$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/pDg1yuo567bfJRQBvtAnVlZ8GOM.roa File: pDg1yuo567bfJRQBvtAnVlZ8GOM.roa (raw, json) Hash identifier: gwdh55R/wDEAggm2bDpxARN2j3HhOmKwPmVQ5JXgc08= Subject key identifier: A4:38:35:CA:EA:39:EB:B6:DF:25:14:01:BE:D0:27:56:56:7C:18:E3 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0CF6 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/pDg1yuo567bfJRQBvtAnVlZ8GOM.roa Signing time: Mon 26 Aug 2024 05:12:53 +0000 ROA not before: Mon 26 Aug 2024 05:12:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 113.21.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3318 (0xcf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 26 05:12:53 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A43835CAEA39EBB6DF251401BED02756567C18E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:03:4e:6d:e8:ea:9e:b7:d3:34:8d:c0:d6:d0: 8f:9d:8b:8b:d2:e0:6b:7b:a7:ba:54:3c:db:ae:12: 2c:a7:02:ee:2b:71:22:4b:bb:31:ae:5c:dc:74:8c: f9:01:90:08:44:ae:3b:0e:3a:ad:1f:4d:3e:ed:54: 20:67:08:d6:f2:1b:37:1e:08:03:3a:5d:ac:3c:f1: 7e:5c:5d:69:ba:d1:6b:48:36:c8:31:0c:a9:92:1f: aa:cb:b9:69:fd:18:dc:2e:a9:45:b1:5d:eb:42:d4: b1:41:d0:5f:51:49:5a:37:ba:62:77:75:81:89:c8: 22:3f:cf:03:4e:4f:d4:b5:87:76:3e:32:40:3b:de: 7e:28:9d:d2:fa:7c:36:06:c9:b5:93:8b:41:5b:0e: 39:b5:63:1e:4f:dc:a4:1e:ed:dc:eb:9f:b9:cc:46: c8:71:dd:14:02:bb:5b:85:13:ee:5a:5e:e7:3b:3e: 2b:e7:28:5d:78:27:b5:25:a6:dd:2a:bd:eb:31:d2: 59:03:b9:a2:49:a9:82:e1:3c:89:31:e0:3b:57:c9: 8f:0f:86:f5:52:cb:28:1c:69:1f:a4:53:1f:76:da: fa:2b:ac:8a:69:40:f8:d7:2e:e9:f8:d6:52:0a:3f: ae:1e:e2:4b:63:e7:c1:c1:bd:bd:5b:82:44:60:d0: cb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:38:35:CA:EA:39:EB:B6:DF:25:14:01:BE:D0:27:56:56:7C:18:E3 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/pDg1yuo567bfJRQBvtAnVlZ8GOM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.173.0/24 Signature Algorithm: sha256WithRSAEncryption af:9d:7c:07:84:04:e3:51:99:f5:18:d7:6a:e4:ab:12:6d:8c: 0c:2e:1c:84:97:57:81:01:d2:ff:40:2e:2b:fa:df:ae:61:9f: c1:96:a1:cf:e3:3d:65:c0:15:69:1b:cc:1f:73:ec:03:11:20: d7:5b:ce:41:cf:5e:9d:f7:47:49:1c:29:c8:35:88:13:40:b3: 70:e6:e7:17:f5:23:bc:4b:d0:03:b9:bb:f1:ea:c0:94:9e:b6: 0e:ce:42:4e:38:24:23:6a:f0:d6:14:ef:6f:71:ff:92:2f:0d: 4e:a9:32:2d:92:41:ef:11:2d:4e:74:ab:35:e3:96:da:b7:12: 31:c8:54:9f:f2:80:dd:a2:aa:ec:34:c0:90:f5:da:0c:3e:a7: 57:c4:d1:8b:40:56:c5:1d:70:5c:3a:68:41:9c:fb:98:fa:dd: dc:9a:3a:7b:65:98:f4:7f:40:61:40:94:df:df:ae:c6:55:3c: 0a:fa:20:90:0f:ed:dc:e2:40:4d:30:91:7f:b2:4c:e7:45:e3: 6a:50:0b:a5:2d:94:d6:0a:77:89:47:b8:4a:75:db:cc:b3:c9: c4:9c:4e:3f:02:bf:71:35:da:6f:46:90:13:ca:17:d8:23:e2: c3:a7:3c:d8:1e:f8:04:29:a5:af:15:58:c7:36:27:52:1f:82: 58:e8:c3:d2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDPYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNDA4MjYw NTEyNTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE0MzgzNUNBRUEzOUVC QjZERjI1MTQwMUJFRDAyNzU2NTY3QzE4RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0A05t6Oqet9M0jcDW0I+di4vS4Gt7p7pUPNuuEiynAu4rcSJL uzGuXNx0jPkBkAhErjsOOq0fTT7tVCBnCNbyGzceCAM6Xaw88X5cXWm60WtINsgx DKmSH6rLuWn9GNwuqUWxXetC1LFB0F9RSVo3umJ3dYGJyCI/zwNOT9S1h3Y+MkA7 3n4ondL6fDYGybWTi0FbDjm1Yx5P3KQe7dzrn7nMRshx3RQCu1uFE+5aXuc7Pivn KF14J7Ulpt0qvesx0lkDuaJJqYLhPIkx4DtXyY8PhvVSyygcaR+kUx922vorrIpp QPjXLun41lIKP64e4ktj58HBvb1bgkRg0Mu7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUpDg1yuo567bfJRQBvtAnVlZ8GOMwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL3BEZzF5dW81NjdiZkpSUUJ2 dEFuVmxaOEdPTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABx Fa0wDQYJKoZIhvcNAQELBQADggEBAK+dfAeEBONRmfUY12rkqxJtjAwuHISXV4EB 0v9ALiv6365hn8GWoc/jPWXAFWkbzB9z7AMRINdbzkHPXp33R0kcKcg1iBNAs3Dm 5xf1I7xL0AO5u/HqwJSetg7OQk44JCNq8NYU729x/5IvDU6pMi2SQe8RLU50qzXj ltq3EjHIVJ/ygN2iquw0wJD12gw+p1fE0YtAVsUdcFw6aEGc+5j63dyaOntlmPR/ QGFAlN/frsZVPAr6IJAP7dziQE0wkX+yTOdF42pQC6UtlNYKd4lHuEp128yzycSc Tj8Cv3E12m9GkBPKF9gj4sOnPNge+AQppa8VWMc2J1Ifgljow9I= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:36 2024 by rpki-client on console-fra.rpki-client.org