$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/BBFFWCGyAgLN_yyAgViwrzr70Jo.roa File: BBFFWCGyAgLN_yyAgViwrzr70Jo.roa (raw, json) Hash identifier: XO4VyxT+en5jh1ApT9WRJkRRrFMRPZIPf8GS1lJnh2E= Subject key identifier: 04:11:45:58:21:B2:02:02:CD:FF:2C:80:81:58:B0:AF:3A:FB:D0:9A Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BFA Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/BBFFWCGyAgLN_yyAgViwrzr70Jo.roa Signing time: Fri 03 Nov 2023 02:45:13 +0000 ROA not before: Fri 03 Nov 2023 02:45:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 61.56.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 20:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3066 (0xbfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Nov 3 02:45:13 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0411455821B20202CDFF2C808158B0AF3AFBD09A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:aa:3f:86:f4:ee:e2:3c:f1:11:bd:6f:e3:11: 45:76:e2:75:fe:9d:7b:6a:fe:61:09:08:d9:95:39: 58:7f:5d:2c:fd:84:5f:5b:39:48:85:e1:4d:ad:ef: 31:83:af:ad:af:5b:f9:a1:f2:87:16:ce:08:0f:32: 9b:1d:b5:c6:72:7e:33:90:39:a4:80:d7:4e:83:0c: 84:e2:39:3e:cf:64:40:d0:de:fa:f0:ae:10:35:10: 40:cc:5b:31:8b:04:21:ff:87:3e:45:c1:f6:61:c1: c0:ba:a3:a4:44:39:89:de:75:13:11:04:cd:1c:91: 39:5c:cf:5e:eb:5e:25:12:ea:f4:c8:c1:19:e7:81: cf:06:19:7e:06:47:58:60:52:79:96:00:0c:b2:79: ac:f4:d3:58:42:13:15:60:8c:84:e5:cf:f9:43:16: 2b:cd:87:21:bd:f2:84:d2:42:9e:85:78:7f:d1:2e: d1:a2:1c:7d:b2:4f:dc:9d:a7:24:31:75:26:43:77: 53:36:e3:31:e2:75:40:75:a5:e7:b8:40:3e:9d:fa: 68:04:ba:f7:46:51:96:ec:e0:0d:89:c5:6c:b4:40: fa:08:78:95:f5:21:8c:f7:dd:f1:b5:51:d6:ab:dc: 03:88:45:94:a6:bf:13:bd:2c:c4:7f:53:8b:3b:16: 15:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:11:45:58:21:B2:02:02:CD:FF:2C:80:81:58:B0:AF:3A:FB:D0:9A X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/BBFFWCGyAgLN_yyAgViwrzr70Jo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.64.0/20 Signature Algorithm: sha256WithRSAEncryption 88:7f:8a:02:5d:83:b5:19:90:f5:67:95:d7:6c:cf:c9:43:b8: 6b:a5:21:63:d9:55:17:1f:37:2e:bb:fd:27:f3:14:f0:9a:51: d2:dc:da:d1:54:46:0d:e5:2e:86:7b:a7:2f:eb:de:de:50:62: 7c:72:21:e4:39:a5:af:f3:db:d5:e4:96:93:f7:e6:05:79:59: 19:1d:ec:b2:53:48:fe:09:54:eb:9a:ec:f4:a1:67:a6:30:75: 9a:db:e1:77:b7:4e:65:0f:47:0a:93:4c:72:cb:aa:7a:d2:7b: d2:bf:1f:18:4f:d5:72:17:27:7f:23:c0:1a:64:ce:83:2d:1e: e8:6b:ef:2d:a3:b8:de:61:35:55:b1:20:1b:19:51:35:57:ce: b0:8b:b4:2a:fa:ff:84:44:97:6c:79:96:47:fe:12:a7:bd:24: 11:2a:c8:93:c3:34:2a:88:57:a7:53:a6:5f:40:30:a0:cb:03: 9b:9c:87:5f:59:1f:8c:64:c1:98:34:27:9e:03:29:ef:80:12: 13:f8:71:bc:c8:ef:58:11:86:f4:ec:ef:7c:eb:5f:0f:cb:3c: f7:e2:49:6d:58:ec:1a:b7:2d:6d:62:6c:a0:0d:e2:76:48:4a: f3:d9:dd:8b:0b:4e:49:15:93:9a:dc:45:5c:ab:fe:25:3b:c3: ca:51:e1:a7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC/owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzExMDMw MjQ1MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA0MTE0NTU4MjFCMjAy MDJDREZGMkM4MDgxNThCMEFGM0FGQkQwOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOqj+G9O7iPPERvW/jEUV24nX+nXtq/mEJCNmVOVh/XSz9hF9b OUiF4U2t7zGDr62vW/mh8ocWzggPMpsdtcZyfjOQOaSA106DDITiOT7PZEDQ3vrw rhA1EEDMWzGLBCH/hz5FwfZhwcC6o6REOYnedRMRBM0ckTlcz17rXiUS6vTIwRnn gc8GGX4GR1hgUnmWAAyyeaz001hCExVgjITlz/lDFivNhyG98oTSQp6FeH/RLtGi HH2yT9ydpyQxdSZDd1M24zHidUB1pee4QD6d+mgEuvdGUZbs4A2JxWy0QPoIeJX1 IYz33fG1Udar3AOIRZSmvxO9LMR/U4s7FhUVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBBFFWCGyAgLN/yyAgViwrzr70JowHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0JCRkZXQ0d5QWdMTl95eUFn Vml3cnpyNzBKby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OEAwDQYJKoZIhvcNAQELBQADggEBAIh/igJdg7UZkPVnlddsz8lDuGulIWPZVRcf Ny67/SfzFPCaUdLc2tFURg3lLoZ7py/r3t5QYnxyIeQ5pa/z29XklpP35gV5WRkd 7LJTSP4JVOua7PShZ6YwdZrb4Xe3TmUPRwqTTHLLqnrSe9K/HxhP1XIXJ38jwBpk zoMtHuhr7y2juN5hNVWxIBsZUTVXzrCLtCr6/4REl2x5lkf+Eqe9JBEqyJPDNCqI V6dTpl9AMKDLA5uch19ZH4xkwZg0J54DKe+AEhP4cbzI71gRhvTs73zrXw/LPPfi SW1Y7Bq3LW1ibKAN4nZISvPZ3YsLTkkVk5rcRVyr/iU7w8pR4ac= -----END CERTIFICATE-----Generated at Sun Jun 23 15:31:59 2024 by rpki-client on console-ams.rpki-client.org