$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/LSRJvpg8JWdibVbGwJLW1VHj3nI.roa File: LSRJvpg8JWdibVbGwJLW1VHj3nI.roa (raw, json) Hash identifier: Ajw9OQkkeF+kVpihTxqUYZRt8Mcb7CN2/boWwb6pIFA= Subject key identifier: 2D:24:49:BE:98:3C:25:67:62:6D:56:C6:C0:92:D6:D5:51:E3:DE:72 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BCF Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/LSRJvpg8JWdibVbGwJLW1VHj3nI.roa Signing time: Fri 01 Sep 2023 08:36:47 +0000 ROA not before: Fri 01 Sep 2023 08:36:47 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 2403:ee00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 19:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3023 (0xbcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:47 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2D2449BE983C2567626D56C6C092D6D551E3DE72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:58:55:09:05:4c:ff:e7:4c:6e:6d:43:e3:7a: db:8e:6f:25:b1:5c:b2:0a:fe:5c:55:f6:50:44:be: 4a:a2:ea:c2:9d:aa:08:ca:68:78:d9:e6:31:c2:b4: c8:5b:a9:e3:0e:ec:88:b6:56:14:54:a3:4a:f4:e1: e9:80:34:0a:d6:ce:cf:2f:7b:97:4b:fd:2e:60:2c: 47:21:77:fa:41:46:ed:95:73:91:08:a2:b0:9d:1e: 83:9e:56:bc:fa:a8:be:97:39:32:03:85:c1:f8:c7: 4c:4a:c3:0a:ce:a1:fd:69:0f:93:78:37:f3:79:2a: a8:d6:9a:2d:b9:a1:33:19:d7:cc:8a:66:cb:cd:c7: 27:a5:31:3d:06:5e:fa:a9:e6:49:8a:85:9d:3d:ab: a2:d1:5b:e0:40:75:68:8d:92:5c:be:eb:3a:9f:1d: f1:e9:b7:f9:84:3a:1b:52:c4:fd:2b:15:b7:1b:5e: 86:8a:3e:c0:9d:50:02:7e:50:28:a8:03:c7:c4:15: 8a:f7:1c:1a:ac:3a:35:84:67:7f:8f:7a:b2:78:4a: c8:33:fd:2a:ff:44:60:ef:86:d5:cd:4c:a8:58:0c: 2d:64:81:47:97:4b:f4:d9:06:1e:98:e1:8c:e7:0a: aa:42:76:db:1d:ce:ba:84:bb:4e:0d:7f:f4:ae:31: c0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:24:49:BE:98:3C:25:67:62:6D:56:C6:C0:92:D6:D5:51:E3:DE:72 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/LSRJvpg8JWdibVbGwJLW1VHj3nI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:ee00::/32 Signature Algorithm: sha256WithRSAEncryption ad:1d:9b:49:00:35:be:45:39:af:ba:2f:d3:dd:a8:67:0c:6f: 7a:df:88:64:39:43:fa:a9:7d:82:a6:6a:0f:b3:90:cc:48:ba: 36:fd:62:0b:7d:3e:96:e5:a0:ae:53:50:7d:74:92:02:97:46: e2:be:dc:e2:e8:1a:ce:df:7b:b2:aa:3d:c8:b3:31:dd:73:98: b1:b3:1b:45:0e:50:68:0e:b7:ff:b7:4b:55:d5:2b:fd:a4:5d: 5a:d1:6e:a1:c2:25:76:c5:d8:2a:50:86:0b:48:e6:c9:9d:93: 04:c0:f5:fe:f6:db:e2:d3:c9:24:8f:1e:05:4a:fd:81:2d:45: 4f:e0:d4:f0:16:38:5c:c8:7b:94:28:db:59:87:a3:d3:20:2d: 71:b1:92:d1:43:47:a4:e0:a9:2d:f4:6d:38:0e:d2:70:c1:29: 10:dd:10:74:b2:d4:bf:9a:9c:65:5c:29:40:91:36:3c:73:79: ae:3e:8e:45:7d:2d:0b:7d:cb:87:9e:47:19:8e:32:d9:c0:27: 83:49:07:f7:94:0e:09:3d:70:01:26:4a:34:00:33:74:d6:69: 9e:46:bd:04:b5:93:89:34:86:e3:ad:5e:28:80:81:01:d6:c8: 1a:ba:da:fb:a5:2b:15:f7:96:a6:29:7e:dc:d3:d8:0c:e5:10: 24:cc:a7:33 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICC88wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJEMjQ0OUJFOTgzQzI1 Njc2MjZENTZDNkMwOTJENkQ1NTFFM0RFNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEWFUJBUz/50xubUPjetuObyWxXLIK/lxV9lBEvkqi6sKdqgjK aHjZ5jHCtMhbqeMO7Ii2VhRUo0r04emANArWzs8ve5dL/S5gLEchd/pBRu2Vc5EI orCdHoOeVrz6qL6XOTIDhcH4x0xKwwrOof1pD5N4N/N5KqjWmi25oTMZ18yKZsvN xyelMT0GXvqp5kmKhZ09q6LRW+BAdWiNkly+6zqfHfHpt/mEOhtSxP0rFbcbXoaK PsCdUAJ+UCioA8fEFYr3HBqsOjWEZ3+PerJ4Ssgz/Sr/RGDvhtXNTKhYDC1kgUeX S/TZBh6Y4YznCqpCdtsdzrqEu04Nf/SuMcBlAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQULSRJvpg8JWdibVbGwJLW1VHj3nIwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0xTUkp2cGc4SldkaWJWYkd3 SkxXMVZIajNuSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk A+4AMA0GCSqGSIb3DQEBCwUAA4IBAQCtHZtJADW+RTmvui/T3ahnDG9634hkOUP6 qX2CpmoPs5DMSLo2/WILfT6W5aCuU1B9dJICl0bivtzi6BrO33uyqj3IszHdc5ix sxtFDlBoDrf/t0tV1Sv9pF1a0W6hwiV2xdgqUIYLSObJnZMEwPX+9tvi08kkjx4F Sv2BLUVP4NTwFjhcyHuUKNtZh6PTIC1xsZLRQ0ek4Kkt9G04DtJwwSkQ3RB0stS/ mpxlXClAkTY8c3muPo5FfS0LfcuHnkcZjjLZwCeDSQf3lA4JPXABJko0ADN01mme Rr0EtZOJNIbjrV4ogIEB1sgautr7pSsV95amKX7c09gM5RAkzKcz -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:41 2024 by rpki-client on console-ams.rpki-client.org