:c6:f6: aa:c8:56:4f:f9:f1:45:be:4d:bd:0c:38:34:83:8d: 5e:67:c3:1b:42:0f:74:19:55:93:65:cb:ba:8c:f7: ea:02:33:b7:1b:9b:2c:64:66:02:4b:e8:af:30:09: 1d:1f:0b:06:52:d3:5f:63:88:3e:90:1b:36:2a:61: d1:32:2f:20:ac:e0:38:35:23:28:4e:ee:7a:d2:e2: a5:59:64:44:c4:c4:33:f8:46:53:c2:fb:ca:68:46: ba:89:fc:14:cd:97:e7:a0:24:a9:15:be:0e:92:74: 99:cf:ef:ef:36:5d:04:c7:af:01:09:8e:5f:7f:cf: 7b:61:2c:9b:d1:66:a1:3d:71:92:68:3c:49:d6:4c: 62:84:0f:65:1c:cf:a0:de:b7:e6:00:06:31:1f:59: 5e:32:6d:80:5e:3b:04:d1:62:a6:e3:56:f6:f9:f3: 29:80:83:d4:c3:32:5b:ea:cf:5c:70:67:ee:c5:c4: dd:dc:ac:8e:de:5e:16:26:17:cc:e4:3a:be:0b:03: 06:d3:26:03:59:8b:7e:17:d5:10:9a:de:b1:6e:72: a1:f0:f9:a6:08:cc:e9:a3:a5:07:b6:2b:98:a1:ab: e9:20:b0:e2:ea:3f:7f:8d:08:b5:91:5c:89:85:9d: 51:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:AB:68:BA:42:FE:FB:16:97:F6:D0:29:86:B4:39:5A:1A:2F:63:AB X509v3 Authority Key Identifier: keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/yKtoukL--xaX9tAphrQ5WhovY6s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.155.128.0/19 Signature Algorithm: sha256WithRSAEncryption 42:21:d2:b7:b1:b3:b3:6e:42:ad:e8:d0:81:d7:af:c7:c7:a1: ab:3a:0f:b0:9f:58:e0:14:ce:be:2f:e9:7e:ee:37:cd:2d:2b: e5:9f:1c:12:a5:e7:72:33:6e:22:a0:1a:49:6e:37:db:b7:55: 95:5f:a2:d0:85:b0:0c:81:a0:51:1f:9a:dc:6d:8f:8c:c8:5c: 5d:38:07:86:fc:9f:7a:b3:3c:e4:ff:cf:ee:67:b1:6b:26:30: 9f:16:3c:0e:8a:47:27:6f:d8:9f:ea:47:82:45:6c:7d:bb:82: a8:ed:3d:6f:47:1c:94:ba:0e:f2:8e:65:bc:43:bb:dd:5c:27: 22:5b:15:dc:f8:c7:ce:55:51:86:2b:6f:5c:8e:70:72:81:9b: e7:b2:ff:03:13:aa:7e:4b:0e:19:78:60:83:51:f2:45:a2:2c: 73:d4:06:71:a6:84:55:b6:bd:69:b2:8a:85:9b:99:8f:a3:e1: d4:22:c5:ca:d4:c4:b3:fc:e5:4e:6b:29:2b:96:39:7b:52:d5: c6:2b:ea:b1:60:4b:c3:d2:51:87:46:b5:88:e9:c4:55:59:33: 29:41:37:a9:72:df:3d:70:f4:fd:4d:8b:f0:6b:17:41:a2:ac: 61:e6:54:66:d0:90:ae:27:64:4a:b5:bb:64:6d:47:82:27:cf: 90:56:72:a0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDScwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5 QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yNDA4MjYw NTE5MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM4QUI2OEJBNDJGRUZC MTY5N0Y2RDAyOTg2QjQzOTVBMUEyRjYzQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSKDxVVXBqf1pFyUbG9qrIVk/58UW+Tb0MODSDjV5nwxtCD3QZ VZNly7qM9+oCM7cbmyxkZgJL6K8wCR0fCwZS019jiD6QGzYqYdEyLyCs4Dg1IyhO 7nrS4qVZZETExDP4RlPC+8poRrqJ/BTNl+egJKkVvg6SdJnP7+82XQTHrwEJjl9/ z3thLJvRZqE9cZJoPEnWTGKED2Ucz6Det+YABjEfWV4ybYBeOwTRYqbjVvb58ymA g9TDMlvqz1xwZ+7FxN3crI7eXhYmF8zkOr4LAwbTJgNZi34X1RCa3rFucqHw+aYI zOmjpQe2K5ihq+kgsOLqP3+NCLWRXImFnVGxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyKtoukL++xaX9tAphrQ5WhovY6swHwYDVR0jBBgwFoAUmZu+Ex3100bydifM T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL3lLdG91a0wtLXhhWDl0QXBo clE1V2hvdlk2cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8 m4AwDQYJKoZIhvcNAQELBQADggEBAEIh0rexs7NuQq3o0IHXr8fHoas6D7CfWOAU zr4v6X7uN80tK+WfHBKl53IzbiKgGkluN9u3VZVfotCFsAyBoFEfmtxtj4zIXF04 B4b8n3qzPOT/z+5nsWsmMJ8WPA6KRydv2J/qR4JFbH27gqjtPW9HHJS6DvKOZbxD u91cJyJbFdz4x85VUYYrb1yOcHKBm+ey/wMTqn5LDhl4YINR8kWiLHPUBnGmhFW2 vWmyioWbmY+j4dQixcrUxLP85U5rKSuWOXtS1cYr6rFgS8PSUYdGtYjpxFVZMylB N6ly3z1w9P1Ni/BrF0GirGHmVGbQkK4nZEq1u2RtR4Inz5BWcqA= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org