$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ovVOyUx1D13rv2EkzwKm3BSJqTY.roa File: ovVOyUx1D13rv2EkzwKm3BSJqTY.roa (raw, json) Hash identifier: N81kGabu1v/qEVG2L+UONdG5d+4ORltrcU/zoaUM8m4= Subject key identifier: A2:F5:4E:C9:4C:75:0F:5D:EB:BF:61:24:CF:02:A6:DC:14:89:A9:36 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BCD Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ovVOyUx1D13rv2EkzwKm3BSJqTY.roa Signing time: Fri 01 Sep 2023 08:36:47 +0000 ROA not before: Fri 01 Sep 2023 08:36:47 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 61.247.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3021 (0xbcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:47 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A2F54EC94C750F5DEBBF6124CF02A6DC1489A936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:35:52:0d:97:0c:b3:db:99:d0:76:d7:43:a3: ea:02:55:f2:6a:ed:9b:a3:ba:ca:b9:c5:eb:78:cb: 81:3e:50:c0:d6:e6:d4:83:48:46:ed:67:78:19:84: 5a:45:44:03:0d:6d:66:9e:80:99:11:97:ad:36:da: ee:7a:d1:26:17:00:cb:e9:13:e3:e8:8e:8e:6f:1a: b5:50:15:3c:7c:02:5f:2c:06:a4:a5:e5:ad:a9:66: d5:6f:d6:ba:6c:8e:74:06:85:86:f1:b7:39:16:0d: fe:ac:92:c7:0c:bc:47:cf:60:b5:6a:e9:6d:93:22: 97:0a:5f:e2:eb:6f:f2:77:3f:87:13:7f:88:db:d3: 18:89:a2:af:61:3e:d1:89:27:47:9e:b3:ee:aa:f0: 15:51:fb:e0:c4:67:64:b0:3c:c0:e7:72:33:86:6b: b0:7e:e6:16:4a:89:3c:6e:68:75:3a:70:d6:c6:e7: 18:99:9d:9c:8d:d2:0f:a6:4c:02:60:c6:22:20:aa: de:61:87:f6:7c:dd:27:6a:c6:5b:c7:05:10:0c:71: e6:76:17:72:c4:bf:b4:ba:45:7f:1c:d6:37:3b:91: df:cc:c6:5e:95:8f:50:fd:30:20:a7:95:f8:30:9c: a0:0b:35:23:9c:a3:c8:27:a0:96:72:c1:14:23:13: 71:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F5:4E:C9:4C:75:0F:5D:EB:BF:61:24:CF:02:A6:DC:14:89:A9:36 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ovVOyUx1D13rv2EkzwKm3BSJqTY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.247.160.0/21 Signature Algorithm: sha256WithRSAEncryption c2:56:50:50:6a:61:16:47:1d:6e:79:f8:fd:3a:51:8b:67:50: 55:fa:47:80:f6:f0:a9:9f:29:6f:80:70:57:cd:ae:e2:78:a9: 79:3c:6d:46:35:ed:07:1a:0b:ff:07:f6:b4:a9:1f:0b:dd:c9: 3b:ff:9c:15:61:04:ca:53:79:0b:b7:44:e7:ac:71:3d:64:e9: ec:cb:d6:00:64:47:1f:11:c9:67:5e:06:8f:5f:d2:ed:70:19: e7:99:e3:35:38:85:6d:7d:84:19:35:04:c4:d6:94:80:c7:2e: 15:c4:20:75:aa:26:38:29:50:93:5b:2f:9a:f9:c9:b7:16:91: c7:3a:92:09:78:3e:5c:2e:1c:1f:3b:7f:1b:f9:27:d9:b8:f3: f1:6b:e0:d8:42:87:9a:06:4e:2c:3f:76:db:db:16:12:16:1c: 4d:ef:46:2d:e5:83:18:eb:d6:14:af:21:72:8b:ad:77:ba:a8: 2c:01:a5:09:87:e6:21:16:a0:bf:ad:a8:8b:f9:2b:2d:92:5a: 2e:5d:c5:d2:33:b6:1a:f8:67:f7:58:a6:84:e0:24:ae:0a:7c: da:f0:71:89:41:36:ef:1e:95:b4:83:37:51:70:6f:61:93:ab: 01:05:89:25:a7:b4:94:70:43:e3:ea:24:b7:9a:2e:9f:b1:0b: 00:e9:ef:8a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC80wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEEyRjU0RUM5NEM3NTBG NURFQkJGNjEyNENGMDJBNkRDMTQ4OUE5MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwNVINlwyz25nQdtdDo+oCVfJq7Zujusq5xet4y4E+UMDW5tSD SEbtZ3gZhFpFRAMNbWaegJkRl6022u560SYXAMvpE+Pojo5vGrVQFTx8Al8sBqSl 5a2pZtVv1rpsjnQGhYbxtzkWDf6skscMvEfPYLVq6W2TIpcKX+Lrb/J3P4cTf4jb 0xiJoq9hPtGJJ0ees+6q8BVR++DEZ2SwPMDncjOGa7B+5hZKiTxuaHU6cNbG5xiZ nZyN0g+mTAJgxiIgqt5hh/Z83SdqxlvHBRAMceZ2F3LEv7S6RX8c1jc7kd/Mxl6V j1D9MCCnlfgwnKALNSOco8gnoJZywRQjE3FjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUovVOyUx1D13rv2EkzwKm3BSJqTYwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL292Vk95VXgxRDEzcnYyRWt6 d0ttM0JTSnFUWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 96AwDQYJKoZIhvcNAQELBQADggEBAMJWUFBqYRZHHW55+P06UYtnUFX6R4D28Kmf KW+AcFfNruJ4qXk8bUY17QcaC/8H9rSpHwvdyTv/nBVhBMpTeQu3ROescT1k6ezL 1gBkRx8RyWdeBo9f0u1wGeeZ4zU4hW19hBk1BMTWlIDHLhXEIHWqJjgpUJNbL5r5 ybcWkcc6kgl4PlwuHB87fxv5J9m48/Fr4NhCh5oGTiw/dtvbFhIWHE3vRi3lgxjr 1hSvIXKLrXe6qCwBpQmH5iEWoL+tqIv5Ky2SWi5dxdIzthr4Z/dYpoTgJK4KfNrw cYlBNu8elbSDN1Fwb2GTqwEFiSWntJRwQ+PqJLeaLp+xCwDp74o= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:03 2024 by rpki-client on console-ams.rpki-client.org