$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/4bcVKhhZkpzyXVdWiaa5l31dHoU.roa File: 4bcVKhhZkpzyXVdWiaa5l31dHoU.roa (raw, json) Hash identifier: eYtLjG6zcO07PA4B0YCryyfNiPbBX0xZNxetzKPL6Ms= Subject key identifier: E1:B7:15:2A:18:59:92:9C:F2:5D:57:56:89:A6:B9:97:7D:5D:1E:85 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D8C Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/4bcVKhhZkpzyXVdWiaa5l31dHoU.roa Signing time: Mon 10 Feb 2025 13:50:06 +0000 ROA not before: Mon 10 Feb 2025 13:50:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 113.21.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 21:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3468 (0xd8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E1B7152A1859929CF25D575689A6B9977D5D1E85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:af:3a:9d:95:bc:c6:4a:90:62:52:c3:8b:a7: 44:2e:9d:19:e3:0d:fd:58:64:b9:0c:81:f3:c8:55: ec:46:d7:19:c3:65:06:c0:2a:8e:bb:41:25:5b:e3: ec:22:e1:7b:df:ed:70:0d:03:9d:fa:39:74:68:27: fd:4c:43:7b:6b:79:f0:ea:01:62:72:32:02:42:a4: 39:7a:ba:61:4e:d9:72:3e:11:17:dd:af:09:1d:36: df:be:f8:94:42:b8:1d:0d:85:2f:a8:31:ba:ba:6f: ec:b0:d5:0c:3f:7f:5b:ba:5f:7f:b3:3b:98:79:90: 30:d4:06:15:d8:0a:c2:70:f0:fb:b6:ca:13:11:7b: d8:b9:42:0f:8d:9d:2a:50:2a:2b:cd:09:75:65:04: 75:ca:37:5b:9b:71:73:ca:f2:5d:ea:28:7c:91:94: 58:2b:98:96:41:27:39:9e:7e:43:7d:94:f8:1c:16: 82:83:17:9d:80:d4:56:12:88:e4:db:c2:a7:0a:f6: bf:c8:96:c6:d7:cd:5d:3f:64:c5:fd:ff:b7:52:cb: 71:49:24:14:b2:e6:e4:df:1e:f5:50:e7:a9:23:45: f7:6a:87:6e:0a:22:e8:ba:6f:d9:02:b7:72:a9:3f: 73:25:74:23:91:21:89:90:79:6c:1a:1e:da:db:34: f3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B7:15:2A:18:59:92:9C:F2:5D:57:56:89:A6:B9:97:7D:5D:1E:85 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/4bcVKhhZkpzyXVdWiaa5l31dHoU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.160.0/20 Signature Algorithm: sha256WithRSAEncryption 57:64:54:00:67:0e:af:bd:f7:a2:ad:8d:71:c7:32:ba:a2:3b: b9:2a:90:83:e0:5c:ed:ee:70:66:f7:fe:b3:c8:39:3c:03:a6: 44:ae:54:97:e9:d3:b3:e3:2d:f6:60:47:33:22:07:5d:cf:5b: 67:49:2f:02:03:d2:94:bb:71:c7:c4:97:de:ec:e7:5a:bb:51: 45:a0:be:13:e9:c6:43:03:59:14:18:06:30:5b:0c:11:ad:69: 1d:24:db:38:8f:bf:c5:4a:70:b3:5a:aa:1d:e7:1f:cb:09:92: d5:0a:d6:d5:9e:86:a7:40:de:ca:68:27:5d:f7:9b:5c:0e:8e: 7b:f8:2e:be:07:e6:4c:e2:ec:e0:e8:06:77:7b:21:a5:9a:4f: 83:9c:4c:fc:d4:e5:92:38:37:fb:30:4b:e8:bc:ec:15:01:ea: 31:7e:3c:41:e1:5c:36:bd:55:3a:75:cd:38:71:8f:61:65:1b: 09:ea:ec:8d:1c:97:0c:00:56:4f:87:38:96:cb:f0:30:a8:9c: b9:eb:24:0e:fe:cd:b4:80:5f:80:27:a9:47:f2:05:4f:98:ff: a5:dd:fe:d1:9f:12:d3:e4:f7:88:38:28:d4:c5:c3:4e:50:c7: 39:fd:7d:2f:6c:a3:6b:3c:57:16:fe:d5:71:68:78:a5:c9:cf: e7:88:23:a0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUxQjcxNTJBMTg1OTky OUNGMjVENTc1Njg5QTZCOTk3N0Q1RDFFODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+rzqdlbzGSpBiUsOLp0QunRnjDf1YZLkMgfPIVexG1xnDZQbA Ko67QSVb4+wi4Xvf7XANA536OXRoJ/1MQ3trefDqAWJyMgJCpDl6umFO2XI+ERfd rwkdNt+++JRCuB0NhS+oMbq6b+yw1Qw/f1u6X3+zO5h5kDDUBhXYCsJw8Pu2yhMR e9i5Qg+NnSpQKivNCXVlBHXKN1ubcXPK8l3qKHyRlFgrmJZBJzmefkN9lPgcFoKD F52A1FYSiOTbwqcK9r/IlsbXzV0/ZMX9/7dSy3FJJBSy5uTfHvVQ56kjRfdqh24K Iui6b9kCt3KpP3MldCORIYmQeWwaHtrbNPNHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU4bcVKhhZkpzyXVdWiaa5l31dHoUwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzRiY1ZLaGhaa3B6eVhWZFdp YWE1bDMxZEhvVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARx FaAwDQYJKoZIhvcNAQELBQADggEBAFdkVABnDq+996KtjXHHMrqiO7kqkIPgXO3u cGb3/rPIOTwDpkSuVJfp07PjLfZgRzMiB13PW2dJLwID0pS7ccfEl97s51q7UUWg vhPpxkMDWRQYBjBbDBGtaR0k2ziPv8VKcLNaqh3nH8sJktUK1tWehqdA3spoJ133 m1wOjnv4Lr4H5kzi7ODoBnd7IaWaT4OcTPzU5ZI4N/swS+i87BUB6jF+PEHhXDa9 VTp1zThxj2FlGwnq7I0clwwAVk+HOJbL8DConLnrJA7+zbSAX4AnqUfyBU+Y/6Xd /tGfEtPk94g4KNTFw05Qxzn9fS9so2s8Vxb+1XFoeKXJz+eII6A= -----END CERTIFICATE-----Generated at Tue Apr 22 19:11:44 2025 by rpki-client