$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/F_2j9U4KE3PyNXVzizPJ8cMBQ28.roa File: F_2j9U4KE3PyNXVzizPJ8cMBQ28.roa (raw, json) Hash identifier: nHjd6WM8L3PZlqKGbfr2sotBp/SqhialOHZnOrHThSo= Subject key identifier: 17:FD:A3:F5:4E:0A:13:73:F2:35:75:73:8B:33:C9:F1:C3:01:43:6F Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BC8 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/F_2j9U4KE3PyNXVzizPJ8cMBQ28.roa Signing time: Fri 01 Sep 2023 08:36:45 +0000 ROA not before: Fri 01 Sep 2023 08:36:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 61.56.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3016 (0xbc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=17FDA3F54E0A1373F23575738B33C9F1C301436F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f6:71:34:9a:14:f2:32:10:2b:d5:5e:72:c2: f9:fe:fd:a9:dd:f6:7c:24:95:a6:ae:2d:8c:c9:07: 82:80:bd:25:60:fb:a1:10:98:44:97:02:be:5c:dd: 74:3e:a2:63:7a:6a:95:cb:3a:2e:63:ea:9a:da:01: bf:b3:cb:fe:b7:4a:02:ad:01:fa:bb:ab:e5:a1:c9: ad:76:37:35:4c:46:5f:0d:71:21:ea:b8:c8:a2:41: 52:d5:fc:28:7c:43:bc:1c:ef:c4:d9:37:33:30:1f: bd:8c:73:12:7a:65:6d:84:e5:23:54:9b:f0:6f:41: 81:43:8a:06:11:10:4a:db:fe:99:7f:04:9b:b6:a4: e9:4d:31:c5:bf:70:e5:74:7a:fe:2b:dc:2e:af:95: 79:f6:7e:05:36:9f:cd:02:90:f1:f0:e9:9f:51:f2: bf:4f:06:16:69:0f:6e:40:d6:61:3d:2b:43:8d:1c: 3f:e4:f1:b6:1b:7f:65:ed:5a:32:0c:e9:a1:e2:57: 0b:28:df:f4:6a:d5:c7:82:8d:73:c2:20:14:8d:01: 8d:4a:9a:d5:e8:41:de:46:46:29:24:fe:30:e4:30: a3:79:0d:9a:77:4c:25:ea:9a:8f:f5:91:23:70:df: fd:54:b2:a0:0b:bb:1c:54:08:d9:22:2a:31:bd:14: f0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FD:A3:F5:4E:0A:13:73:F2:35:75:73:8B:33:C9:F1:C3:01:43:6F X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/F_2j9U4KE3PyNXVzizPJ8cMBQ28.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.88.0/21 Signature Algorithm: sha256WithRSAEncryption be:e8:f6:1b:86:0c:5f:ba:5d:79:56:83:3b:77:ea:64:8b:dc: bd:70:d2:29:98:0c:e2:4a:13:20:6d:57:94:03:b2:c7:83:7e: 80:4f:e0:0f:37:75:dd:fd:27:05:a0:76:ad:65:76:8e:02:45: 4a:51:01:c9:d8:d7:f8:58:51:3b:49:9f:df:57:02:74:31:19: 8c:9f:b4:da:04:53:83:f1:5a:81:ad:ec:ae:b1:21:4d:48:1e: 3f:3a:94:9b:ef:84:ba:c7:3c:a7:56:fa:78:76:6a:b8:cf:ae: 5d:21:a9:e1:5a:9d:51:a7:08:85:33:26:62:d7:47:c2:d6:9e: 8c:bb:4b:34:96:9f:61:84:7a:fc:42:4c:c9:e3:3d:87:72:fe: f6:93:3a:fb:99:6a:75:8d:ba:0e:19:29:7d:be:47:24:ea:01: cf:3f:09:40:a9:fe:76:5c:93:2b:6f:24:bd:c1:7f:77:71:df: f1:61:d8:79:76:65:e5:6b:71:17:b9:76:2f:39:6d:9e:35:d0: 62:c6:e6:7f:3d:13:86:8b:a3:21:17:cd:98:c1:5b:cb:7a:8b: 37:4d:91:c6:d1:e7:dc:b4:1e:c0:16:c1:10:32:d5:fe:30:3a: 5a:95:80:da:ae:58:52:15:73:35:a4:31:87:b2:f7:f4:10:27: e3:fc:7d:24 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC8gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE3RkRBM0Y1NEUwQTEz NzNGMjM1NzU3MzhCMzNDOUYxQzMwMTQzNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ9nE0mhTyMhAr1V5ywvn+/and9nwklaauLYzJB4KAvSVg+6EQ mESXAr5c3XQ+omN6apXLOi5j6praAb+zy/63SgKtAfq7q+Whya12NzVMRl8NcSHq uMiiQVLV/Ch8Q7wc78TZNzMwH72McxJ6ZW2E5SNUm/BvQYFDigYREErb/pl/BJu2 pOlNMcW/cOV0ev4r3C6vlXn2fgU2n80CkPHw6Z9R8r9PBhZpD25A1mE9K0ONHD/k 8bYbf2XtWjIM6aHiVwso3/Rq1ceCjXPCIBSNAY1KmtXoQd5GRikk/jDkMKN5DZp3 TCXqmo/1kSNw3/1UsqALuxxUCNkiKjG9FPA1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUF/2j9U4KE3PyNXVzizPJ8cMBQ28wHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0ZfMmo5VTRLRTNQeU5YVnpp elBKOGNNQlEyOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OFgwDQYJKoZIhvcNAQELBQADggEBAL7o9huGDF+6XXlWgzt36mSL3L1w0imYDOJK EyBtV5QDsseDfoBP4A83dd39JwWgdq1ldo4CRUpRAcnY1/hYUTtJn99XAnQxGYyf tNoEU4PxWoGt7K6xIU1IHj86lJvvhLrHPKdW+nh2arjPrl0hqeFanVGnCIUzJmLX R8LWnoy7SzSWn2GEevxCTMnjPYdy/vaTOvuZanWNug4ZKX2+RyTqAc8/CUCp/nZc kytvJL3Bf3dx3/Fh2Hl2ZeVrcRe5di85bZ410GLG5n89E4aLoyEXzZjBW8t6izdN kcbR59y0HsAWwRAy1f4wOlqVgNquWFIVczWkMYey9/QQJ+P8fSQ= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:03 2024 by rpki-client on console-ams.rpki-client.org