$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/92RGTo7w6gdeKN0wKTgMyqqZH7E.roa File: 92RGTo7w6gdeKN0wKTgMyqqZH7E.roa (raw, json) Hash identifier: 3wivtP2dvTmwwxNzl1MAO+SvD7lgLHWDqKSo81q5oh4= Subject key identifier: F7:64:46:4E:8E:F0:EA:07:5E:28:DD:30:29:38:0C:CA:AA:99:1F:B1 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BC5 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/92RGTo7w6gdeKN0wKTgMyqqZH7E.roa Signing time: Fri 01 Sep 2023 08:36:43 +0000 ROA not before: Fri 01 Sep 2023 08:36:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 61.56.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3013 (0xbc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:43 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F764464E8EF0EA075E28DD3029380CCAAA991FB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7e:ec:a1:29:07:2d:39:28:2f:66:0b:89:50: c0:4d:f8:2c:e6:21:9d:7e:43:1d:4c:3a:20:b7:2e: 1a:b0:4e:77:1e:a0:90:2a:a9:3a:65:f1:3f:2b:a3: 41:6e:c1:9c:bc:5f:68:14:6a:27:5f:0f:dc:5c:81: 72:41:26:c5:0e:ee:3e:2a:36:cc:ff:e9:92:d0:1d: 5b:15:40:e1:12:6c:d8:d1:44:6d:70:ed:f1:02:23: 87:11:c2:a9:7a:22:ad:ae:c8:49:ad:37:bb:9b:a5: 4c:a5:71:21:d1:d3:27:5a:34:99:b5:19:0e:4f:e2: bc:fd:e3:54:60:b6:13:ed:58:d0:54:c2:8c:25:cd: 7d:97:98:c5:d8:73:6b:2c:0e:a0:b4:b9:9f:aa:dc: fc:1f:b7:32:2e:04:d9:00:ce:bd:3c:bc:3a:21:12: 9e:7e:04:82:15:67:92:b5:56:8d:1c:0d:63:59:09: d6:2f:3d:df:9d:bc:58:85:36:ea:4f:9f:c1:aa:6e: 35:4e:3b:5f:64:ba:09:36:fd:43:35:79:e2:1a:93: a2:05:8f:41:6b:c8:34:a0:1c:09:4e:ec:81:11:03: db:a0:7e:74:b6:49:53:79:62:11:a4:6a:35:2a:38: 39:96:fc:af:10:a3:7d:59:c0:7e:ac:98:43:a1:df: b8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:64:46:4E:8E:F0:EA:07:5E:28:DD:30:29:38:0C:CA:AA:99:1F:B1 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/92RGTo7w6gdeKN0wKTgMyqqZH7E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.72.0/21 Signature Algorithm: sha256WithRSAEncryption 64:70:8e:bb:1f:33:ae:b0:26:2f:f3:f2:4d:b8:56:fe:13:73: c6:9a:38:60:42:80:69:d1:af:6f:1d:b9:f8:ba:a5:8b:81:b8: 75:74:9e:1e:6a:f3:6b:a4:f0:2a:ed:8c:96:be:f3:97:e3:6b: 81:99:e8:d1:9a:43:57:7c:11:c8:76:26:10:8b:1c:7e:81:b4: 9c:9e:23:9e:ad:84:55:98:70:0e:30:a8:da:03:af:5a:55:4b: 2b:f2:f4:06:94:f2:a1:39:ec:1c:31:95:0c:a5:9c:cf:6e:0f: 73:b5:2d:13:92:7d:00:68:28:6d:05:bb:6d:43:6f:31:6a:41: 16:9c:c4:16:ed:16:f0:a6:c9:dc:3c:11:80:f4:07:c4:e7:c1: 9a:0d:4d:c7:65:7a:cb:fb:83:ac:a3:71:5d:68:40:9f:c8:b7: 6f:cd:ca:78:41:6d:96:70:95:14:63:b4:04:86:51:18:6e:1d: 8a:6d:e2:06:8b:7e:4c:e4:77:2c:42:35:be:31:a9:f9:2c:a1: 76:57:da:cf:ed:f7:ac:28:e4:67:b4:49:df:a6:99:a4:6e:a3: 15:9a:28:98:47:c4:e0:eb:10:fc:b2:4e:9f:db:d8:ac:90:d0: 48:75:6e:89:bf:a4:6c:d1:79:6e:d3:8b:17:fc:1f:cc:0e:cb: 7f:4b:1f:4c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC8UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY3NjQ0NjRFOEVGMEVB MDc1RTI4REQzMDI5MzgwQ0NBQUE5OTFGQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDafuyhKQctOSgvZguJUMBN+CzmIZ1+Qx1MOiC3LhqwTnceoJAq qTpl8T8ro0FuwZy8X2gUaidfD9xcgXJBJsUO7j4qNsz/6ZLQHVsVQOESbNjRRG1w 7fECI4cRwql6Iq2uyEmtN7ubpUylcSHR0ydaNJm1GQ5P4rz941RgthPtWNBUwowl zX2XmMXYc2ssDqC0uZ+q3PwftzIuBNkAzr08vDohEp5+BIIVZ5K1Vo0cDWNZCdYv Pd+dvFiFNupPn8GqbjVOO19kugk2/UM1eeIak6IFj0FryDSgHAlO7IERA9ugfnS2 SVN5YhGkajUqODmW/K8Qo31ZwH6smEOh37gpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU92RGTo7w6gdeKN0wKTgMyqqZH7EwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzkyUkdUbzd3NmdkZUtOMHdL VGdNeXFxWkg3RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OEgwDQYJKoZIhvcNAQELBQADggEBAGRwjrsfM66wJi/z8k24Vv4Tc8aaOGBCgGnR r28dufi6pYuBuHV0nh5q82uk8CrtjJa+85fja4GZ6NGaQ1d8Ech2JhCLHH6BtJye I56thFWYcA4wqNoDr1pVSyvy9AaU8qE57BwxlQylnM9uD3O1LROSfQBoKG0Fu21D bzFqQRacxBbtFvCmydw8EYD0B8TnwZoNTcdlesv7g6yjcV1oQJ/It2/NynhBbZZw lRRjtASGURhuHYpt4gaLfkzkdyxCNb4xqfksoXZX2s/t96wo5Ge0Sd+mmaRuoxWa KJhHxODrEPyyTp/b2KyQ0Eh1bom/pGzReW7Tixf8H8wOy39LH0w= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:03 2024 by rpki-client on console-ams.rpki-client.org