$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/bhp5b7K_cr0Fqv473Jx4JsKUqSk.roa File: bhp5b7K_cr0Fqv473Jx4JsKUqSk.roa (raw, json) Hash identifier: LJWxQANlqn5XbXQ7lD8kSOvbXw4rPUWX5dnMmw6ARF4= Subject key identifier: 6E:1A:79:6F:B2:BF:72:BD:05:AA:FE:3B:DC:9C:78:26:C2:94:A9:29 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BC2 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/bhp5b7K_cr0Fqv473Jx4JsKUqSk.roa Signing time: Fri 01 Sep 2023 08:36:42 +0000 ROA not before: Fri 01 Sep 2023 08:36:42 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 61.56.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 20:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3010 (0xbc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:42 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6E1A796FB2BF72BD05AAFE3BDC9C7826C294A929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5e:aa:fc:bd:66:e0:be:56:b9:bc:8a:d0:0a: 24:91:70:4d:28:bc:0e:ad:7c:af:52:d2:72:d8:27: d3:33:a3:b9:eb:a0:1a:23:72:27:e0:71:d2:30:b1: f4:bc:83:a2:6e:36:f5:fd:0d:88:90:4e:1c:ad:a2: 77:12:f0:e1:8f:c5:76:e3:87:1f:b6:db:bf:74:a3: 88:2f:75:78:60:3a:52:83:53:29:a3:a9:c8:4f:bd: 4a:be:88:a5:cc:db:3a:34:66:7b:04:75:b8:5c:d1: f3:1f:fd:98:30:42:7c:17:90:65:5d:03:f5:05:56: 03:70:57:f4:62:28:ff:c4:4c:9b:e3:2d:df:34:82: d0:2c:4a:7c:c3:21:cb:11:c3:96:33:1e:ef:5b:ba: 05:fd:72:10:65:83:3c:ac:69:34:35:e8:4d:00:8b: 69:9e:15:82:dc:a7:9f:8d:ab:9c:5c:e2:cf:3f:3c: 92:89:49:fe:ff:0d:41:c7:c9:67:c1:58:bd:b6:7b: 2a:0a:bf:bb:74:1e:db:09:14:37:78:0e:2d:ca:fe: bf:5e:01:4c:15:14:48:50:54:ef:1d:17:5f:80:1b: 56:a7:4f:ea:6d:06:a1:2e:f6:a3:0d:95:15:8f:5e: 4e:7f:75:87:e4:b0:51:38:8d:94:6b:f3:4e:57:10: 1a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1A:79:6F:B2:BF:72:BD:05:AA:FE:3B:DC:9C:78:26:C2:94:A9:29 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/bhp5b7K_cr0Fqv473Jx4JsKUqSk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.80.0/21 Signature Algorithm: sha256WithRSAEncryption 0b:51:97:1d:f4:3a:3c:a1:d2:ae:c9:d6:b5:86:19:de:14:ff: b3:54:a4:e9:e5:bb:e1:4f:5f:35:9f:7b:20:02:c5:dd:11:54: 6b:50:45:5b:7b:af:62:c8:6c:d1:29:25:ce:a4:e1:56:e6:67: 48:b4:b8:a2:64:c6:03:8c:9c:46:8b:06:e3:34:e8:5b:d1:d0: a2:4e:1e:96:32:92:ee:e3:54:c9:66:35:67:d6:ff:d8:2c:6b: f6:cf:f7:8f:bf:18:cc:fd:0f:31:8a:4b:b3:50:27:06:44:b7: a2:87:f1:ff:88:e2:1a:2c:25:a5:12:34:dd:d2:f7:82:a2:cb: b8:43:ae:39:e9:14:13:f2:d0:90:0f:60:32:11:70:41:5e:5e: b6:79:47:6a:30:93:cf:c0:42:26:1c:9c:69:b7:6e:32:a8:15: 3f:33:b4:61:e7:a8:c1:28:0a:d2:90:44:86:5d:7e:33:2d:07: fd:07:67:28:6e:89:6e:82:0a:d5:8d:60:dc:de:fa:bf:d4:ea: 8e:9d:8a:ad:df:95:46:ad:11:ee:85:a0:f6:e9:bf:4f:92:06: d8:e3:e7:8e:94:3c:a4:70:4b:42:a9:02:92:86:45:4e:16:c1: de:65:e3:d3:05:35:b3:65:e4:d1:b6:8a:1b:2e:bf:b2:ca:86: 45:21:bd:a4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC8IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZFMUE3OTZGQjJCRjcy QkQwNUFBRkUzQkRDOUM3ODI2QzI5NEE5MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPXqr8vWbgvla5vIrQCiSRcE0ovA6tfK9S0nLYJ9Mzo7nroBoj cifgcdIwsfS8g6JuNvX9DYiQThytoncS8OGPxXbjhx+22790o4gvdXhgOlKDUymj qchPvUq+iKXM2zo0ZnsEdbhc0fMf/ZgwQnwXkGVdA/UFVgNwV/RiKP/ETJvjLd80 gtAsSnzDIcsRw5YzHu9bugX9chBlgzysaTQ16E0Ai2meFYLcp5+Nq5xc4s8/PJKJ Sf7/DUHHyWfBWL22eyoKv7t0HtsJFDd4Di3K/r9eAUwVFEhQVO8dF1+AG1anT+pt BqEu9qMNlRWPXk5/dYfksFE4jZRr805XEBoFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbhp5b7K/cr0Fqv473Jx4JsKUqSkwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2JocDViN0tfY3IwRnF2NDcz Sng0SnNLVXFTay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OFAwDQYJKoZIhvcNAQELBQADggEBAAtRlx30Ojyh0q7J1rWGGd4U/7NUpOnlu+FP XzWfeyACxd0RVGtQRVt7r2LIbNEpJc6k4VbmZ0i0uKJkxgOMnEaLBuM06FvR0KJO HpYyku7jVMlmNWfW/9gsa/bP94+/GMz9DzGKS7NQJwZEt6KH8f+I4hosJaUSNN3S 94Kiy7hDrjnpFBPy0JAPYDIRcEFeXrZ5R2owk8/AQiYcnGm3bjKoFT8ztGHnqMEo CtKQRIZdfjMtB/0HZyhuiW6CCtWNYNze+r/U6o6diq3flUatEe6FoPbpv0+SBtjj 546UPKRwS0KpApKGRU4Wwd5l49MFNbNl5NG2ihsuv7LKhkUhvaQ= -----END CERTIFICATE-----Generated at Sun Jun 23 13:19:14 2024 by rpki-client on console-fra.rpki-client.org