$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Waulo8EnQkCU7W25sN7bEIaF3Ow.roa File: Waulo8EnQkCU7W25sN7bEIaF3Ow.roa (raw, json) Hash identifier: 0LsM06WUFUy/OTSJO5FnX0zgGOQ0FV+oUIlwuwe4gYg= Subject key identifier: 59:AB:A5:A3:C1:27:42:40:94:ED:6D:B9:B0:DE:DB:10:86:85:DC:EC Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0CF0 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Waulo8EnQkCU7W25sN7bEIaF3Ow.roa Signing time: Mon 26 Aug 2024 05:12:51 +0000 ROA not before: Mon 26 Aug 2024 05:12:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.56.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 17:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3312 (0xcf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 26 05:12:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=59ABA5A3C127424094ED6DB9B0DEDB108685DCEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f2:ff:97:74:79:3c:85:ad:98:26:3e:30:48: d6:a9:4a:08:ee:9b:32:bb:1a:25:90:04:58:08:84: a6:85:67:ef:83:93:d4:e0:fe:e7:b6:22:d1:d9:eb: 97:0a:57:5a:61:58:17:db:a9:15:51:06:3f:f2:76: 2e:5a:38:1e:f4:fb:48:68:b7:2b:70:22:01:48:b1: fb:0f:2a:8a:11:8c:98:c6:06:0f:76:3a:a8:70:06: 0a:81:5c:dc:7b:68:19:87:58:06:b5:40:a0:49:d6: eb:bc:a3:ab:38:2b:99:14:b4:36:89:d3:74:80:9d: c3:69:7c:c9:91:4a:eb:6d:b9:4e:97:fd:13:93:87: 68:9c:51:5f:06:46:20:b1:4d:20:f4:27:7c:3c:bd: c9:54:54:2d:9c:6c:f8:95:9d:b9:50:e4:11:4c:9e: 6f:41:f1:d9:df:29:60:7c:a7:94:cf:ee:98:c6:0e: 23:b1:77:50:f3:39:6a:66:cb:dd:4b:a2:71:09:8a: 1b:c4:64:2d:4e:a0:1a:61:c4:13:5a:25:bc:90:75: 51:35:c8:bb:1d:f3:32:c1:a9:53:fe:8d:0d:31:f8: 4f:14:06:ad:80:78:34:e3:98:d3:8d:2c:5d:8c:5a: 80:99:f8:61:fd:c0:8e:27:ef:e1:71:72:b3:5a:2c: 02:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:AB:A5:A3:C1:27:42:40:94:ED:6D:B9:B0:DE:DB:10:86:85:DC:EC X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Waulo8EnQkCU7W25sN7bEIaF3Ow.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.72.0/21 Signature Algorithm: sha256WithRSAEncryption 2b:75:38:f1:92:58:72:68:13:1f:dd:83:db:e7:f8:49:24:40: a3:e7:4e:3b:c5:e6:59:1c:5b:c1:26:ec:3a:cd:c9:89:5d:aa: cc:eb:7f:1e:4f:48:a2:35:7c:74:48:97:f0:d5:45:1f:00:42: c7:70:5f:f9:db:71:46:d2:88:47:c7:a3:36:d8:e5:18:77:80: 87:f0:7c:8c:f8:3e:9c:1a:18:49:9c:02:d4:09:2b:39:fc:a2: da:1d:15:ef:c1:0c:ce:46:35:2c:80:ab:4f:05:02:26:2e:95: 53:85:3c:24:0f:bc:24:53:36:9d:6d:d7:7a:fb:2f:e3:b9:fe: e6:a4:61:da:3d:f1:05:d9:17:74:b4:c4:5e:7d:dc:ef:19:41: 5b:e3:48:0a:c1:ea:e5:62:57:03:fc:2e:be:4f:74:57:a6:6a: a5:ed:f7:88:20:03:80:ff:f3:8e:e7:aa:1f:39:1b:dd:00:21: af:18:b0:ef:4e:66:90:bc:4a:c7:f5:d1:b4:86:68:60:9b:f0: 82:60:80:05:59:de:26:21:ec:ae:59:88:5b:08:42:13:61:18: 54:cd:7e:b8:91:3c:5d:9b:a5:9d:e5:30:f0:6f:d8:b0:38:eb: 37:41:39:5c:76:21:0c:89:de:6d:93:5c:0a:7c:69:0d:a0:be: 4c:07:97:b2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNDA4MjYw NTEyNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU5QUJBNUEzQzEyNzQy NDA5NEVENkRCOUIwREVEQjEwODY4NURDRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC58v+XdHk8ha2YJj4wSNapSgjumzK7GiWQBFgIhKaFZ++Dk9Tg /ue2ItHZ65cKV1phWBfbqRVRBj/ydi5aOB70+0hotytwIgFIsfsPKooRjJjGBg92 OqhwBgqBXNx7aBmHWAa1QKBJ1uu8o6s4K5kUtDaJ03SAncNpfMmRSuttuU6X/ROT h2icUV8GRiCxTSD0J3w8vclUVC2cbPiVnblQ5BFMnm9B8dnfKWB8p5TP7pjGDiOx d1DzOWpmy91LonEJihvEZC1OoBphxBNaJbyQdVE1yLsd8zLBqVP+jQ0x+E8UBq2A eDTjmNONLF2MWoCZ+GH9wI4n7+FxcrNaLAKBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUWaulo8EnQkCU7W25sN7bEIaF3OwwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL1dhdWxvOEVuUWtDVTdXMjVz TjdiRUlhRjNPdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OEgwDQYJKoZIhvcNAQELBQADggEBACt1OPGSWHJoEx/dg9vn+EkkQKPnTjvF5lkc W8Em7DrNyYldqszrfx5PSKI1fHRIl/DVRR8AQsdwX/nbcUbSiEfHozbY5Rh3gIfw fIz4PpwaGEmcAtQJKzn8otodFe/BDM5GNSyAq08FAiYulVOFPCQPvCRTNp1t13r7 L+O5/uakYdo98QXZF3S0xF593O8ZQVvjSArB6uViVwP8Lr5PdFemaqXt94ggA4D/ 847nqh85G90AIa8YsO9OZpC8Ssf10bSGaGCb8IJggAVZ3iYh7K5ZiFsIQhNhGFTN friRPF2bpZ3lMPBv2LA46zdBOVx2IQyJ3m2TXAp8aQ2gvkwHl7I= -----END CERTIFICATE-----Generated at Sat Sep 28 12:03:22 2024 by rpki-client on console-fra.rpki-client.org