$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/AyCLzj4eRt7OINqOzl9PwORpI9A.roa File: AyCLzj4eRt7OINqOzl9PwORpI9A.roa (raw, json) Hash identifier: PVXJK7jv/UHEHLVGpJJ75rJ1sHIATlXwJ1kz2xkKGAU= Subject key identifier: 03:20:8B:CE:3E:1E:46:DE:CE:20:DA:8E:CE:5F:4F:C0:E4:69:23:D0 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BFC Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/AyCLzj4eRt7OINqOzl9PwORpI9A.roa Signing time: Fri 03 Nov 2023 02:47:43 +0000 ROA not before: Fri 03 Nov 2023 02:47:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 61.56.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3068 (0xbfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Nov 3 02:47:43 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=03208BCE3E1E46DECE20DA8ECE5F4FC0E46923D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:09:86:84:c1:d9:46:a1:78:2f:33:14:04:1d: 79:e2:a9:19:6c:a4:2a:26:39:43:f0:cf:cc:ab:97: ef:6f:9d:95:cd:c6:ce:52:6e:55:fe:9a:82:9b:a4: f9:8d:8c:0f:b8:b8:2b:fc:e7:13:6f:43:57:15:38: d0:b1:7a:3c:51:3a:ab:a4:67:d7:74:77:86:c6:1e: 67:b8:de:e9:d0:49:d6:e0:d5:74:ce:ea:1f:73:b6: de:68:5a:3e:15:cf:0d:bd:12:67:5c:78:ae:2b:d5: 41:5d:09:25:14:57:0e:a4:cd:54:3f:bb:35:19:e3: 0c:3f:9d:83:8e:59:20:62:e0:78:70:b3:0f:ad:48: 03:b8:3f:50:9c:8c:ec:6d:04:ac:99:1f:7d:64:77: 72:17:a7:af:db:85:82:dc:5a:39:63:fe:7b:ad:77: 13:04:64:56:af:af:bc:d2:9a:38:24:76:46:c1:a4: ac:0e:96:ee:8d:88:26:f9:25:11:72:ea:83:e4:c1: f4:51:c3:11:68:ab:d8:92:6e:8c:96:e9:d1:09:00: 1f:53:68:0b:52:d2:6d:1c:48:78:3b:dc:9c:4d:4b: 47:46:1f:6f:e0:c7:44:1e:15:02:db:12:20:99:13: 93:c5:a9:41:84:24:f6:03:89:0b:57:2f:11:53:e7: 36:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:20:8B:CE:3E:1E:46:DE:CE:20:DA:8E:CE:5F:4F:C0:E4:69:23:D0 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/AyCLzj4eRt7OINqOzl9PwORpI9A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.80.0/20 Signature Algorithm: sha256WithRSAEncryption bd:85:a5:6a:f5:77:26:fd:91:28:d6:06:e8:62:59:77:ce:d0: 4c:3c:7e:c0:57:8b:39:31:11:49:2a:1b:94:62:f3:27:b5:26: 19:70:7d:51:36:17:05:b6:42:f2:2a:22:3b:78:f8:7b:4f:7e: 93:29:e0:43:08:91:80:2b:02:cd:22:ab:39:30:df:84:19:91: aa:73:35:24:08:7f:37:c5:55:7f:e3:57:fb:64:ac:99:f4:3b: 86:1e:c8:dc:7b:64:07:86:2c:6c:f1:6e:05:da:99:48:67:4d: 87:12:4c:c8:e3:1d:a8:4a:ba:9c:dd:af:64:50:2a:76:9c:51: d3:51:7c:75:5c:35:bd:fa:e8:51:e7:63:8a:fe:5f:05:6e:d8: f0:a4:fa:c6:b7:f7:dc:77:c3:60:34:96:c9:c5:f5:ff:2d:c9: 78:b3:4f:30:ee:2c:99:35:e9:0d:72:d5:ff:b8:1c:ad:27:f7: d4:dc:7b:6e:ac:da:f1:63:ef:61:ff:9f:65:f2:56:79:14:41: 57:c9:0b:b8:07:8a:24:85:34:f6:86:9e:00:7d:42:c9:e9:c3: 7d:fc:c1:1f:e5:88:1d:56:78:cd:93:fd:75:96:10:05:03:3c: c6:49:c6:01:cc:c1:45:d8:9b:09:df:00:6b:25:ae:9e:29:29: c9:43:33:03 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC/wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzExMDMw MjQ3NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAzMjA4QkNFM0UxRTQ2 REVDRTIwREE4RUNFNUY0RkMwRTQ2OTIzRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHCYaEwdlGoXgvMxQEHXniqRlspComOUPwz8yrl+9vnZXNxs5S blX+moKbpPmNjA+4uCv85xNvQ1cVONCxejxROqukZ9d0d4bGHme43unQSdbg1XTO 6h9ztt5oWj4Vzw29EmdceK4r1UFdCSUUVw6kzVQ/uzUZ4ww/nYOOWSBi4Hhwsw+t SAO4P1CcjOxtBKyZH31kd3IXp6/bhYLcWjlj/nutdxMEZFavr7zSmjgkdkbBpKwO lu6NiCb5JRFy6oPkwfRRwxFoq9iSboyW6dEJAB9TaAtS0m0cSHg73JxNS0dGH2/g x0QeFQLbEiCZE5PFqUGEJPYDiQtXLxFT5zZ1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAyCLzj4eRt7OINqOzl9PwORpI9AwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0F5Q0x6ajRlUnQ3T0lOcU96 bDlQd09ScEk5QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OFAwDQYJKoZIhvcNAQELBQADggEBAL2FpWr1dyb9kSjWBuhiWXfO0Ew8fsBXizkx EUkqG5Ri8ye1JhlwfVE2FwW2QvIqIjt4+HtPfpMp4EMIkYArAs0iqzkw34QZkapz NSQIfzfFVX/jV/tkrJn0O4YeyNx7ZAeGLGzxbgXamUhnTYcSTMjjHahKupzdr2RQ KnacUdNRfHVcNb366FHnY4r+XwVu2PCk+sa399x3w2A0lsnF9f8tyXizTzDuLJk1 6Q1y1f+4HK0n99Tce26s2vFj72H/n2XyVnkUQVfJC7gHiiSFNPaGngB9Qsnpw338 wR/liB1WeM2T/XWWEAUDPMZJxgHMwUXYmwnfAGslrp4pKclDMwM= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:03 2024 by rpki-client on console-ams.rpki-client.org