$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/_uEXhOV4M-FC1CPrgz5NxU25jJg.roa File: _uEXhOV4M-FC1CPrgz5NxU25jJg.roa (raw, json) Hash identifier: lqNuO7wUVW45mVCvu3qqp/ARN3h8qPNN/cw9nkrGVPY= Subject key identifier: FE:E1:17:84:E5:78:33:E1:42:D4:23:EB:83:3E:4D:C5:4D:B9:8C:98 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D73 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/_uEXhOV4M-FC1CPrgz5NxU25jJg.roa Signing time: Mon 10 Feb 2025 13:50:02 +0000 ROA not before: Mon 10 Feb 2025 13:50:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 113.21.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3443 (0xd73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FEE11784E57833E142D423EB833E4DC54DB98C98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9e:37:24:24:04:e5:0e:96:74:13:7d:11:0e: 8d:96:5c:b2:9c:d0:74:ec:b3:84:e3:d9:a9:82:8d: 22:08:c8:f3:96:c4:ca:c6:f3:46:76:00:48:a9:a7: ac:17:cf:0c:4a:3a:f6:ba:ef:33:89:c1:72:95:c5: 62:84:36:19:ea:6e:92:97:a5:ef:71:fe:84:06:7b: 2b:a5:c9:71:9f:1e:c8:69:74:d8:fc:93:f8:a7:65: 8c:db:e8:2e:62:2c:bf:15:d5:8b:87:0e:d6:57:1e: 6c:1e:b1:4c:98:2e:e5:8c:6c:e2:ec:90:44:62:b1: 0b:45:6e:ed:20:d4:79:d9:7c:7d:84:8b:a1:a5:25: 0f:0c:90:97:34:da:bf:34:22:fd:89:4a:de:4c:aa: 00:0c:b8:85:9d:96:62:32:1e:ca:01:f2:1f:58:3f: 4a:d7:59:07:8c:0d:4c:00:7b:38:3f:3f:a7:48:37: b6:bf:01:1b:d9:c7:b8:33:5b:aa:9c:c3:16:85:81: 00:c2:e7:f2:ed:ac:ef:49:71:ae:1e:e6:2b:56:f6: d3:ae:06:31:97:29:64:98:36:60:63:bc:ec:5a:8f: ef:0f:ce:45:55:22:07:a0:c2:36:56:2b:67:2f:57: 73:8a:d1:b5:25:59:d4:62:ec:c8:d0:df:59:c5:fd: 67:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E1:17:84:E5:78:33:E1:42:D4:23:EB:83:3E:4D:C5:4D:B9:8C:98 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/_uEXhOV4M-FC1CPrgz5NxU25jJg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.173.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:be:29:1a:b8:cc:04:81:e4:4f:ed:af:80:6a:53:65:82:88: 02:a6:db:ee:c6:36:ca:72:f2:91:33:40:ef:18:ef:55:3d:93: a1:0a:97:3c:32:d8:a0:48:3a:f2:77:7f:26:1f:b9:ab:03:64: f4:37:10:21:fa:df:77:78:e9:51:24:87:b4:fc:6c:f4:04:b3: 07:d4:64:1a:48:5f:2c:45:8e:c3:31:76:e1:73:e6:d0:7e:b8: 6a:e8:66:3e:f3:57:8d:09:ae:37:32:03:94:ad:b9:be:f9:21: 1d:cb:b9:98:d9:83:ae:a7:fa:5d:a5:0c:88:17:66:37:05:64: 69:3f:94:a9:a3:50:a8:3a:62:1a:6b:4e:d2:e7:39:40:09:18: bd:ed:72:69:b1:69:0f:e7:ad:e1:19:29:4e:3b:6d:03:cf:a0: 4d:7a:73:5c:47:26:47:4e:07:f4:e9:43:be:22:e6:f7:9d:e5: 0b:7b:ea:16:e0:df:2c:3b:cd:c5:03:9c:9c:12:67:19:73:1c: ed:66:7f:0b:c1:00:8c:d4:c9:60:eb:c1:d0:4c:79:b3:c7:95: ed:77:93:22:b0:54:dd:17:b5:24:bf:23:ef:42:08:71:d5:45: 96:a8:fd:ae:b2:67:00:3c:45:75:f0:3b:69:b6:77:6f:11:27: 66:f7:3e:2d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDXMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFRTExNzg0RTU3ODMz RTE0MkQ0MjNFQjgzM0U0REM1NERCOThDOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgnjckJATlDpZ0E30RDo2WXLKc0HTss4Tj2amCjSIIyPOWxMrG 80Z2AEipp6wXzwxKOva67zOJwXKVxWKENhnqbpKXpe9x/oQGeyulyXGfHshpdNj8 k/inZYzb6C5iLL8V1YuHDtZXHmwesUyYLuWMbOLskERisQtFbu0g1HnZfH2Ei6Gl JQ8MkJc02r80Iv2JSt5MqgAMuIWdlmIyHsoB8h9YP0rXWQeMDUwAezg/P6dIN7a/ ARvZx7gzW6qcwxaFgQDC5/LtrO9Jca4e5itW9tOuBjGXKWSYNmBjvOxaj+8PzkVV IgegwjZWK2cvV3OK0bUlWdRi7MjQ31nF/WetAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/uEXhOV4M+FC1CPrgz5NxU25jJgwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL191RVhoT1Y0TS1GQzFDUHJn ejVOeFUyNWpKZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABx Fa0wDQYJKoZIhvcNAQELBQADggEBACy+KRq4zASB5E/tr4BqU2WCiAKm2+7GNspy 8pEzQO8Y71U9k6EKlzwy2KBIOvJ3fyYfuasDZPQ3ECH633d46VEkh7T8bPQEswfU ZBpIXyxFjsMxduFz5tB+uGroZj7zV40JrjcyA5Stub75IR3LuZjZg66n+l2lDIgX ZjcFZGk/lKmjUKg6YhprTtLnOUAJGL3tcmmxaQ/nreEZKU47bQPPoE16c1xHJkdO B/TpQ74i5ved5Qt76hbg3yw7zcUDnJwSZxlzHO1mfwvBAIzUyWDrwdBMebPHle13 kyKwVN0XtSS/I+9CCHHVRZao/a6yZwA8RXXwO2m2d28RJ2b3Pi0= -----END CERTIFICATE-----Generated at Tue Apr 22 21:52:59 2025 by rpki-client