$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/sESwSRR0ZTMxuj4BDgpxFsMILGk.roa File: sESwSRR0ZTMxuj4BDgpxFsMILGk.roa (raw, json) Hash identifier: sItv4JHVZq+/yJWIfGQ3VGeMM1xLCmLl2m4zz1MG0yM= Subject key identifier: B0:44:B0:49:14:74:65:33:31:BA:3E:01:0E:0A:71:16:C3:08:2C:69 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BBE Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/sESwSRR0ZTMxuj4BDgpxFsMILGk.roa Signing time: Fri 01 Sep 2023 08:36:41 +0000 ROA not before: Fri 01 Sep 2023 08:36:41 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 61.56.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3006 (0xbbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:41 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B044B0491474653331BA3E010E0A7116C3082C69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:57:4e:8b:f5:b0:44:af:cc:70:47:76:ca:05: ae:ed:39:86:15:e8:21:66:6e:8b:97:71:78:ed:d6: a7:45:70:a8:c6:73:a7:47:20:fd:f4:d8:e9:fa:c6: 5d:9a:f9:a4:48:7d:cd:cb:f9:ce:84:b1:d8:db:93: b1:57:31:a8:90:e0:3d:00:dc:5e:80:4e:c4:c6:ff: 46:83:0b:70:58:f7:86:44:d7:e8:f9:77:07:c4:8c: ac:14:df:17:eb:fb:00:c9:1e:84:96:d7:0b:21:89: 89:b5:dc:37:67:4b:aa:52:5b:64:ff:d5:ed:22:4a: d2:79:6a:4e:b4:e7:a8:e1:4a:5c:cc:ca:60:36:11: dd:0e:9f:91:2d:68:86:69:3f:c3:29:f8:cc:4c:17: 0a:3b:e7:9d:83:46:f3:c3:13:2b:5d:b9:f0:f1:3c: 1c:b7:e0:a9:17:36:7c:63:7d:d9:b8:b6:af:96:13: 64:35:47:8f:2c:26:73:38:c6:b0:3f:26:5c:bd:67: 07:08:21:ad:bb:90:79:73:92:34:85:96:fd:75:e6: 99:15:4d:57:ae:5e:3d:23:48:3a:76:eb:ac:ef:dd: a1:a4:ec:79:01:bf:fb:d7:39:2d:af:02:38:84:be: 22:f4:c6:48:2a:d4:bc:db:34:22:cc:38:b5:b6:10: db:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:44:B0:49:14:74:65:33:31:BA:3E:01:0E:0A:71:16:C3:08:2C:69 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/sESwSRR0ZTMxuj4BDgpxFsMILGk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.64.0/20 Signature Algorithm: sha256WithRSAEncryption 43:58:c9:bc:f1:ef:f8:ce:ff:63:c2:12:78:70:7f:a4:79:e6: 95:30:cf:92:ab:92:52:8b:5d:2c:c6:f0:b5:d9:5f:b9:a4:18: 01:f3:b4:a6:53:48:94:91:08:68:8f:b4:f2:e6:15:10:ca:c0: bd:85:a8:91:d4:7d:66:b5:49:7c:43:8b:d0:a3:ce:c4:87:0d: 5e:09:33:9e:d4:35:83:fa:e2:f1:75:e9:d5:9d:3a:91:7b:00: 36:e0:0b:4d:f0:f4:fb:a2:15:b7:67:60:9d:9c:34:c8:32:45: ac:0d:df:d3:f5:a1:f7:a0:b3:a8:2f:0a:54:1c:dc:9b:ec:d3: 0a:99:02:ea:72:20:b7:73:43:d0:11:7f:4c:ed:ec:32:63:1d: bc:f1:89:7f:28:ab:56:fe:fc:89:b4:aa:6d:1b:ee:6a:23:e3: 9f:6b:0d:10:6e:87:b3:47:b8:e5:4f:bf:eb:10:ce:95:f9:c2: cb:24:4a:74:14:0d:ed:84:0e:f8:b4:42:ac:64:28:d6:8e:ca: 79:9f:72:e6:55:3d:72:87:8a:3f:8c:7a:5c:49:e5:57:bc:58: 5f:3a:d0:47:1b:67:fb:61:0a:3d:73:8c:85:d7:54:de:24:ab: 47:55:63:24:b5:cb:78:57:4b:b1:d3:9c:49:36:b5:53:a5:58: 86:3b:2e:35 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC74wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIwNDRCMDQ5MTQ3NDY1 MzMzMUJBM0UwMTBFMEE3MTE2QzMwODJDNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDV06L9bBEr8xwR3bKBa7tOYYV6CFmbouXcXjt1qdFcKjGc6dH IP302On6xl2a+aRIfc3L+c6Esdjbk7FXMaiQ4D0A3F6ATsTG/0aDC3BY94ZE1+j5 dwfEjKwU3xfr+wDJHoSW1wshiYm13DdnS6pSW2T/1e0iStJ5ak6056jhSlzMymA2 Ed0On5EtaIZpP8Mp+MxMFwo7552DRvPDEytdufDxPBy34KkXNnxjfdm4tq+WE2Q1 R48sJnM4xrA/Jly9ZwcIIa27kHlzkjSFlv115pkVTVeuXj0jSDp266zv3aGk7HkB v/vXOS2vAjiEviL0xkgq1LzbNCLMOLW2ENutAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUsESwSRR0ZTMxuj4BDgpxFsMILGkwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL3NFU3dTUlIwWlRNeHVqNEJE Z3B4RnNNSUxHay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OEAwDQYJKoZIhvcNAQELBQADggEBAENYybzx7/jO/2PCEnhwf6R55pUwz5KrklKL XSzG8LXZX7mkGAHztKZTSJSRCGiPtPLmFRDKwL2FqJHUfWa1SXxDi9CjzsSHDV4J M57UNYP64vF16dWdOpF7ADbgC03w9PuiFbdnYJ2cNMgyRawN39P1ofegs6gvClQc 3Jvs0wqZAupyILdzQ9ARf0zt7DJjHbzxiX8oq1b+/Im0qm0b7moj459rDRBuh7NH uOVPv+sQzpX5wsskSnQUDe2EDvi0QqxkKNaOynmfcuZVPXKHij+MelxJ5Ve8WF86 0EcbZ/thCj1zjIXXVN4kq0dVYyS1y3hXS7HTnEk2tVOlWIY7LjU= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org