$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/5GoRWa8ASwsD0dCWI9I20b80k4U.roa File: 5GoRWa8ASwsD0dCWI9I20b80k4U.roa (raw, json) Hash identifier: qH0hiNyUMWs84aJY4EhTlAS38++2Vu268nylMnfYSrs= Subject key identifier: E4:6A:11:59:AF:00:4B:0B:03:D1:D0:96:23:D2:36:D1:BF:34:93:85 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BC9 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/5GoRWa8ASwsD0dCWI9I20b80k4U.roa Signing time: Fri 01 Sep 2023 08:36:45 +0000 ROA not before: Fri 01 Sep 2023 08:36:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 61.247.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 20:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E46A1159AF004B0B03D1D09623D236D1BF349385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d0:68:66:ed:83:1f:9a:ff:7e:da:6b:a6:3e: 5f:a8:a7:97:d4:e8:7f:ba:79:04:fd:c8:4a:4f:de: 29:6e:f9:e3:10:0e:c7:57:ec:10:84:d1:5e:01:3d: a5:83:31:79:50:69:fa:42:3d:f0:2c:14:ad:d2:bb: 08:f4:8d:7e:d9:c3:63:0e:46:c8:34:c1:97:67:1f: c9:76:02:c4:c0:21:3e:67:a7:5b:4a:d5:0a:e5:04: 99:74:68:ef:f0:6f:19:b1:68:de:4a:5b:01:b9:45: 62:a3:dd:7d:ce:98:fe:f2:51:2d:25:76:e7:4e:29: 89:12:c0:a0:b0:38:9f:61:e0:02:86:35:24:a2:59: 18:f4:48:7f:61:40:bd:d9:f3:dd:57:9b:5e:92:50: 2a:76:60:79:1f:d3:ba:d7:ec:73:b7:13:18:26:54: b3:53:cb:6c:45:43:1f:b5:af:54:5c:48:8d:48:d6: da:f4:da:06:04:59:26:6d:89:4e:8e:2f:7c:25:67: 0d:64:01:14:43:0a:09:8d:c1:2b:46:07:d2:53:6a: 13:48:67:1b:ea:fd:dd:a0:e2:e8:54:23:83:d2:4b: e5:a2:86:01:b1:8d:0c:4c:1d:75:8f:73:24:6b:76: 65:a7:61:8c:dc:c9:05:ed:df:ed:70:86:d7:dd:b0: 52:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:6A:11:59:AF:00:4B:0B:03:D1:D0:96:23:D2:36:D1:BF:34:93:85 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/5GoRWa8ASwsD0dCWI9I20b80k4U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.247.165.0/24 Signature Algorithm: sha256WithRSAEncryption 16:ed:1b:fd:08:f8:3c:1f:e9:bd:06:ed:7d:ee:35:55:bf:e4: c4:82:e8:43:88:cf:a9:b8:f5:06:a6:39:f4:ce:7e:5b:1e:5e: a0:11:ed:dc:40:7f:e6:ca:e7:4d:28:28:ce:31:fc:23:20:9b: 1f:42:82:19:f1:01:29:0e:a8:ab:3b:46:fe:93:ad:63:8e:78: bd:f3:96:b3:ea:44:bd:a9:57:8a:cf:eb:a5:bd:ea:2d:0d:2e: 59:de:89:f9:4a:22:dc:1f:1d:fc:46:94:85:03:cb:41:99:93: 94:d5:b1:c8:2c:3d:7c:cc:dd:dd:c7:1e:ab:05:21:53:3d:87: cc:27:6d:f2:3c:5a:f8:b8:32:7c:ba:6c:bb:c2:98:e7:33:73: 8f:8c:45:67:90:3c:61:b5:0a:ac:0b:38:3d:48:a2:20:97:77: b0:65:1b:16:2a:3f:a9:f1:7c:d9:48:f5:c3:08:6c:c1:bb:6e: 18:da:78:73:a9:9c:cf:5b:ba:34:09:6a:64:7e:d2:e4:12:fb: bb:9a:39:cb:76:00:0c:84:ed:c4:ce:00:27:13:30:e7:2a:3b: c7:13:07:5b:02:ad:fa:dc:4a:21:47:36:20:fe:7d:bb:ca:c5: ff:e9:67:27:2d:11:1b:7c:84:85:44:9b:86:c9:0f:9f:06:ad: 03:ae:93:65 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU0NkExMTU5QUYwMDRC MEIwM0QxRDA5NjIzRDIzNkQxQkYzNDkzODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS0Ghm7YMfmv9+2mumPl+op5fU6H+6eQT9yEpP3ilu+eMQDsdX 7BCE0V4BPaWDMXlQafpCPfAsFK3Suwj0jX7Zw2MORsg0wZdnH8l2AsTAIT5np1tK 1QrlBJl0aO/wbxmxaN5KWwG5RWKj3X3OmP7yUS0ldudOKYkSwKCwOJ9h4AKGNSSi WRj0SH9hQL3Z891Xm16SUCp2YHkf07rX7HO3ExgmVLNTy2xFQx+1r1RcSI1I1tr0 2gYEWSZtiU6OL3wlZw1kARRDCgmNwStGB9JTahNIZxvq/d2g4uhUI4PSS+WihgGx jQxMHXWPcyRrdmWnYYzcyQXt3+1whtfdsFIpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5GoRWa8ASwsD0dCWI9I20b80k4UwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzVHb1JXYThBU3dzRDBkQ1dJ OUkyMGI4MGs0VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 96UwDQYJKoZIhvcNAQELBQADggEBABbtG/0I+Dwf6b0G7X3uNVW/5MSC6EOIz6m4 9QamOfTOflseXqAR7dxAf+bK500oKM4x/CMgmx9CghnxASkOqKs7Rv6TrWOOeL3z lrPqRL2pV4rP66W96i0NLlneiflKItwfHfxGlIUDy0GZk5TVscgsPXzM3d3HHqsF IVM9h8wnbfI8Wvi4Mny6bLvCmOczc4+MRWeQPGG1CqwLOD1IoiCXd7BlGxYqP6nx fNlI9cMIbMG7bhjaeHOpnM9bujQJamR+0uQS+7uaOct2AAyE7cTOACcTMOcqO8cT B1sCrfrcSiFHNiD+fbvKxf/pZyctERt8hIVEm4bJD58GrQOuk2U= -----END CERTIFICATE-----Generated at Sun Jun 23 15:31:59 2024 by rpki-client on console-ams.rpki-client.org