$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/L1TBtfPqHMPAS_Djx-7Chp5Gh3Y.roa File: L1TBtfPqHMPAS_Djx-7Chp5Gh3Y.roa (raw, json) Hash identifier: lECOB/DIwB6PMRVPad9oTJ4zi83/VdToF3otKpNjjgI= Subject key identifier: 2F:54:C1:B5:F3:EA:1C:C3:C0:4B:F0:E3:C7:EE:C2:86:9E:46:87:76 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BC4 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/L1TBtfPqHMPAS_Djx-7Chp5Gh3Y.roa Signing time: Fri 01 Sep 2023 08:36:43 +0000 ROA not before: Fri 01 Sep 2023 08:36:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9584 IP address blocks: 113.21.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:43 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2F54C1B5F3EA1CC3C04BF0E3C7EEC2869E468776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b1:48:ee:07:44:6d:9f:b5:34:8c:04:e5:c5: 79:ae:ce:72:1a:2c:c4:f4:98:0a:3e:22:98:aa:22: f5:eb:69:69:26:c6:2e:f6:e6:5a:63:d3:cc:53:c2: 75:43:9e:3a:08:82:58:23:99:a3:d0:9f:7b:e8:c3: 6c:4e:3d:84:37:2a:8d:cc:69:97:b0:04:08:37:cd: aa:ff:d5:5f:62:10:33:76:13:e1:13:a2:9d:5a:00: eb:c2:69:41:c3:ab:76:08:6f:85:be:f5:8b:2d:30: a6:3f:cb:93:af:77:80:03:d3:0b:2b:68:bd:9f:0c: 8a:9c:58:db:53:f0:8c:86:f7:c1:b3:a4:e9:2f:bb: d1:c1:83:38:65:53:d1:e2:52:7d:a8:50:05:4c:85: 52:f1:f3:13:e5:9d:7d:8f:a3:cb:3d:ef:5b:74:0a: e5:d6:f5:fc:38:c5:2c:99:eb:0f:0e:fa:6e:3a:e5: 5d:58:0b:26:75:e5:02:2d:01:75:7d:e9:12:58:d8: 7f:38:26:b2:1f:5e:ad:f7:d4:4f:cf:a8:3a:34:79: cf:41:68:4d:0f:2c:e5:96:ee:9a:ca:2e:de:87:27: 56:86:e5:33:c6:a8:e9:b9:81:15:95:44:30:03:eb: 76:ea:74:bf:ca:7d:55:2a:3b:cc:7a:68:02:90:aa: 0a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:54:C1:B5:F3:EA:1C:C3:C0:4B:F0:E3:C7:EE:C2:86:9E:46:87:76 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/L1TBtfPqHMPAS_Djx-7Chp5Gh3Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.184.0/22 Signature Algorithm: sha256WithRSAEncryption b2:10:bf:7d:ca:c4:20:be:73:c8:b4:2d:26:ef:f7:d9:57:dd: e2:41:8b:d8:3a:1d:02:32:00:22:56:15:61:9a:e5:a9:47:6c: 0f:16:6b:00:b9:91:53:17:9c:6f:9a:53:e0:3f:27:05:50:79: 24:23:06:96:10:41:2f:b2:33:47:45:bc:1b:44:55:65:9a:15: e3:52:0e:20:5f:29:b8:ab:83:2e:e0:ad:97:be:df:1c:3c:68: 0e:d1:3b:56:4d:e3:7b:2b:10:28:3c:13:17:1e:22:ac:36:b9: b1:0c:a0:f1:64:c3:45:75:05:7f:1d:03:b3:9d:66:b0:12:83: 21:6c:1f:a0:e7:e4:7f:1c:7e:0c:e5:7d:00:25:e8:f7:bd:c2: 69:e6:44:89:5f:93:cc:12:99:a1:f6:7b:6f:55:85:14:80:51: 78:a9:3a:05:b6:fe:0c:18:1d:38:b4:ad:a0:97:bd:f8:4b:6e: a9:de:71:a6:3a:a3:d2:31:17:60:8b:64:1b:50:4e:13:92:25: 3e:cd:5b:66:da:73:16:5c:e8:02:92:a1:cf:1d:98:a5:d8:18: 06:8a:45:75:f9:9b:91:14:f6:17:b8:fd:9a:3b:66:30:58:9d: 45:53:02:b5:95:d2:bf:69:98:41:f4:17:7a:82:1d:d8:07:c4: 2d:7a:93:e9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJGNTRDMUI1RjNFQTFD QzNDMDRCRjBFM0M3RUVDMjg2OUU0Njg3NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6sUjuB0Rtn7U0jATlxXmuznIaLMT0mAo+IpiqIvXraWkmxi72 5lpj08xTwnVDnjoIglgjmaPQn3vow2xOPYQ3Ko3MaZewBAg3zar/1V9iEDN2E+ET op1aAOvCaUHDq3YIb4W+9YstMKY/y5Ovd4AD0wsraL2fDIqcWNtT8IyG98GzpOkv u9HBgzhlU9HiUn2oUAVMhVLx8xPlnX2Po8s971t0CuXW9fw4xSyZ6w8O+m465V1Y CyZ15QItAXV96RJY2H84JrIfXq331E/PqDo0ec9BaE0PLOWW7prKLt6HJ1aG5TPG qOm5gRWVRDAD63bqdL/KfVUqO8x6aAKQqgrFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUL1TBtfPqHMPAS/Djx+7Chp5Gh3YwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0wxVEJ0ZlBxSE1QQVNfRGp4 LTdDaHA1R2gzWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJx FbgwDQYJKoZIhvcNAQELBQADggEBALIQv33KxCC+c8i0LSbv99lX3eJBi9g6HQIy ACJWFWGa5alHbA8WawC5kVMXnG+aU+A/JwVQeSQjBpYQQS+yM0dFvBtEVWWaFeNS DiBfKbirgy7grZe+3xw8aA7RO1ZN43srECg8ExceIqw2ubEMoPFkw0V1BX8dA7Od ZrASgyFsH6Dn5H8cfgzlfQAl6Pe9wmnmRIlfk8wSmaH2e29VhRSAUXipOgW2/gwY HTi0raCXvfhLbqnecaY6o9IxF2CLZBtQThOSJT7NW2bacxZc6AKSoc8dmKXYGAaK RXX5m5EU9he4/Zo7ZjBYnUVTArWV0r9pmEH0F3qCHdgHxC16k+k= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org