$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/xsWIxXHHaKE-oEIkp9a3YrEsjeI.roa File: xsWIxXHHaKE-oEIkp9a3YrEsjeI.roa (raw, json) Hash identifier: FRWIPx5h87hvf32nlCDV8JgMwAFtFF277lq1JFGLReA= Subject key identifier: C6:C5:88:C5:71:C7:68:A1:3E:A0:42:24:A7:D6:B7:62:B1:2C:8D:E2 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D81 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/xsWIxXHHaKE-oEIkp9a3YrEsjeI.roa Signing time: Mon 10 Feb 2025 13:50:04 +0000 ROA not before: Mon 10 Feb 2025 13:50:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.56.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3457 (0xd81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C6C588C571C768A13EA04224A7D6B762B12C8DE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:99:64:12:87:73:50:38:1f:02:e8:02:93:d9: d0:e8:c6:6d:d9:12:0f:60:7c:12:f1:b9:ad:f0:47: 5c:4b:dd:24:12:4b:c7:48:74:45:2a:e5:a1:6a:d3: 18:e1:97:42:df:32:14:2d:d2:38:7c:d8:35:e1:45: 3d:11:b9:ce:7a:09:4a:13:09:c9:a8:5a:7d:bd:aa: ad:8f:a6:08:ce:9f:35:1b:be:2e:85:59:1f:40:5c: 4c:7f:31:73:b5:77:20:a4:6c:15:8f:5d:6b:c5:bd: 5d:36:59:76:05:26:43:61:ea:50:9c:e7:e2:2b:08: 06:f5:fe:e1:1e:b7:95:e5:c2:06:04:8b:4d:eb:85: 68:bf:f3:4b:78:1c:ff:f3:53:2b:13:c9:62:2f:9d: 5e:31:1f:27:13:f0:a8:62:b2:08:28:4f:c3:41:28: 2b:bb:e4:1a:0d:10:60:39:94:ba:28:27:49:07:2a: ed:7e:b7:40:ae:fd:8a:38:c2:89:ab:a6:42:3b:62: a0:1a:aa:9d:15:80:89:23:77:da:76:22:c7:17:5c: 55:bb:e6:c5:ce:4b:34:7d:5f:37:60:e6:5f:96:84: a3:13:3a:6d:d9:0d:e5:11:1f:7d:58:15:d4:fb:0b: f6:bc:0f:fb:da:eb:71:7c:5a:03:f8:16:7c:98:5d: c5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C5:88:C5:71:C7:68:A1:3E:A0:42:24:A7:D6:B7:62:B1:2C:8D:E2 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/xsWIxXHHaKE-oEIkp9a3YrEsjeI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.86.0/24 Signature Algorithm: sha256WithRSAEncryption 39:10:24:dd:eb:70:2a:44:0a:f6:8d:ce:42:99:eb:c8:30:ff: 7c:3e:72:d3:23:75:51:f5:5d:ef:8e:cf:ce:7b:fe:98:61:82: e4:91:75:9f:ee:47:5a:7d:ee:eb:bd:78:6f:f3:56:ff:14:5d: 42:2d:7a:4c:0e:ed:cb:f5:f3:82:44:f3:5e:ba:a5:44:96:8f: 7e:0c:8b:72:c6:8e:5f:22:36:e2:c5:ee:4b:42:bc:d4:c1:d1: db:42:84:5e:69:f3:e4:3c:c7:0d:f9:40:6b:ad:14:ba:b2:1b: 2e:21:bc:aa:e5:a5:b1:3e:29:1a:dc:86:ad:98:57:ce:d7:0e: 21:af:33:dd:bd:dc:06:8b:64:9c:95:e3:83:6f:e5:63:4c:a7: 87:04:fd:48:fd:28:b1:78:a4:d7:32:1a:9a:3e:cc:aa:8c:82: 65:1d:8b:f3:da:5a:4d:27:9a:61:a3:eb:01:56:0d:a1:87:a9: 1f:e2:bd:78:2f:ef:52:69:59:32:de:02:8d:1a:ed:72:23:8e: 54:0e:46:d5:cb:2d:b1:b5:db:c9:49:99:e1:92:14:f2:82:f6: 0b:e4:95:49:0c:e6:db:ba:07:d3:b3:8c:62:b0:df:4b:54:51: cf:85:d3:dd:3c:8f:5e:46:c0:dd:ed:5f:63:06:d8:96:8c:d4: 7b:98:d4:b5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDYEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2QzU4OEM1NzFDNzY4 QTEzRUEwNDIyNEE3RDZCNzYyQjEyQzhERTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfmWQSh3NQOB8C6AKT2dDoxm3ZEg9gfBLxua3wR1xL3SQSS8dI dEUq5aFq0xjhl0LfMhQt0jh82DXhRT0Ruc56CUoTCcmoWn29qq2PpgjOnzUbvi6F WR9AXEx/MXO1dyCkbBWPXWvFvV02WXYFJkNh6lCc5+IrCAb1/uEet5XlwgYEi03r hWi/80t4HP/zUysTyWIvnV4xHycT8KhisggoT8NBKCu75BoNEGA5lLooJ0kHKu1+ t0Cu/Yo4womrpkI7YqAaqp0VgIkjd9p2IscXXFW75sXOSzR9Xzdg5l+WhKMTOm3Z DeURH31YFdT7C/a8D/va63F8WgP4FnyYXcVBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxsWIxXHHaKE+oEIkp9a3YrEsjeIwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL3hzV0l4WEhIYUtFLW9FSWtw OWEzWXJFc2plSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 OFYwDQYJKoZIhvcNAQELBQADggEBADkQJN3rcCpECvaNzkKZ68gw/3w+ctMjdVH1 Xe+Oz857/phhguSRdZ/uR1p97uu9eG/zVv8UXUItekwO7cv184JE8166pUSWj34M i3LGjl8iNuLF7ktCvNTB0dtChF5p8+Q8xw35QGutFLqyGy4hvKrlpbE+KRrchq2Y V87XDiGvM9293AaLZJyV44Nv5WNMp4cE/Uj9KLF4pNcyGpo+zKqMgmUdi/PaWk0n mmGj6wFWDaGHqR/ivXgv71JpWTLeAo0a7XIjjlQORtXLLbG128lJmeGSFPKC9gvk lUkM5tu6B9OzjGKw30tUUc+F0908j15GwN3tX2MG2JaM1HuY1LU= -----END CERTIFICATE-----Generated at Fri Apr 18 19:42:03 2025 by rpki-client