$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/p-poyConFHMAHc5z1kRiguzsMXM.roa File: p-poyConFHMAHc5z1kRiguzsMXM.roa (raw, json) Hash identifier: aCNKZGslXAbUi6slVXdlWv2S87H5WeJi7wbZYBs/3X4= Subject key identifier: A7:EA:68:C8:2A:27:14:73:00:1D:CE:73:D6:44:62:82:EC:EC:31:73 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0CED Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/p-poyConFHMAHc5z1kRiguzsMXM.roa Signing time: Mon 26 Aug 2024 05:12:50 +0000 ROA not before: Mon 26 Aug 2024 05:12:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.56.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3309 (0xced) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 26 05:12:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A7EA68C82A271473001DCE73D6446282ECEC3173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:18:fb:85:ba:a8:ae:26:bc:db:10:55:a9:a8: 85:9c:d0:19:db:13:b9:f9:81:17:18:fd:54:95:5d: 65:b3:72:7c:19:1a:f9:30:ec:49:fb:15:42:98:b5: f1:50:40:c9:a9:14:01:01:49:38:76:c5:49:7d:54: 96:1b:67:b2:4c:c7:90:03:82:eb:bc:77:e1:f5:0f: 18:2b:f2:ca:dd:d2:fc:1f:bf:55:5f:cb:4e:91:a4: 29:fc:8e:28:f6:49:3a:d9:6c:92:48:0c:bb:d0:0b: 46:6e:a2:ba:f9:56:34:e4:c6:03:36:4e:13:07:76: f9:b9:85:71:ed:07:46:fb:c7:54:da:6e:58:69:24: e5:dc:26:fe:97:e8:47:02:dc:19:7f:1c:be:04:e9: 09:be:63:b0:8c:c9:fe:9d:f8:d0:1a:2e:b8:bd:7b: ff:02:22:6b:93:db:94:3f:bd:8f:4a:d5:69:32:79: 41:f4:df:29:b4:d1:78:a0:50:8c:14:9b:99:7f:51: a7:ad:aa:b6:db:5e:b8:e6:80:f1:7d:9d:a8:5f:01: 12:72:d9:00:a8:4d:ac:be:31:a4:e3:2e:d9:2c:be: e3:0d:bd:84:f4:7d:cc:9f:fc:4b:e0:bf:3d:23:5e: ed:d4:68:d3:96:b4:e2:0e:51:69:df:e5:6d:7c:51: 13:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:EA:68:C8:2A:27:14:73:00:1D:CE:73:D6:44:62:82:EC:EC:31:73 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/p-poyConFHMAHc5z1kRiguzsMXM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.88.0/21 Signature Algorithm: sha256WithRSAEncryption 7d:eb:8e:0c:11:0c:5c:d2:0f:7b:35:e5:fe:df:83:21:ca:b8: 4a:50:07:61:f7:bd:59:d2:ac:a1:77:8c:29:69:a3:d6:4d:2d: 14:21:1d:1e:d1:1c:eb:79:a2:df:67:88:2c:c6:87:16:80:7b: 2f:a2:95:5a:9b:b1:40:d4:75:b0:01:ae:d6:72:a8:4a:4c:63: 31:fd:20:ae:f3:75:c7:6a:48:83:a8:38:d3:1b:32:61:09:35: 9e:e9:f2:59:a0:4b:f9:55:0e:fc:df:ef:98:2d:50:06:0b:e0: 43:0e:8e:86:d6:bc:95:38:b9:1a:61:7e:5c:6f:7d:5a:ae:0d: e7:84:fd:4d:d2:ad:bd:13:18:95:f4:5f:00:c5:5c:aa:2b:d9: 87:4e:98:b7:f0:18:73:42:3c:a9:a0:bc:06:31:25:21:29:34: b0:61:9a:53:f6:50:de:8c:80:c3:90:33:ca:28:ea:da:72:cc: 4d:24:47:64:28:6c:a0:03:b9:b8:a1:9f:29:f6:4d:3b:72:9a: 0f:85:af:7b:50:2c:b7:42:a1:e8:e6:14:ea:4b:4b:c8:67:2d: 64:ec:57:55:65:dc:26:29:e0:85:6d:1e:19:ba:e6:5f:05:47: 4c:30:e1:40:91:1d:39:c9:4a:75:c1:a0:69:87:26:28:6d:b4: fd:f5:50:4b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDO0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNDA4MjYw NTEyNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3RUE2OEM4MkEyNzE0 NzMwMDFEQ0U3M0Q2NDQ2MjgyRUNFQzMxNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsGPuFuqiuJrzbEFWpqIWc0BnbE7n5gRcY/VSVXWWzcnwZGvkw 7En7FUKYtfFQQMmpFAEBSTh2xUl9VJYbZ7JMx5ADguu8d+H1Dxgr8srd0vwfv1Vf y06RpCn8jij2STrZbJJIDLvQC0Zuorr5VjTkxgM2ThMHdvm5hXHtB0b7x1Tablhp JOXcJv6X6EcC3Bl/HL4E6Qm+Y7CMyf6d+NAaLri9e/8CImuT25Q/vY9K1WkyeUH0 3ym00XigUIwUm5l/UaetqrbbXrjmgPF9nahfARJy2QCoTay+MaTjLtksvuMNvYT0 fcyf/Evgvz0jXu3UaNOWtOIOUWnf5W18URObAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUp+poyConFHMAHc5z1kRiguzsMXMwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL3AtcG95Q29uRkhNQUhjNXox a1JpZ3V6c01YTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OFgwDQYJKoZIhvcNAQELBQADggEBAH3rjgwRDFzSD3s15f7fgyHKuEpQB2H3vVnS rKF3jClpo9ZNLRQhHR7RHOt5ot9niCzGhxaAey+ilVqbsUDUdbABrtZyqEpMYzH9 IK7zdcdqSIOoONMbMmEJNZ7p8lmgS/lVDvzf75gtUAYL4EMOjobWvJU4uRphflxv fVquDeeE/U3Srb0TGJX0XwDFXKor2YdOmLfwGHNCPKmgvAYxJSEpNLBhmlP2UN6M gMOQM8oo6tpyzE0kR2QobKADubihnyn2TTtymg+Fr3tQLLdCoejmFOpLS8hnLWTs V1Vl3CYp4IVtHhm65l8FR0ww4UCRHTnJSnXBoGmHJihttP31UEs= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org