$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/5obxZUTJbtuYwrVy7UzMGQ7QDac.roa File: 5obxZUTJbtuYwrVy7UzMGQ7QDac.roa (raw, json) Hash identifier: M6OgJMH3uEMWruxSoN7KTTA4zIiRJB09LUkHJ4H7wyU= Subject key identifier: E6:86:F1:65:44:C9:6E:DB:98:C2:B5:72:ED:4C:CC:19:0E:D0:0D:A7 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0CFF Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/5obxZUTJbtuYwrVy7UzMGQ7QDac.roa Signing time: Mon 26 Aug 2024 05:12:56 +0000 ROA not before: Mon 26 Aug 2024 05:12:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.56.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3327 (0xcff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 26 05:12:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E686F16544C96EDB98C2B572ED4CCC190ED00DA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:06:db:ed:ce:c6:f9:3e:34:a3:5f:66:c2:05: 22:17:0d:d8:65:0f:13:51:5d:59:f3:12:05:da:3f: a8:e7:7e:b4:ff:82:f2:c7:5f:cf:17:5c:9b:aa:a8: 1a:80:3b:2b:40:66:5b:f4:ae:8d:d8:62:09:a7:73: 55:24:a7:ab:29:22:6c:8b:50:05:30:bc:99:84:e6: 57:ab:f2:55:0f:c6:4a:a9:89:74:6a:be:e1:bf:0f: 17:75:b6:ea:b2:32:43:22:1f:39:1f:eb:e0:db:09: 36:aa:8a:61:9e:a7:1f:b3:77:a2:e5:7e:f5:18:11: 59:41:03:9e:9b:44:6d:15:b4:70:b3:54:3e:91:e4: 1f:b1:3e:fd:3c:72:01:60:b8:c9:e6:7d:e1:4b:d5: 94:c3:fa:27:c6:ed:92:16:bc:de:d8:12:a3:63:8c: be:0a:b9:71:a2:2f:81:e6:bc:01:ea:47:4a:35:53: 38:29:89:e0:5a:c9:c5:cf:05:d4:8f:af:6e:e5:2e: b2:d0:aa:87:8b:8e:17:b9:8c:29:aa:eb:67:09:df: e6:4b:07:f3:04:9f:24:73:7b:58:3c:f0:db:c6:6f: c8:30:c0:c2:e1:e6:e8:d5:df:e7:c2:a6:9f:7a:0d: 21:45:e6:c1:3e:59:ad:72:74:b3:31:68:4a:ec:2c: 92:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:86:F1:65:44:C9:6E:DB:98:C2:B5:72:ED:4C:CC:19:0E:D0:0D:A7 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/5obxZUTJbtuYwrVy7UzMGQ7QDac.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.80.0/20 Signature Algorithm: sha256WithRSAEncryption 93:b5:09:27:74:c0:e3:eb:20:21:b9:63:ab:4c:7a:02:ff:2f: 6e:95:f3:c5:a2:6a:ce:77:ab:38:fe:84:32:df:2d:f9:23:b2: 43:85:22:bb:48:55:35:56:1e:6b:3a:bf:ff:9b:53:9f:cd:80: 00:9e:dc:62:a4:55:1f:af:7c:c1:d4:dd:b6:36:e3:a6:2c:15: 4a:eb:33:a4:cd:41:3d:25:bb:bb:c3:4e:e1:08:18:a3:cf:9e: 13:3e:3c:74:38:10:91:08:c9:40:0b:f0:cb:a0:5a:29:8b:41: 81:7f:57:cd:f0:a9:f4:87:0b:80:5b:1c:cd:d9:54:4f:5d:86: f7:de:73:86:6f:27:f7:3c:e3:f1:eb:e2:9f:da:43:48:3f:d9: 2d:2e:b6:f5:39:70:31:07:9d:2c:a5:b3:1e:b1:54:94:ec:61: d7:09:3e:d3:ea:44:4f:07:70:4c:8f:fb:a8:32:c8:d1:a2:82: ce:61:a0:37:ee:d6:8d:4b:e2:a1:c9:81:18:e0:ef:27:41:6b: 4b:41:dd:ab:e9:22:77:25:3f:61:9a:a5:87:74:17:6f:39:f1: 06:20:d8:64:2a:45:c4:1f:48:94:57:5d:e0:f3:53:a3:e8:4b: 42:2d:3f:39:92:9a:e8:69:b2:8b:79:8a:d6:d2:31:96:b0:91: 47:dc:48:72 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDP8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNDA4MjYw NTEyNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2ODZGMTY1NDRDOTZF REI5OEMyQjU3MkVENENDQzE5MEVEMDBEQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNBtvtzsb5PjSjX2bCBSIXDdhlDxNRXVnzEgXaP6jnfrT/gvLH X88XXJuqqBqAOytAZlv0ro3YYgmnc1Ukp6spImyLUAUwvJmE5ler8lUPxkqpiXRq vuG/Dxd1tuqyMkMiHzkf6+DbCTaqimGepx+zd6LlfvUYEVlBA56bRG0VtHCzVD6R 5B+xPv08cgFguMnmfeFL1ZTD+ifG7ZIWvN7YEqNjjL4KuXGiL4HmvAHqR0o1Uzgp ieBaycXPBdSPr27lLrLQqoeLjhe5jCmq62cJ3+ZLB/MEnyRze1g88NvGb8gwwMLh 5ujV3+fCpp96DSFF5sE+Wa1ydLMxaErsLJIpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5obxZUTJbtuYwrVy7UzMGQ7QDacwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzVvYnhaVVRKYnR1WXdyVnk3 VXpNR1E3UURhYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OFAwDQYJKoZIhvcNAQELBQADggEBAJO1CSd0wOPrICG5Y6tMegL/L26V88Wias53 qzj+hDLfLfkjskOFIrtIVTVWHms6v/+bU5/NgACe3GKkVR+vfMHU3bY246YsFUrr M6TNQT0lu7vDTuEIGKPPnhM+PHQ4EJEIyUAL8MugWimLQYF/V83wqfSHC4BbHM3Z VE9dhvfec4ZvJ/c84/Hr4p/aQ0g/2S0utvU5cDEHnSylsx6xVJTsYdcJPtPqRE8H cEyP+6gyyNGigs5hoDfu1o1L4qHJgRjg7ydBa0tB3avpInclP2GapYd0F2858QYg 2GQqRcQfSJRXXeDzU6PoS0ItPzmSmuhpsot5itbSMZawkUfcSHI= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org