$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/fHo1mcz9KkO_ARuo8XDIxg_zHyU.roa File: fHo1mcz9KkO_ARuo8XDIxg_zHyU.roa (raw, json) Hash identifier: ZexTuDxlvgj6l3MtB4cYXcGpde+Q7ih9UxG7H7pFqaI= Subject key identifier: 7C:7A:35:99:CC:FD:2A:43:BF:01:1B:A8:F1:70:C8:C6:0F:F3:1F:25 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D78 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/fHo1mcz9KkO_ARuo8XDIxg_zHyU.roa Signing time: Mon 10 Feb 2025 13:50:03 +0000 ROA not before: Mon 10 Feb 2025 13:50:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.56.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 16:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3448 (0xd78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7C7A3599CCFD2A43BF011BA8F170C8C60FF31F25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:97:fd:6e:f0:af:43:ea:f2:e7:c8:a4:88:55: da:c8:e6:1a:36:5f:49:dd:b2:ad:7e:72:c7:84:af: 16:b9:56:f9:64:1b:e4:67:c3:11:62:30:dc:d3:89: 7b:23:16:4f:ff:5e:ce:ed:15:02:a5:6f:0b:cd:e1: aa:20:72:e2:c2:7e:22:a9:9c:fa:06:81:24:50:e2: aa:fc:c3:11:28:7f:dc:ea:a5:37:90:95:76:92:36: 3a:49:40:b7:ac:6e:08:b9:cc:d3:f7:2f:23:d9:10: 4d:72:b5:92:ff:17:2e:b8:05:43:ed:9d:c3:74:48: 52:76:ad:71:3b:62:5b:90:e0:86:a5:35:a5:f2:71: b9:e6:47:3e:ac:23:ca:cc:86:86:c3:fa:9e:51:d0: cc:5f:de:ea:8d:71:75:e1:6a:b3:90:90:a8:e7:b1: 0b:87:9b:61:33:35:1b:35:ee:71:0c:38:11:37:0c: a0:5a:e0:7f:b9:4e:7f:35:4f:bb:d2:fd:1f:16:df: c9:f9:9b:24:42:ea:07:1a:61:db:2c:b2:7c:f9:05: c7:13:70:69:b8:b2:ef:40:df:1c:52:85:91:46:c0: d5:81:ea:66:ab:df:ed:30:33:31:f5:4c:71:84:af: 9f:69:e4:27:1b:bd:c9:35:b0:61:a2:c0:7b:43:d5: 28:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:7A:35:99:CC:FD:2A:43:BF:01:1B:A8:F1:70:C8:C6:0F:F3:1F:25 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/fHo1mcz9KkO_ARuo8XDIxg_zHyU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.80.0/20 Signature Algorithm: sha256WithRSAEncryption b1:96:b2:c3:1a:3b:70:5b:8e:8c:e8:67:a3:90:16:a0:4c:a7: 57:50:a1:d3:6a:93:74:29:be:00:0e:17:ee:11:06:3a:0b:df: 92:92:e4:48:51:dd:e7:23:04:e5:86:7c:63:b4:03:a2:7e:4d: 38:79:1a:b2:ea:3f:fd:2c:bd:90:49:54:1c:11:8e:1c:2a:d3: 77:5b:58:8a:19:b6:bc:39:5d:e8:d8:54:e5:18:85:48:a0:ee: bf:1a:e9:51:61:f3:24:16:0b:56:7a:81:d4:2c:60:b5:89:5b: 5a:f2:bb:de:91:81:fe:b1:d7:a7:c9:7e:59:09:7b:f9:24:9a: b7:56:21:8f:e2:80:ad:5a:aa:a2:d3:25:30:e0:f1:55:fa:18: 29:29:d0:8e:4b:21:29:ec:ae:87:55:a2:b0:95:5c:86:80:b4: d7:d8:1c:01:42:06:01:f8:30:00:7d:d9:62:cf:0d:af:4a:09: 65:4d:b5:b9:59:88:ba:f6:8a:6e:38:56:41:e4:54:38:28:52: c9:2d:c1:89:8a:cc:fe:d6:5c:7b:a0:c3:ab:6e:0c:f4:49:6a: c8:73:22:6e:91:fd:8f:74:48:7b:73:6d:21:27:a1:aa:a6:91: 05:68:a1:dd:01:c6:8f:75:64:e8:09:9d:39:22:5d:99:5d:53: 8c:42:f0:16 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDXgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdDN0EzNTk5Q0NGRDJB NDNCRjAxMUJBOEYxNzBDOEM2MEZGMzFGMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsl/1u8K9D6vLnyKSIVdrI5ho2X0ndsq1+cseErxa5VvlkG+Rn wxFiMNzTiXsjFk//Xs7tFQKlbwvN4aogcuLCfiKpnPoGgSRQ4qr8wxEof9zqpTeQ lXaSNjpJQLesbgi5zNP3LyPZEE1ytZL/Fy64BUPtncN0SFJ2rXE7YluQ4IalNaXy cbnmRz6sI8rMhobD+p5R0Mxf3uqNcXXharOQkKjnsQuHm2EzNRs17nEMOBE3DKBa 4H+5Tn81T7vS/R8W38n5myRC6gcaYdsssnz5BccTcGm4su9A3xxShZFGwNWB6mar 3+0wMzH1THGEr59p5Ccbvck1sGGiwHtD1SjnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUfHo1mcz9KkO/ARuo8XDIxg/zHyUwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2ZIbzFtY3o5S2tPX0FSdW84 WERJeGdfekh5VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OFAwDQYJKoZIhvcNAQELBQADggEBALGWssMaO3BbjozoZ6OQFqBMp1dQodNqk3Qp vgAOF+4RBjoL35KS5EhR3ecjBOWGfGO0A6J+TTh5GrLqP/0svZBJVBwRjhwq03db WIoZtrw5XejYVOUYhUig7r8a6VFh8yQWC1Z6gdQsYLWJW1ryu96Rgf6x16fJflkJ e/kkmrdWIY/igK1aqqLTJTDg8VX6GCkp0I5LISnsrodVorCVXIaAtNfYHAFCBgH4 MAB92WLPDa9KCWVNtblZiLr2im44VkHkVDgoUsktwYmKzP7WXHugw6tuDPRJashz Im6R/Y90SHtzbSEnoaqmkQVood0Bxo91ZOgJnTkiXZldU4xC8BY= -----END CERTIFICATE-----Generated at Tue Apr 22 12:42:21 2025 by rpki-client