$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/bhk7C6uA23_r2v4dCGjk7VqZTok.roa File: bhk7C6uA23_r2v4dCGjk7VqZTok.roa (raw, json) Hash identifier: W/rfHQpMTRALMiHobZblyLNxcmBzZ6KzAywKEkc1Qjs= Subject key identifier: 6E:19:3B:0B:AB:80:DB:7F:EB:DA:FE:1D:08:68:E4:ED:5A:99:4E:89 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D75 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/bhk7C6uA23_r2v4dCGjk7VqZTok.roa Signing time: Mon 10 Feb 2025 13:50:02 +0000 ROA not before: Mon 10 Feb 2025 13:50:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.247.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 16:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3445 (0xd75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6E193B0BAB80DB7FEBDAFE1D0868E4ED5A994E89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ae:1c:79:b9:d1:ba:27:6d:47:f6:4c:57:f2: f0:22:2c:d8:b3:01:77:72:02:24:0a:12:75:6c:d2: df:54:c1:8a:6d:1f:0c:ce:89:98:c4:a2:bf:19:69: 7d:48:74:ec:ae:ca:3c:8a:3f:a3:dc:14:1c:cf:45: c8:d0:47:f0:d1:c7:4b:90:41:b2:b6:48:22:69:53: 5c:3b:13:f5:e9:7a:81:01:51:02:42:e9:17:6d:25: 98:af:d9:f3:d4:fb:71:10:04:ef:45:cd:38:2f:f8: f9:38:77:ab:e1:ee:5c:21:c8:fc:f8:28:a9:d4:6a: 7c:38:ab:20:1b:e2:aa:73:d5:83:36:5e:a1:60:29: d5:af:9e:c9:e5:af:85:dc:9b:6b:ff:ce:90:16:cf: ff:49:07:25:2d:48:b7:e4:1a:d2:ee:4b:73:00:17: e3:ba:6b:0a:2a:c3:c3:12:8a:b7:f5:21:45:04:ca: db:19:a3:95:62:c9:77:d3:53:f9:38:f1:7a:d5:9b: 25:df:03:25:74:2d:5b:5c:ea:c8:87:2a:b7:65:29: 14:3a:e6:e0:85:06:1a:e1:02:bc:e8:9f:33:4d:fa: e0:c3:fe:c0:9d:c8:b7:b8:99:b8:46:bb:90:d2:25: 18:4c:ff:0e:12:88:0e:e8:d8:56:c0:35:27:1c:ff: e9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:19:3B:0B:AB:80:DB:7F:EB:DA:FE:1D:08:68:E4:ED:5A:99:4E:89 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/bhk7C6uA23_r2v4dCGjk7VqZTok.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.247.160.0/20 Signature Algorithm: sha256WithRSAEncryption 14:bc:c0:74:b7:6f:e3:54:f1:fe:72:0e:de:ff:dc:6c:b2:36: 31:46:bc:52:76:90:37:84:68:b0:80:de:83:e9:fc:04:64:33: f0:5a:f1:96:8e:79:12:85:1d:f3:5c:0f:97:70:92:0b:e1:1a: 7d:2a:87:97:c1:e2:5f:13:91:9f:12:7e:5a:91:ab:23:5f:4c: 93:1c:12:73:40:0e:0d:88:9e:03:28:4c:e7:b2:eb:14:5a:53: 3a:15:54:28:97:eb:43:dd:da:88:89:bc:71:66:fe:4b:be:bd: 43:31:95:e4:aa:9a:ef:63:60:af:bb:c0:f9:c6:37:e6:98:45: 71:d6:d6:9f:d3:9a:a2:96:30:45:c2:aa:90:ba:a9:29:e0:3c: 34:d4:97:d9:e9:e8:42:a6:6c:28:59:94:8b:b4:bc:d4:4f:83: 84:e0:ab:d3:54:60:f8:66:15:7d:44:f1:c0:5e:db:31:d6:e5: 0d:59:56:9f:24:95:55:4c:5b:34:2e:e0:8c:14:39:32:12:dc: ae:f3:66:e3:7b:f6:14:44:85:00:d0:d9:ba:f8:0b:4b:5a:bd: c7:c8:20:bd:da:c7:b6:12:3d:0e:5b:fd:e7:b5:4c:66:f0:40: 5f:42:ab:54:03:a9:d0:b3:fd:9d:26:2e:d8:57:f6:1a:c1:39: 38:2a:85:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDXUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFMTkzQjBCQUI4MERC N0ZFQkRBRkUxRDA4NjhFNEVENUE5OTRFODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDrhx5udG6J21H9kxX8vAiLNizAXdyAiQKEnVs0t9UwYptHwzO iZjEor8ZaX1IdOyuyjyKP6PcFBzPRcjQR/DRx0uQQbK2SCJpU1w7E/XpeoEBUQJC 6RdtJZiv2fPU+3EQBO9FzTgv+Pk4d6vh7lwhyPz4KKnUanw4qyAb4qpz1YM2XqFg KdWvnsnlr4Xcm2v/zpAWz/9JByUtSLfkGtLuS3MAF+O6awoqw8MSirf1IUUEytsZ o5ViyXfTU/k48XrVmyXfAyV0LVtc6siHKrdlKRQ65uCFBhrhArzonzNN+uDD/sCd yLe4mbhGu5DSJRhM/w4SiA7o2FbANScc/+mLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbhk7C6uA23/r2v4dCGjk7VqZTokwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2JoazdDNnVBMjNfcjJ2NGRD R2prN1ZxWlRvay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 96AwDQYJKoZIhvcNAQELBQADggEBABS8wHS3b+NU8f5yDt7/3GyyNjFGvFJ2kDeE aLCA3oPp/ARkM/Ba8ZaOeRKFHfNcD5dwkgvhGn0qh5fB4l8TkZ8SflqRqyNfTJMc EnNADg2IngMoTOey6xRaUzoVVCiX60Pd2oiJvHFm/ku+vUMxleSqmu9jYK+7wPnG N+aYRXHW1p/TmqKWMEXCqpC6qSngPDTUl9np6EKmbChZlIu0vNRPg4Tgq9NUYPhm FX1E8cBe2zHW5Q1ZVp8klVVMWzQu4IwUOTIS3K7zZuN79hREhQDQ2br4C0tavcfI IL3ax7YSPQ5b/ee1TGbwQF9Cq1QDqdCz/Z0mLthX9hrBOTgqhZY= -----END CERTIFICATE-----Generated at Tue Apr 22 12:44:03 2025 by rpki-client