$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/W_PsN0fe3nHyuBpmIIw5EL1e06Q.roa File: W_PsN0fe3nHyuBpmIIw5EL1e06Q.roa (raw, json) Hash identifier: KZZ13rrHmWh0dKc3YOlcS/RcJAC+KbCONcfEaW4h7Xk= Subject key identifier: 5B:F3:EC:37:47:DE:DE:71:F2:B8:1A:66:20:8C:39:10:BD:5E:D3:A4 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BCE Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/W_PsN0fe3nHyuBpmIIw5EL1e06Q.roa Signing time: Fri 01 Sep 2023 08:36:47 +0000 ROA not before: Fri 01 Sep 2023 08:36:47 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 113.21.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 19:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3022 (0xbce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:47 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5BF3EC3747DEDE71F2B81A66208C3910BD5ED3A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c8:e2:5e:95:7d:3b:cb:a3:4e:ad:8e:80:b9: b5:25:11:c5:86:8a:48:a5:fc:9e:48:c9:30:a9:72: 39:a4:6c:35:85:1d:0b:52:97:b8:f2:4f:72:c1:f3: d8:ca:5f:fb:d3:26:be:69:2b:1e:36:40:f1:e1:d7: 16:19:ed:a5:96:20:33:85:36:61:e9:59:cf:39:38: ff:ab:9b:fa:ce:ec:e4:91:c5:b3:18:dc:ae:0c:64: 72:fa:64:1d:bf:e7:e6:31:6b:f5:84:ea:12:e1:51: a1:cf:de:05:2a:78:e2:d1:24:e9:93:4f:7a:e1:b0: bb:51:cf:33:61:f3:3a:5d:f3:7d:6d:23:df:56:77: 55:88:fd:d9:2f:65:c7:20:ac:fb:db:7f:fd:2c:b7: ff:2f:c8:6d:46:c4:84:4c:a4:cc:b1:76:13:cb:66: b7:1e:b3:7c:e8:1e:7b:45:e4:a3:ac:34:87:58:81: 87:32:10:da:a3:89:46:9b:66:ef:c5:bb:da:92:04: dd:24:0a:4a:92:56:31:89:a6:95:fa:df:39:4a:35: 60:78:df:71:86:6c:a0:25:75:9b:57:28:56:ab:44: 7b:c5:d4:36:c5:d9:63:7f:d0:45:85:a5:6a:c2:95: 79:c2:de:99:60:d8:09:1f:cb:cf:c3:27:1f:b4:a9: 4d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F3:EC:37:47:DE:DE:71:F2:B8:1A:66:20:8C:39:10:BD:5E:D3:A4 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/W_PsN0fe3nHyuBpmIIw5EL1e06Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.160.0/20 Signature Algorithm: sha256WithRSAEncryption 23:53:dc:e3:63:1c:76:8e:50:5b:b1:e8:5f:8f:46:7e:8a:b6: 31:0d:8a:71:38:f4:96:13:a3:a6:68:0d:86:0c:f1:b6:7d:93: 0c:99:86:bf:70:22:91:0f:0e:e7:d9:e7:f2:9e:4e:e9:17:0d: 7b:73:66:2c:b3:ff:f5:47:36:87:18:81:1b:11:a0:28:32:60: fe:6a:ab:90:9f:29:27:d4:56:fd:e9:78:fa:64:02:e1:cf:62: a3:cf:1e:3d:7d:0b:1a:1f:7c:0e:c6:19:aa:c7:13:b0:51:0f: 2c:b6:6b:5a:63:0a:32:1b:4f:48:1e:6c:1d:af:65:59:f5:c1: 11:4e:e0:8d:8e:f0:69:ae:93:7e:3e:a8:14:6b:e5:60:31:23: 72:09:1b:6b:84:8f:13:77:52:c1:6e:00:d4:f4:15:39:ea:ac: 44:0c:8a:46:88:6c:b2:b3:aa:d2:6e:75:32:5f:bc:f0:3d:66: e8:7b:5d:67:5c:12:42:1d:a1:09:8e:36:2f:04:8d:51:7f:f6: e7:a8:cb:57:4a:8a:3e:f9:df:c5:ea:11:3f:e9:a7:97:15:f4: 04:41:4a:f3:1f:48:db:76:01:0d:a8:28:f5:7f:2a:c5:b1:0c: 81:a0:42:27:0b:69:95:c7:4d:20:67:61:7a:aa:a0:66:b5:e5: 7b:92:7c:f8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC84wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVCRjNFQzM3NDdERURF NzFGMkI4MUE2NjIwOEMzOTEwQkQ1RUQzQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1yOJelX07y6NOrY6AubUlEcWGikil/J5IyTCpcjmkbDWFHQtS l7jyT3LB89jKX/vTJr5pKx42QPHh1xYZ7aWWIDOFNmHpWc85OP+rm/rO7OSRxbMY 3K4MZHL6ZB2/5+Yxa/WE6hLhUaHP3gUqeOLRJOmTT3rhsLtRzzNh8zpd831tI99W d1WI/dkvZccgrPvbf/0st/8vyG1GxIRMpMyxdhPLZrces3zoHntF5KOsNIdYgYcy ENqjiUabZu/Fu9qSBN0kCkqSVjGJppX63zlKNWB433GGbKAldZtXKFarRHvF1DbF 2WN/0EWFpWrClXnC3plg2Akfy8/DJx+0qU21AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUW/PsN0fe3nHyuBpmIIw5EL1e06QwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL1dfUHNOMGZlM25IeXVCcG1J SXc1RUwxZTA2US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARx FaAwDQYJKoZIhvcNAQELBQADggEBACNT3ONjHHaOUFux6F+PRn6KtjENinE49JYT o6ZoDYYM8bZ9kwyZhr9wIpEPDufZ5/KeTukXDXtzZiyz//VHNocYgRsRoCgyYP5q q5CfKSfUVv3pePpkAuHPYqPPHj19CxoffA7GGarHE7BRDyy2a1pjCjIbT0gebB2v ZVn1wRFO4I2O8Gmuk34+qBRr5WAxI3IJG2uEjxN3UsFuANT0FTnqrEQMikaIbLKz qtJudTJfvPA9Zuh7XWdcEkIdoQmONi8EjVF/9ueoy1dKij7538XqET/pp5cV9ARB SvMfSNt2AQ2oKPV/KsWxDIGgQicLaZXHTSBnYXqqoGa15XuSfPg= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:41 2024 by rpki-client on console-ams.rpki-client.org