$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/1zRRvjrKNDyCJBHtuCZ22Hlum9Y.roa File: 1zRRvjrKNDyCJBHtuCZ22Hlum9Y.roa (raw, json) Hash identifier: 8qGj+eXplIj4OXR+tzkZi766mctsogbD86eCy1uk9lw= Subject key identifier: D7:34:51:BE:3A:CA:34:3C:82:24:11:ED:B8:26:76:D8:79:6E:9B:D6 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D7A Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/1zRRvjrKNDyCJBHtuCZ22Hlum9Y.roa Signing time: Mon 10 Feb 2025 13:50:03 +0000 ROA not before: Mon 10 Feb 2025 13:50:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 113.21.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3450 (0xd7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D73451BE3ACA343C822411EDB82676D8796E9BD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:05:c9:4a:94:ce:3f:30:1f:98:c2:21:2d:28: 3e:d3:dd:bd:ab:64:cc:7d:0d:bb:43:ac:de:46:32: 6b:d4:d5:4f:f7:33:36:a9:b2:f1:96:28:7e:2a:74: d6:ed:90:21:6b:74:3b:28:23:23:1b:4c:ce:e4:af: 6d:d5:07:a3:f0:bc:4b:89:23:24:78:67:e0:e9:de: 8c:98:4e:6f:0b:c4:7e:15:12:2a:a6:4a:3a:d9:01: 14:54:39:cb:3e:88:e2:1d:7f:70:09:48:6f:05:1f: e2:f8:e3:38:46:dc:81:44:b1:74:6b:42:29:af:f4: 64:e0:bd:75:72:82:b0:2f:67:8c:6e:16:e3:bf:12: 46:bc:c2:d8:00:90:28:e6:2c:75:18:e7:11:62:0c: 7b:89:ef:1b:28:7c:9a:0d:f0:5f:3c:49:1f:16:33: ee:0c:8d:42:0a:26:18:c2:9a:cd:2c:f6:e3:6c:76: 10:8e:2f:98:c8:72:2f:f8:4b:43:39:c4:c8:42:25: a8:a8:57:85:4a:85:c5:da:90:cf:ba:3b:fe:b4:de: 05:2c:0d:46:8c:8e:19:db:da:a4:84:47:11:1f:d4: f7:79:02:4e:98:f5:a0:ac:47:90:2d:c0:9d:83:1a: df:5c:cf:8e:25:27:68:00:3a:8a:08:d5:41:5e:83: 16:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:34:51:BE:3A:CA:34:3C:82:24:11:ED:B8:26:76:D8:79:6E:9B:D6 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/1zRRvjrKNDyCJBHtuCZ22Hlum9Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.160.0/19 Signature Algorithm: sha256WithRSAEncryption a1:1b:62:5b:26:88:37:71:53:78:4b:62:64:25:e8:21:6a:99: f3:a1:79:5d:9f:20:c9:e4:52:f3:b0:db:85:1c:4b:2a:8e:16: bf:c6:36:40:ac:bb:98:8d:bc:b7:03:93:df:88:36:66:8e:f4: 6d:2a:89:63:88:e9:3d:29:ef:39:cf:36:4d:f9:d5:68:94:50: 44:17:dc:73:f3:e8:11:45:37:a8:30:6b:30:1b:51:d9:0d:bc: 88:04:c3:c9:7a:b0:c6:89:c5:60:c8:00:c3:45:a3:00:27:2b: a2:43:91:71:d0:ee:18:d3:77:f1:d9:75:c8:1c:4b:dc:f7:cd: f9:d8:c0:fb:80:0f:ac:55:4d:d1:28:f3:fb:a2:7e:97:c7:bc: b4:c9:3b:36:69:10:ea:23:54:4c:16:e6:78:0f:8b:df:5b:fd: 71:14:b9:98:d3:6a:75:49:69:58:c7:f1:25:63:a1:66:85:b3: de:e8:0d:11:81:a5:ae:37:8e:da:2a:16:45:24:7e:43:a3:9e: 7e:d8:8d:f6:3a:00:2d:8b:74:93:9e:cf:d4:36:b4:00:f4:2f: 77:52:4b:92:e3:c0:01:56:e4:f4:06:a8:35:59:00:cb:b1:bb: f6:f5:e8:1b:e1:83:eb:6e:b8:ca:a2:c6:dc:62:5b:68:49:fc: 2b:bb:f1:04 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDXowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3MzQ1MUJFM0FDQTM0 M0M4MjI0MTFFREI4MjY3NkQ4Nzk2RTlCRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFBclKlM4/MB+YwiEtKD7T3b2rZMx9DbtDrN5GMmvU1U/3Mzap svGWKH4qdNbtkCFrdDsoIyMbTM7kr23VB6PwvEuJIyR4Z+Dp3oyYTm8LxH4VEiqm SjrZARRUOcs+iOIdf3AJSG8FH+L44zhG3IFEsXRrQimv9GTgvXVygrAvZ4xuFuO/ Eka8wtgAkCjmLHUY5xFiDHuJ7xsofJoN8F88SR8WM+4MjUIKJhjCms0s9uNsdhCO L5jIci/4S0M5xMhCJaioV4VKhcXakM+6O/603gUsDUaMjhnb2qSERxEf1Pd5Ak6Y 9aCsR5AtwJ2DGt9cz44lJ2gAOooI1UFegxY1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1zRRvjrKNDyCJBHtuCZ22Hlum9YwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzF6UlJ2anJLTkR5Q0pCSHR1 Q1oyMkhsdW05WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAVx FaAwDQYJKoZIhvcNAQELBQADggEBAKEbYlsmiDdxU3hLYmQl6CFqmfOheV2fIMnk UvOw24UcSyqOFr/GNkCsu5iNvLcDk9+INmaO9G0qiWOI6T0p7znPNk351WiUUEQX 3HPz6BFFN6gwazAbUdkNvIgEw8l6sMaJxWDIAMNFowAnK6JDkXHQ7hjTd/HZdcgc S9z3zfnYwPuAD6xVTdEo8/uifpfHvLTJOzZpEOojVEwW5ngPi99b/XEUuZjTanVJ aVjH8SVjoWaFs97oDRGBpa43jtoqFkUkfkOjnn7YjfY6AC2LdJOez9Q2tAD0L3dS S5LjwAFW5PQGqDVZAMuxu/b16Bvhg+tuuMqixtxiW2hJ/Cu78QQ= -----END CERTIFICATE-----Generated at Tue Apr 22 21:49:11 2025 by rpki-client