$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/DgSwc3XqeCp18e8MxqdEQQvgF0o.roa File: DgSwc3XqeCp18e8MxqdEQQvgF0o.roa (raw, json) Hash identifier: bBmf6jSde8tX7bDjMFRIXU1JK0r3EImnBqCvN05KttE= Subject key identifier: 0E:04:B0:73:75:EA:78:2A:75:F1:EF:0C:C6:A7:44:41:0B:E0:17:4A Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0CF8 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/DgSwc3XqeCp18e8MxqdEQQvgF0o.roa Signing time: Mon 26 Aug 2024 05:12:54 +0000 ROA not before: Mon 26 Aug 2024 05:12:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.56.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 17:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3320 (0xcf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 26 05:12:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0E04B07375EA782A75F1EF0CC6A744410BE0174A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bd:05:4e:60:38:ee:bb:09:22:6e:41:0b:67: 92:df:39:d7:dd:4d:7f:be:5d:39:0c:1b:30:c3:c5: ca:04:9c:4b:82:b8:c5:ed:15:be:fe:c3:0f:6c:9f: 7f:c1:b4:8f:6a:58:23:bd:a0:2f:e3:22:57:2c:09: cb:3b:a4:5e:8d:93:97:90:a1:a2:fb:12:20:0e:0c: c8:55:b9:0a:90:62:86:0b:47:cf:6d:e8:e1:b0:78: 76:8e:88:85:67:c4:1c:cc:6e:0c:36:f3:4e:20:00: 75:33:5e:da:02:0b:a0:a3:91:1c:32:44:64:bd:9f: 41:59:8f:e6:1b:9c:b1:2d:7a:29:48:ff:31:80:ac: a5:9a:78:2b:f2:ae:97:05:81:1c:04:e9:88:a7:4e: b9:c3:27:72:f3:4d:a8:77:c5:ed:5a:d3:91:c5:2e: 61:30:2b:ce:66:27:55:fa:5c:11:40:00:d0:86:8e: f0:fb:10:66:29:b1:98:55:a9:de:2d:7d:c4:8b:41: 39:e4:fa:ae:ad:b1:c6:90:68:0b:b0:78:70:81:74: 10:79:76:3a:45:5a:af:b9:cd:86:3e:8d:3f:9e:1b: 5d:bd:68:31:6e:72:44:2e:2d:cf:f9:e3:d1:ca:96: ec:8d:1a:83:51:57:03:d6:8e:24:8c:30:89:bd:cb: 3d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:04:B0:73:75:EA:78:2A:75:F1:EF:0C:C6:A7:44:41:0B:E0:17:4A X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/DgSwc3XqeCp18e8MxqdEQQvgF0o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.80.0/20 Signature Algorithm: sha256WithRSAEncryption 79:1e:d1:10:4a:38:16:8f:fa:15:b0:57:cb:df:cc:d4:89:ab: 90:93:c8:12:c0:a5:01:56:24:45:26:6c:45:e3:70:fc:16:58: f0:71:e7:d8:67:90:37:1b:07:86:ed:52:58:d2:9f:69:f2:4a: c9:32:3c:40:38:62:c6:62:11:de:8c:1f:fb:d0:a9:5c:68:fd: 36:f0:97:bc:1c:23:d7:54:88:d8:38:76:d9:8b:30:7d:0b:6d: 3b:ad:85:4b:d7:9b:e2:86:44:b0:e9:43:f6:39:2d:cf:ac:0d: 3a:35:57:79:f2:4d:c3:d0:29:5e:27:bf:2e:27:f4:ee:ef:fd: 2c:97:d1:33:14:f0:b5:1e:c4:fe:9a:8d:d6:7e:9a:99:92:13: cf:06:e1:35:a2:b7:b5:df:31:6d:90:bc:b9:6d:7e:eb:2a:91: 2c:6b:c9:29:6a:da:76:73:24:34:89:48:92:e0:6a:40:21:75: 89:b9:48:5f:f0:58:f0:27:ec:d2:86:20:94:6c:ae:45:b5:a7: ea:ba:40:f0:ec:6a:e5:b3:13:f8:ba:5b:82:48:b1:c6:80:d1: 99:a2:91:a2:cd:b0:ed:1e:d6:21:29:fc:4a:cb:92:2f:87:af: c0:8a:15:19:ad:0d:bb:7a:56:7a:53:a5:ba:54:01:9f:84:93: aa:0f:a4:79 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNDA4MjYw NTEyNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBFMDRCMDczNzVFQTc4 MkE3NUYxRUYwQ0M2QTc0NDQxMEJFMDE3NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRvQVOYDjuuwkibkELZ5LfOdfdTX++XTkMGzDDxcoEnEuCuMXt Fb7+ww9sn3/BtI9qWCO9oC/jIlcsCcs7pF6Nk5eQoaL7EiAODMhVuQqQYoYLR89t 6OGweHaOiIVnxBzMbgw2804gAHUzXtoCC6CjkRwyRGS9n0FZj+YbnLEteilI/zGA rKWaeCvyrpcFgRwE6YinTrnDJ3LzTah3xe1a05HFLmEwK85mJ1X6XBFAANCGjvD7 EGYpsZhVqd4tfcSLQTnk+q6tscaQaAuweHCBdBB5djpFWq+5zYY+jT+eG129aDFu ckQuLc/549HKluyNGoNRVwPWjiSMMIm9yz0pAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDgSwc3XqeCp18e8MxqdEQQvgF0owHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0RnU3djM1hxZUNwMThlOE14 cWRFUVF2Z0Ywby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OFAwDQYJKoZIhvcNAQELBQADggEBAHke0RBKOBaP+hWwV8vfzNSJq5CTyBLApQFW JEUmbEXjcPwWWPBx59hnkDcbB4btUljSn2nySskyPEA4YsZiEd6MH/vQqVxo/Tbw l7wcI9dUiNg4dtmLMH0LbTuthUvXm+KGRLDpQ/Y5Lc+sDTo1V3nyTcPQKV4nvy4n 9O7v/SyX0TMU8LUexP6ajdZ+mpmSE88G4TWit7XfMW2QvLltfusqkSxrySlq2nZz JDSJSJLgakAhdYm5SF/wWPAn7NKGIJRsrkW1p+q6QPDsauWzE/i6W4JIscaA0Zmi kaLNsO0e1iEp/ErLki+Hr8CKFRmtDbt6VnpTpbpUAZ+Ek6oPpHk= -----END CERTIFICATE-----Generated at Sat Sep 28 12:03:22 2024 by rpki-client on console-fra.rpki-client.org