$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/-Y3G_mzeqbKpWwjkDqxpZ47wgzE.roa File: -Y3G_mzeqbKpWwjkDqxpZ47wgzE.roa (raw, json) Hash identifier: UHZLopSAcKQUTe8BsUAzxKnj29V7IX/ouCvpr5UTyIc= Subject key identifier: F9:8D:C6:FE:6C:DE:A9:B2:A9:5B:08:E4:0E:AC:69:67:8E:F0:83:31 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D77 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/-Y3G_mzeqbKpWwjkDqxpZ47wgzE.roa Signing time: Mon 10 Feb 2025 13:50:03 +0000 ROA not before: Mon 10 Feb 2025 13:50:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 113.21.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3447 (0xd77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F98DC6FE6CDEA9B2A95B08E40EAC69678EF08331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:be:d6:01:67:9c:53:5b:5e:f3:c0:21:f8:53: b5:04:05:40:26:65:11:d4:82:94:1f:2b:6f:57:47: 08:54:39:c4:b1:0d:d1:2c:44:c3:c0:ce:ea:9b:77: 35:82:96:08:b0:9d:b8:97:25:46:ad:27:75:34:04: e5:cd:11:70:12:fb:12:01:fc:dc:71:79:ff:2c:eb: 39:48:41:e3:ab:9e:91:79:84:82:ac:be:35:54:a1: d6:72:54:a0:7d:6a:01:68:38:85:2f:29:2d:cd:c3: a0:56:59:46:58:c7:79:c1:83:70:2b:78:08:5b:f3: 10:98:44:a7:45:22:3c:26:b9:0a:07:e3:88:c8:47: 31:47:f9:74:c7:42:0d:a6:e0:a0:68:92:7b:dc:bb: bd:de:cd:e4:69:9f:6a:50:30:32:71:17:71:ea:13: 53:64:b3:18:11:b3:b5:19:0f:97:a7:e6:d9:29:ed: 4b:c1:56:a2:6f:06:2f:bd:18:fa:bc:1a:8e:b4:91: a0:20:4f:46:3d:d7:34:d9:ff:e9:aa:8a:ae:fc:8c: 27:c7:f8:b3:80:87:c6:23:8d:1e:3a:6c:ea:f6:64: b4:d9:fa:9c:ee:e6:5f:2f:72:24:75:22:40:29:7a: b5:74:23:1c:b4:77:dd:5d:d3:ee:7e:ce:87:b6:cc: 67:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:8D:C6:FE:6C:DE:A9:B2:A9:5B:08:E4:0E:AC:69:67:8E:F0:83:31 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/-Y3G_mzeqbKpWwjkDqxpZ47wgzE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.175.0/24 Signature Algorithm: sha256WithRSAEncryption 14:1c:5d:90:33:fe:64:c2:f7:1b:74:cc:db:89:c2:39:26:5b: 16:19:9d:a5:3a:50:4e:8b:c8:a5:96:99:49:c3:b7:fd:10:a7: a0:7b:5e:6b:71:90:a6:ff:58:39:00:e9:27:5f:46:d5:d6:25: 90:e4:27:da:b8:8b:9e:b2:9a:96:81:70:85:66:9d:af:01:70: c8:e2:ee:e6:27:75:33:d0:2e:87:46:72:39:cb:78:18:c3:59: 74:5d:c8:35:c2:8d:59:55:d7:4b:aa:9a:ae:35:e7:b5:0e:3b: e4:03:27:50:41:90:2f:67:a5:e1:87:9c:a5:fa:af:75:48:63: 20:74:42:b5:ec:04:ba:f0:0a:ed:2c:ad:c3:52:0f:e2:ce:57: 2a:d6:a8:0a:47:1b:4c:71:20:c8:90:64:01:a6:26:fc:48:db: aa:1c:6b:7c:43:d5:d6:31:3b:b1:d3:b8:5d:b9:63:4c:67:7c: 1f:bc:95:de:9a:7b:b5:14:26:4e:a0:ba:fc:2e:2f:f8:54:de: 2b:e0:ef:e2:d1:94:b4:a7:2d:53:67:23:b0:eb:c1:71:48:da: c1:65:9b:78:c6:1c:14:aa:5e:5f:22:4c:e5:05:d6:c8:e6:60: c9:95:0b:a0:76:c9:0c:cc:d9:d0:25:c4:b6:dc:04:ef:53:88: 2d:71:16:09 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDXcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5OERDNkZFNkNERUE5 QjJBOTVCMDhFNDBFQUM2OTY3OEVGMDgzMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbvtYBZ5xTW17zwCH4U7UEBUAmZRHUgpQfK29XRwhUOcSxDdEs RMPAzuqbdzWClgiwnbiXJUatJ3U0BOXNEXAS+xIB/Nxxef8s6zlIQeOrnpF5hIKs vjVUodZyVKB9agFoOIUvKS3Nw6BWWUZYx3nBg3AreAhb8xCYRKdFIjwmuQoH44jI RzFH+XTHQg2m4KBoknvcu73ezeRpn2pQMDJxF3HqE1NksxgRs7UZD5en5tkp7UvB VqJvBi+9GPq8Go60kaAgT0Y91zTZ/+mqiq78jCfH+LOAh8YjjR46bOr2ZLTZ+pzu 5l8vciR1IkAperV0Ixy0d91d0+5+zoe2zGdhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+Y3G/mzeqbKpWwjkDqxpZ47wgzEwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULy1ZM0dfbXplcWJLcFd3amtE cXhwWjQ3d2d6RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABx Fa8wDQYJKoZIhvcNAQELBQADggEBABQcXZAz/mTC9xt0zNuJwjkmWxYZnaU6UE6L yKWWmUnDt/0Qp6B7XmtxkKb/WDkA6SdfRtXWJZDkJ9q4i56ympaBcIVmna8BcMji 7uYndTPQLodGcjnLeBjDWXRdyDXCjVlV10uqmq4157UOO+QDJ1BBkC9npeGHnKX6 r3VIYyB0QrXsBLrwCu0srcNSD+LOVyrWqApHG0xxIMiQZAGmJvxI26oca3xD1dYx O7HTuF25Y0xnfB+8ld6ae7UUJk6guvwuL/hU3ivg7+LRlLSnLVNnI7DrwXFI2sFl m3jGHBSqXl8iTOUF1sjmYMmVC6B2yQzM2dAlxLbcBO9TiC1xFgk= -----END CERTIFICATE-----Generated at Tue Apr 22 23:18:36 2025 by rpki-client