$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/vOzR6SrRaXFZ4paruMo2wuzJAsg.roa File: vOzR6SrRaXFZ4paruMo2wuzJAsg.roa (raw, json) Hash identifier: c4uSWxqAWA3UM2z0LxpmUXN3slNWOjoJd3v2e/f/yuo= Subject key identifier: BC:EC:D1:E9:2A:D1:69:71:59:E2:96:AB:B8:CA:36:C2:EC:C9:02:C8 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BFE Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/vOzR6SrRaXFZ4paruMo2wuzJAsg.roa Signing time: Fri 03 Nov 2023 02:50:13 +0000 ROA not before: Fri 03 Nov 2023 02:50:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 61.247.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 20:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3070 (0xbfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Nov 3 02:50:13 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BCECD1E92AD1697159E296ABB8CA36C2ECC902C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a1:d1:40:de:a1:f4:2a:8b:7b:23:ba:ab:0c: 3a:51:1d:7d:ba:8b:f9:0c:f7:e5:16:79:68:d8:30: 49:30:cb:92:3b:1e:65:b2:8b:e5:5b:6b:0c:38:c6: b4:2c:07:d1:d3:78:69:c9:c8:10:24:36:18:8a:4b: 97:85:43:a5:b3:33:be:fa:53:a4:57:94:72:1e:63: e4:63:3b:fe:ce:f1:17:2a:c8:6e:d0:77:07:60:a4: 8b:e8:55:99:1e:ca:45:bf:26:45:ad:fc:0e:24:e5: 43:07:24:1d:42:45:60:d8:27:2e:30:9d:c5:1b:6d: a4:b0:a2:10:7b:64:f2:c0:95:fe:64:a7:9e:05:55: 65:3a:8f:df:66:98:90:29:26:d7:ed:3e:0e:1c:12: 9f:a1:a7:4f:16:4a:fa:1c:61:c8:60:36:7c:4e:39: 12:f3:4b:c2:74:01:87:2b:49:ae:a2:39:2e:2e:e0: 6c:62:62:ba:6f:91:30:f8:ce:03:47:b4:b3:c3:12: e0:21:f8:dd:19:55:0c:a9:6a:ff:0a:28:86:09:b4: 60:d4:c5:bc:ce:9e:76:d4:39:58:aa:6c:ca:92:1d: 08:e8:47:2c:90:21:0b:21:1b:2a:f0:35:1f:10:98: 82:74:16:1c:ea:77:32:b9:ea:d3:75:f7:e4:bf:d7: b4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:EC:D1:E9:2A:D1:69:71:59:E2:96:AB:B8:CA:36:C2:EC:C9:02:C8 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/vOzR6SrRaXFZ4paruMo2wuzJAsg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.247.160.0/20 Signature Algorithm: sha256WithRSAEncryption 34:e9:09:34:82:64:95:f0:df:7d:3f:df:75:bc:94:8a:c7:68: e5:60:8d:94:f2:62:e4:1b:cf:39:3b:59:40:89:6e:fa:9c:c7: 8a:29:b7:29:73:97:7e:88:ac:f3:c6:64:df:3e:eb:7c:59:98: 62:cb:d1:8e:41:87:14:72:fd:ae:9f:0e:e9:39:e2:2b:81:5f: b7:aa:92:7e:b0:9c:14:4b:80:e0:c7:9e:d5:b6:59:b5:87:b5: 17:9c:28:0f:3d:25:37:72:12:5d:aa:01:bb:bb:5d:f2:18:b5: b4:3a:57:8e:8c:e8:7b:a9:a3:86:a6:7c:be:8d:0f:6f:d0:c7: 7d:e5:7c:4c:1a:56:30:1f:59:41:b2:54:04:be:b1:be:98:a9: 44:9c:33:74:4d:e3:e2:ed:c0:df:9b:a7:3b:17:92:7e:95:08: 74:53:ec:5c:6d:a4:a1:54:cf:1b:e7:b1:2e:d5:9b:44:f7:fd: 1d:0d:4f:29:69:13:d9:b1:0e:21:29:f8:8e:8d:ec:b1:44:cc: 8f:dd:70:f0:e0:fa:f8:e8:b0:65:45:74:d8:5c:e7:2a:fd:9c: d5:c5:35:90:d7:3b:d3:6f:6c:40:26:4d:ff:b2:82:4b:c4:2f: 7e:a1:eb:54:13:90:5e:76:d7:10:6a:29:4e:31:39:39:2e:5a: 02:9a:c0:6e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC/4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzExMDMw MjUwMTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJDRUNEMUU5MkFEMTY5 NzE1OUUyOTZBQkI4Q0EzNkMyRUNDOTAyQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcodFA3qH0Kot7I7qrDDpRHX26i/kM9+UWeWjYMEkwy5I7HmWy i+Vbaww4xrQsB9HTeGnJyBAkNhiKS5eFQ6WzM776U6RXlHIeY+RjO/7O8RcqyG7Q dwdgpIvoVZkeykW/JkWt/A4k5UMHJB1CRWDYJy4wncUbbaSwohB7ZPLAlf5kp54F VWU6j99mmJApJtftPg4cEp+hp08WSvocYchgNnxOORLzS8J0AYcrSa6iOS4u4Gxi YrpvkTD4zgNHtLPDEuAh+N0ZVQypav8KKIYJtGDUxbzOnnbUOViqbMqSHQjoRyyQ IQshGyrwNR8QmIJ0FhzqdzK56tN19+S/17STAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUvOzR6SrRaXFZ4paruMo2wuzJAsgwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL3ZPelI2U3JSYVhGWjRwYXJ1 TW8yd3V6SkFzZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 96AwDQYJKoZIhvcNAQELBQADggEBADTpCTSCZJXw330/33W8lIrHaOVgjZTyYuQb zzk7WUCJbvqcx4optylzl36IrPPGZN8+63xZmGLL0Y5BhxRy/a6fDuk54iuBX7eq kn6wnBRLgODHntW2WbWHtRecKA89JTdyEl2qAbu7XfIYtbQ6V46M6Hupo4amfL6N D2/Qx33lfEwaVjAfWUGyVAS+sb6YqUScM3RN4+LtwN+bpzsXkn6VCHRT7FxtpKFU zxvnsS7Vm0T3/R0NTylpE9mxDiEp+I6N7LFEzI/dcPDg+vjosGVFdNhc5yr9nNXF NZDXO9NvbEAmTf+ygkvEL36h61QTkF521xBqKU4xOTkuWgKawG4= -----END CERTIFICATE-----Generated at Sun Jun 23 15:31:59 2024 by rpki-client on console-ams.rpki-client.org