$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ngrSbhyP3swdAairvc46qLuPBVk.roa File: ngrSbhyP3swdAairvc46qLuPBVk.roa (raw, json) Hash identifier: boNKZnbG+7qADnReI+iRRMde1VAwIqSxm1Yg+J9hKwY= Subject key identifier: 9E:0A:D2:6E:1C:8F:DE:CC:1D:01:A8:AB:BD:CE:3A:A8:BB:8F:05:59 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0CFE Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ngrSbhyP3swdAairvc46qLuPBVk.roa Signing time: Mon 26 Aug 2024 05:12:55 +0000 ROA not before: Mon 26 Aug 2024 05:12:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.56.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 17:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3326 (0xcfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 26 05:12:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9E0AD26E1C8FDECC1D01A8ABBDCE3AA8BB8F0559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:16:3d:7e:0b:df:9a:55:25:66:7e:ac:a2:14: ab:b8:14:6b:b5:98:c0:26:bc:52:a4:56:08:8a:8f: b8:68:b6:23:24:67:25:dd:b8:37:47:cf:29:9f:69: 6a:25:01:7e:59:50:14:75:0f:46:2e:7c:c6:f7:88: ae:cb:ab:3d:17:5e:5a:0b:9b:3e:04:26:bb:cc:e5: bf:ec:bd:5a:66:54:c1:a9:37:94:cc:e9:53:16:ac: bc:72:f9:e6:f6:12:0c:e9:fc:3a:c2:12:28:84:f0: 19:c4:0f:a5:12:88:93:5a:be:4e:c4:97:c5:80:a1: ca:95:9e:cc:37:4f:15:a8:bd:e9:b2:14:06:8c:31: 8d:49:1f:48:a4:42:68:84:5f:f3:1d:14:d4:ce:13: 23:b3:89:c2:b0:13:ef:2c:44:fc:ab:8b:c8:9f:50: 0a:f0:77:28:71:dc:7a:57:dd:94:3b:80:d5:0a:85: df:a5:d9:26:4e:f6:df:fc:c6:ea:b5:60:d1:23:67: fe:00:99:0c:46:d8:e0:47:0f:39:6b:07:d5:4a:1e: 83:2c:85:d9:10:67:20:00:bf:87:af:df:96:96:9a: fb:e9:35:0c:80:79:05:a2:84:56:8d:e5:21:6c:23: 65:c6:21:ef:20:ac:d0:04:4c:eb:1c:8c:8f:ee:67: 0d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0A:D2:6E:1C:8F:DE:CC:1D:01:A8:AB:BD:CE:3A:A8:BB:8F:05:59 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ngrSbhyP3swdAairvc46qLuPBVk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.64.0/20 Signature Algorithm: sha256WithRSAEncryption 39:a9:90:64:4f:3d:a6:8c:8a:5c:d1:f6:52:8b:a4:43:90:fd: c1:b3:86:39:99:3d:75:99:73:28:07:86:48:c4:81:cd:00:8e: 9e:8e:e8:49:a4:e2:77:1b:4a:23:43:3b:bc:57:26:10:ec:05: 82:3a:82:2c:cd:82:47:7d:7c:63:34:18:0a:21:50:5b:86:68: 5b:90:e0:7e:d7:48:77:ea:7a:56:bf:8f:69:44:03:a8:0c:ce: 1d:53:36:ac:64:19:85:d0:9a:79:8b:e0:3f:c5:29:2f:7a:0c: ca:42:02:02:bf:7d:d9:00:dc:cd:38:d8:5e:21:39:80:58:6d: d3:d9:21:0d:c8:62:20:e0:5c:6f:1d:09:13:6e:a5:38:ae:3c: 5d:b6:25:90:c9:89:f3:57:24:a2:ca:93:22:1e:21:4b:a5:9a: 95:3c:a7:a8:e1:a0:94:4f:77:75:de:ae:26:5b:7b:bb:d0:d8: 5d:cd:39:d3:b5:52:54:a8:1f:12:e9:bd:4f:b4:a8:23:ab:14: 1c:9a:ca:7d:27:83:4a:6a:54:09:5b:91:6f:1a:dc:0c:59:42: bc:b4:81:e7:7b:a3:9b:26:14:8f:e1:04:26:24:6e:40:82:35: 21:be:7c:ed:d5:24:16:96:83:63:92:54:9c:19:6b:5e:e4:59: 74:b8:49:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNDA4MjYw NTEyNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlFMEFEMjZFMUM4RkRF Q0MxRDAxQThBQkJEQ0UzQUE4QkI4RjA1NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJFj1+C9+aVSVmfqyiFKu4FGu1mMAmvFKkVgiKj7hotiMkZyXd uDdHzymfaWolAX5ZUBR1D0YufMb3iK7Lqz0XXloLmz4EJrvM5b/svVpmVMGpN5TM 6VMWrLxy+eb2Egzp/DrCEiiE8BnED6USiJNavk7El8WAocqVnsw3TxWovemyFAaM MY1JH0ikQmiEX/MdFNTOEyOzicKwE+8sRPyri8ifUArwdyhx3HpX3ZQ7gNUKhd+l 2SZO9t/8xuq1YNEjZ/4AmQxG2OBHDzlrB9VKHoMshdkQZyAAv4ev35aWmvvpNQyA eQWihFaN5SFsI2XGIe8grNAETOscjI/uZw0fAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUngrSbhyP3swdAairvc46qLuPBVkwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL25nclNiaHlQM3N3ZEFhaXJ2 YzQ2cUx1UEJWay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OEAwDQYJKoZIhvcNAQELBQADggEBADmpkGRPPaaMilzR9lKLpEOQ/cGzhjmZPXWZ cygHhkjEgc0Ajp6O6Emk4ncbSiNDO7xXJhDsBYI6gizNgkd9fGM0GAohUFuGaFuQ 4H7XSHfqela/j2lEA6gMzh1TNqxkGYXQmnmL4D/FKS96DMpCAgK/fdkA3M042F4h OYBYbdPZIQ3IYiDgXG8dCRNupTiuPF22JZDJifNXJKLKkyIeIUulmpU8p6jhoJRP d3XeriZbe7vQ2F3NOdO1UlSoHxLpvU+0qCOrFByayn0ng0pqVAlbkW8a3AxZQry0 ged7o5smFI/hBCYkbkCCNSG+fO3VJBaWg2OSVJwZa17kWXS4Sdo= -----END CERTIFICATE-----Generated at Sat Sep 28 12:03:22 2024 by rpki-client on console-fra.rpki-client.org