$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/k1-eN5fMZJfDZqcB7295-MlJemg.roa File: k1-eN5fMZJfDZqcB7295-MlJemg.roa (raw, json) Hash identifier: E8VjdBL4mg/ZghlnGv298ovW5UQiASxa7L7XN8YIzwU= Subject key identifier: 93:5F:9E:37:97:CC:64:97:C3:66:A7:01:EF:6F:79:F8:C9:49:7A:68 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BC3 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/k1-eN5fMZJfDZqcB7295-MlJemg.roa Signing time: Fri 01 Sep 2023 08:36:42 +0000 ROA not before: Fri 01 Sep 2023 08:36:42 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 210.67.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 20:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3011 (0xbc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:42 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=935F9E3797CC6497C366A701EF6F79F8C9497A68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e9:b0:83:cd:84:c7:63:58:de:c5:15:db:95: a6:5f:22:b0:91:0e:b7:6f:04:e0:66:65:d5:4c:f9: 56:b0:c1:b3:59:e3:3f:35:a0:a0:6c:b6:4b:26:f6: 71:23:bb:d1:02:47:be:54:55:07:b0:0f:a7:8c:09: 7c:0d:3c:ec:b4:17:68:7a:a9:94:38:59:c6:6b:dd: d3:72:e1:7d:52:9f:78:35:c1:bf:24:e8:cb:5d:57: 91:7c:bb:84:aa:82:ea:47:a7:6f:89:8d:9b:f1:99: 1a:27:b8:f2:b9:67:25:65:10:9c:9f:98:fe:64:bd: 90:e2:e0:4d:20:75:bb:62:b2:62:9e:f5:90:2e:db: 4e:f5:99:06:a0:9b:ef:40:37:67:dc:a4:f7:0c:51: 7e:4d:ae:23:08:3c:34:ae:e1:bd:17:f2:f4:ed:ec: af:9e:b7:a2:95:0e:d1:02:b7:48:e4:b3:dc:4e:37: 36:f8:ae:4b:0d:ef:cc:66:90:b6:b2:a4:43:7d:64: 07:a6:e8:f4:b4:4d:5a:74:40:ee:9a:dd:01:61:db: 62:d2:30:26:9f:6a:9b:00:84:e6:9e:d8:11:98:10: a5:41:fb:34:6d:f0:d8:32:db:36:26:c1:e8:3f:b2: ef:88:40:be:a8:51:f0:65:c4:31:bb:de:e8:72:40: c7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:5F:9E:37:97:CC:64:97:C3:66:A7:01:EF:6F:79:F8:C9:49:7A:68 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/k1-eN5fMZJfDZqcB7295-MlJemg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.96.0/20 Signature Algorithm: sha256WithRSAEncryption 2c:d3:81:9d:81:2a:62:8b:a1:41:c7:38:92:8e:2f:88:af:33: da:13:08:f8:aa:68:04:d1:ee:75:69:cb:33:b4:61:51:89:40: 62:63:41:a5:3b:28:6a:e1:17:99:82:bd:60:b0:62:47:25:6a: b2:aa:56:45:72:a6:4d:6a:61:63:9b:2f:1e:f5:cd:be:4a:39: 36:3a:e1:0b:c1:42:6f:8b:d0:ec:3e:d8:ef:e0:c2:3f:26:b0: d9:f7:35:d9:ae:49:4c:70:f4:6c:80:cc:b2:07:98:76:1d:48: 85:38:c7:06:0a:b6:be:1c:c2:16:14:0d:13:2a:9f:72:19:54: 49:dc:05:90:b8:d0:73:5b:c9:16:0f:fd:b1:c6:70:5f:c4:6d: 97:fc:94:c9:3e:e7:53:7f:d7:a7:20:7a:7d:0b:ab:1a:79:b7: dd:a9:b3:92:62:7c:cd:f3:1d:34:94:00:2e:ba:98:60:e4:d7: 1f:19:3a:1b:f5:26:45:a8:28:88:94:3f:86:52:a0:91:3c:1f: b4:47:e9:47:73:9e:42:52:ca:61:df:18:33:3d:0e:24:a3:ba: 4c:4a:c6:88:98:6f:ac:ec:16:33:ba:84:99:e5:ee:2b:4c:e4: 74:14:f6:03:71:dc:67:f0:5c:d5:46:cd:f7:4b:c0:2e:38:d1: 0a:ee:cc:f3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC8MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkzNUY5RTM3OTdDQzY0 OTdDMzY2QTcwMUVGNkY3OUY4Qzk0OTdBNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+6bCDzYTHY1jexRXblaZfIrCRDrdvBOBmZdVM+VawwbNZ4z81 oKBstksm9nEju9ECR75UVQewD6eMCXwNPOy0F2h6qZQ4WcZr3dNy4X1Sn3g1wb8k 6MtdV5F8u4SqgupHp2+JjZvxmRonuPK5ZyVlEJyfmP5kvZDi4E0gdbtismKe9ZAu 2071mQagm+9AN2fcpPcMUX5NriMIPDSu4b0X8vTt7K+et6KVDtECt0jks9xONzb4 rksN78xmkLaypEN9ZAem6PS0TVp0QO6a3QFh22LSMCafapsAhOae2BGYEKVB+zRt 8Ngy2zYmweg/su+IQL6oUfBlxDG73uhyQMe7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUk1+eN5fMZJfDZqcB7295+MlJemgwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2sxLWVONWZNWkpmRFpxY0I3 Mjk1LU1sSmVtZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATS Q2AwDQYJKoZIhvcNAQELBQADggEBACzTgZ2BKmKLoUHHOJKOL4ivM9oTCPiqaATR 7nVpyzO0YVGJQGJjQaU7KGrhF5mCvWCwYkclarKqVkVypk1qYWObLx71zb5KOTY6 4QvBQm+L0Ow+2O/gwj8msNn3NdmuSUxw9GyAzLIHmHYdSIU4xwYKtr4cwhYUDRMq n3IZVEncBZC40HNbyRYP/bHGcF/EbZf8lMk+51N/16cgen0Lqxp5t92ps5JifM3z HTSUAC66mGDk1x8ZOhv1JkWoKIiUP4ZSoJE8H7RH6UdznkJSymHfGDM9DiSjukxK xoiYb6zsFjO6hJnl7itM5HQU9gNx3GfwXNVGzfdLwC440QruzPM= -----END CERTIFICATE-----Generated at Sun Jun 23 13:19:14 2024 by rpki-client on console-fra.rpki-client.org