$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/8EuyTwIGqw1Yw-MZyeDUgnJKQIw.roa File: 8EuyTwIGqw1Yw-MZyeDUgnJKQIw.roa (raw, json) Hash identifier: ntTma9S89FxA3rapKlD2m6zcs+z8FpKpnR0sJWo3MGA= Subject key identifier: F0:4B:B2:4F:02:06:AB:0D:58:C3:E3:19:C9:E0:D4:82:72:4A:40:8C Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D82 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/8EuyTwIGqw1Yw-MZyeDUgnJKQIw.roa Signing time: Mon 10 Feb 2025 13:50:04 +0000 ROA not before: Mon 10 Feb 2025 13:50:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.56.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3458 (0xd82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F04BB24F0206AB0D58C3E319C9E0D482724A408C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4a:c1:ec:00:74:14:81:36:22:d6:de:8a:cc: 31:1b:f1:f9:45:55:c1:2a:72:c8:df:19:b0:a1:d5: 4f:45:a7:f8:28:c6:4a:12:e5:6d:e3:8c:5b:b3:ea: d8:c0:fb:3e:d2:c7:a4:07:76:e6:0f:89:99:eb:b8: a1:97:a9:0d:38:b9:7e:a3:d1:09:29:a6:15:03:2a: 3c:5d:20:78:39:e3:e6:03:bb:b9:d8:5e:b4:84:2f: 82:7a:02:eb:b5:a4:0c:fe:98:fb:2d:1e:97:cb:9a: ea:10:5c:c4:c5:96:6d:bd:1a:6a:84:11:30:1b:55: c9:fa:07:0c:a6:67:28:6b:ce:02:8f:e4:59:e0:59: 60:5a:8e:eb:4f:11:f9:cc:00:7a:b0:9b:ea:78:f5: 7d:80:f8:73:89:0b:af:33:c4:53:4b:7a:fc:84:de: c2:f0:09:b7:b7:b7:cf:93:fb:90:6c:4c:04:d6:cd: fb:e7:7a:48:d3:0a:59:0e:d2:b1:19:e3:c1:04:0f: 1d:f4:30:e7:bb:16:5e:d4:c7:65:38:35:3e:b5:17: a8:a1:03:4e:11:29:99:26:a8:1c:6b:6e:03:28:49: 9d:68:53:26:35:a9:4f:9f:8b:ff:63:e7:3a:8b:64: 93:b6:ad:7e:6b:5b:b9:85:e1:ee:73:a5:cd:24:4d: 94:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:4B:B2:4F:02:06:AB:0D:58:C3:E3:19:C9:E0:D4:82:72:4A:40:8C X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/8EuyTwIGqw1Yw-MZyeDUgnJKQIw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.80.0/21 Signature Algorithm: sha256WithRSAEncryption 47:60:dd:2f:07:79:be:5e:84:7b:05:b6:b4:00:48:95:79:96: af:7c:4b:d5:a9:ce:4a:79:2c:b0:95:23:67:b5:25:ea:ed:99: 35:1f:d8:74:e5:15:22:06:67:98:70:cb:b5:9b:dc:79:9f:e3: 81:0b:cf:65:c5:44:94:e8:d4:f1:1d:28:a9:18:9a:52:07:e4: c9:b8:e8:dd:fe:c2:b0:5d:fd:a5:9f:33:49:57:e7:b9:2c:08: cc:bd:58:f6:3f:ee:54:bb:e5:0c:d3:0e:34:3d:9c:d0:72:c7: c0:3e:0e:59:74:88:c7:a1:25:5c:46:1d:a2:24:81:44:e2:f0: cd:17:56:86:63:b9:52:c9:19:aa:69:1f:de:3a:61:4a:91:eb: 94:57:50:69:d2:3a:55:99:3b:2d:0a:82:0d:f6:ef:8e:aa:7c: 12:e1:4a:e3:69:a6:da:be:59:e9:cd:5d:f5:a8:b3:dd:2f:cd: 8e:6b:9a:6f:e3:16:09:7f:e1:9a:08:df:6c:ff:8f:2b:a2:98: e6:c2:52:55:24:b0:ac:17:e9:54:cb:ed:8f:9b:ab:d4:05:b4: 6d:f7:94:6f:4e:d6:53:cf:d7:5c:5f:66:da:0b:9e:06:94:d9: 1e:a1:cf:22:d5:d8:c0:a6:6b:24:66:79:69:9e:a1:28:a8:25: 07:f5:99:9f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYwNEJCMjRGMDIwNkFC MEQ1OEMzRTMxOUM5RTBENDgyNzI0QTQwOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFSsHsAHQUgTYi1t6KzDEb8flFVcEqcsjfGbCh1U9Fp/goxkoS 5W3jjFuz6tjA+z7Sx6QHduYPiZnruKGXqQ04uX6j0QkpphUDKjxdIHg54+YDu7nY XrSEL4J6Auu1pAz+mPstHpfLmuoQXMTFlm29GmqEETAbVcn6BwymZyhrzgKP5Fng WWBajutPEfnMAHqwm+p49X2A+HOJC68zxFNLevyE3sLwCbe3t8+T+5BsTATWzfvn ekjTClkO0rEZ48EEDx30MOe7Fl7Ux2U4NT61F6ihA04RKZkmqBxrbgMoSZ1oUyY1 qU+fi/9j5zqLZJO2rX5rW7mF4e5zpc0kTZQ7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8EuyTwIGqw1Yw+MZyeDUgnJKQIwwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzhFdXlUd0lHcXcxWXctTVp5 ZURVZ25KS1FJdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OFAwDQYJKoZIhvcNAQELBQADggEBAEdg3S8Heb5ehHsFtrQASJV5lq98S9Wpzkp5 LLCVI2e1JertmTUf2HTlFSIGZ5hwy7Wb3Hmf44ELz2XFRJTo1PEdKKkYmlIH5Mm4 6N3+wrBd/aWfM0lX57ksCMy9WPY/7lS75QzTDjQ9nNByx8A+Dll0iMehJVxGHaIk gUTi8M0XVoZjuVLJGappH946YUqR65RXUGnSOlWZOy0Kgg32746qfBLhSuNpptq+ WenNXfWos90vzY5rmm/jFgl/4ZoI32z/jyuimObCUlUksKwX6VTL7Y+bq9QFtG33 lG9O1lPP11xfZtoLngaU2R6hzyLV2MCmayRmeWmeoSioJQf1mZ8= -----END CERTIFICATE-----Generated at Fri Apr 18 19:42:04 2025 by rpki-client