$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Swy6UoCpTPx3LMz8pMtIH8hlutY.roa File: Swy6UoCpTPx3LMz8pMtIH8hlutY.roa (raw, json) Hash identifier: dMp3eW/Dn1TZnCpJLJEeF6gLN7vaYGI/TuBLj6uG1so= Subject key identifier: 4B:0C:BA:52:80:A9:4C:FC:77:2C:CC:FC:A4:CB:48:1F:C8:65:BA:D6 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0CEE Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Swy6UoCpTPx3LMz8pMtIH8hlutY.roa Signing time: Mon 26 Aug 2024 05:12:50 +0000 ROA not before: Mon 26 Aug 2024 05:12:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 113.21.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3310 (0xcee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 26 05:12:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4B0CBA5280A94CFC772CCCFCA4CB481FC865BAD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:99:aa:8b:bf:cc:b9:92:00:5a:ec:f6:c5:8f: 62:e9:28:f4:bb:cc:7e:d6:39:eb:0e:83:e9:64:3e: 6b:a3:57:2c:11:08:a6:29:7c:e8:aa:23:7c:a2:fd: 3d:13:7c:94:df:3b:59:23:55:35:c0:27:f0:10:f0: e8:aa:be:72:5d:b2:63:41:e1:30:f3:e7:2c:63:2e: cd:c3:bc:37:d2:06:ee:52:38:e9:10:c1:b9:ce:fe: b7:4a:77:6e:61:10:e9:93:3b:14:5a:0c:02:10:b6: 36:5e:2c:7b:03:1b:81:45:d0:6a:b9:b3:2b:a9:48: 4a:8f:aa:05:3a:f3:8a:d3:8b:c2:40:f1:55:65:8b: 4e:a7:9d:ef:c5:18:3d:a8:f7:62:68:dd:28:59:1e: b3:7f:f3:cd:25:fb:bd:3d:90:93:ea:da:97:f8:34: 92:0f:3a:1f:12:35:54:83:02:21:ed:56:fc:d9:a1: db:1e:25:6b:0c:51:28:2f:41:83:19:21:3d:04:fe: ea:b1:f8:b0:c1:02:f1:69:ad:d4:2d:61:d6:32:94: a7:fc:4a:6a:24:55:8d:8e:c0:56:ba:2a:de:37:f7: d2:ac:f6:48:24:4e:a8:48:39:5d:13:60:93:3b:92: b8:69:ba:30:6b:eb:32:30:ab:05:df:0c:9d:14:b6: c1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0C:BA:52:80:A9:4C:FC:77:2C:CC:FC:A4:CB:48:1F:C8:65:BA:D6 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Swy6UoCpTPx3LMz8pMtIH8hlutY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.188.0/22 Signature Algorithm: sha256WithRSAEncryption 38:16:7b:ff:eb:2b:67:2a:8c:15:a1:5b:a5:ee:c5:2e:4c:f2: 6e:08:8a:16:d3:76:22:84:3e:f8:7b:f6:0f:3b:ac:aa:0a:35: 64:a5:09:b0:ca:83:88:2f:f1:3c:33:4d:f2:04:c2:5c:ee:5e: b5:bf:90:78:86:a6:35:2c:b5:68:e2:f2:f8:4e:ac:a0:cc:6e: 66:9b:0d:53:3a:eb:7c:cb:07:67:29:e4:9a:8c:56:7f:95:a4: 11:1f:dd:03:a8:19:c5:f6:18:74:fa:1c:97:8f:cf:8d:f4:71: 03:e7:ba:81:35:35:54:ec:a8:90:12:e0:26:c6:4a:d1:ae:d4: 76:42:21:b0:02:32:f9:f3:a3:c9:ef:d4:c5:cd:36:64:42:92: 2c:02:89:f5:76:d3:53:5f:f5:aa:f6:37:89:14:67:4e:08:c5: d0:2b:b0:50:ea:67:5f:9b:22:bf:2d:93:5c:96:46:99:d5:87: e9:c6:0d:13:d7:8f:28:dc:7a:25:5e:ff:b8:2e:e6:b1:48:bf: 1f:76:63:0e:b1:14:f2:4c:ee:be:06:0d:0b:7a:99:81:10:ab: 56:86:94:a8:ff:68:70:a7:9d:4d:87:71:dc:cc:da:89:b0:32: b5:d4:4f:88:ef:dd:08:8b:3f:a5:ed:b9:12:19:49:c6:70:8f: 63:83:8e:c8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDO4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNDA4MjYw NTEyNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRCMENCQTUyODBBOTRD RkM3NzJDQ0NGQ0E0Q0I0ODFGQzg2NUJBRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtmaqLv8y5kgBa7PbFj2LpKPS7zH7WOesOg+lkPmujVywRCKYp fOiqI3yi/T0TfJTfO1kjVTXAJ/AQ8OiqvnJdsmNB4TDz5yxjLs3DvDfSBu5SOOkQ wbnO/rdKd25hEOmTOxRaDAIQtjZeLHsDG4FF0Gq5syupSEqPqgU684rTi8JA8VVl i06nne/FGD2o92Jo3ShZHrN/880l+709kJPq2pf4NJIPOh8SNVSDAiHtVvzZodse JWsMUSgvQYMZIT0E/uqx+LDBAvFprdQtYdYylKf8SmokVY2OwFa6Kt4399Ks9kgk TqhIOV0TYJM7krhpujBr6zIwqwXfDJ0UtsF5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSwy6UoCpTPx3LMz8pMtIH8hlutYwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL1N3eTZVb0NwVFB4M0xNejhw TXRJSDhobHV0WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJx FbwwDQYJKoZIhvcNAQELBQADggEBADgWe//rK2cqjBWhW6XuxS5M8m4IihbTdiKE Pvh79g87rKoKNWSlCbDKg4gv8TwzTfIEwlzuXrW/kHiGpjUstWji8vhOrKDMbmab DVM663zLB2cp5JqMVn+VpBEf3QOoGcX2GHT6HJePz430cQPnuoE1NVTsqJAS4CbG StGu1HZCIbACMvnzo8nv1MXNNmRCkiwCifV201Nf9ar2N4kUZ04IxdArsFDqZ1+b Ir8tk1yWRpnVh+nGDRPXjyjceiVe/7gu5rFIvx92Yw6xFPJM7r4GDQt6mYEQq1aG lKj/aHCnnU2HcdzM2omwMrXUT4jv3QiLP6XtuRIZScZwj2ODjsg= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org