$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/zGn9dPnybRTCRwECWGOs3aL4g8Y.roa File: zGn9dPnybRTCRwECWGOs3aL4g8Y.roa (raw, json) Hash identifier: r4Ra/qg1X70juEL0p5N1wudS5CDK1vU66T3eybFpjAE= Subject key identifier: CC:69:FD:74:F9:F2:6D:14:C2:47:01:02:58:63:AC:DD:A2:F8:83:C6 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0BC0 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/zGn9dPnybRTCRwECWGOs3aL4g8Y.roa Signing time: Fri 01 Sep 2023 08:36:41 +0000 ROA not before: Fri 01 Sep 2023 08:36:41 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9244 IP address blocks: 61.56.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 19:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3008 (0xbc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Sep 1 08:36:41 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CC69FD74F9F26D14C24701025863ACDDA2F883C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:24:65:1b:3f:ce:ab:de:46:88:47:51:c6:56: a7:78:25:54:bf:00:22:19:73:22:23:81:31:d8:f6: 51:18:d6:08:bb:78:e4:7c:cb:2f:79:65:b8:1e:32: e7:03:1b:bc:95:df:d0:11:41:2e:9c:6f:d7:be:75: c8:b0:cd:7d:3c:0f:35:3a:dc:ce:f6:6f:c3:5d:5a: fe:9c:0c:0d:87:f0:ae:0f:6a:d1:4e:5b:7d:f9:d5: dc:8c:a5:38:c2:46:b5:b7:ef:8e:fa:df:db:cb:6d: f8:1b:cc:69:1b:e7:f9:ee:67:b8:49:e5:e1:cd:cb: 57:dc:69:f0:db:2f:24:48:e7:a8:be:9a:d9:42:65: 5a:c2:5c:f0:fe:f9:66:d8:39:59:f6:ca:72:37:a1: 50:1f:d2:43:93:22:b9:60:31:63:59:25:58:f9:56: c3:33:2a:c3:82:dc:9d:0e:35:2b:cf:ae:16:b0:84: 19:ed:8f:94:f5:13:6a:df:f6:78:cb:7c:db:0a:b7: 29:e4:05:35:64:49:9f:d3:8b:b4:5b:cc:fd:58:c8: cd:5a:b8:a7:93:f3:25:67:d1:04:59:94:26:a9:d1: 50:82:d0:ab:b6:c5:f4:db:a5:3e:e6:39:f7:5d:3f: df:a3:a2:f4:a3:81:6d:ce:d1:c3:65:86:02:c5:3d: af:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:69:FD:74:F9:F2:6D:14:C2:47:01:02:58:63:AC:DD:A2:F8:83:C6 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/zGn9dPnybRTCRwECWGOs3aL4g8Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.67.0/24 Signature Algorithm: sha256WithRSAEncryption 42:87:27:31:79:66:02:33:8b:be:0f:9a:a0:b5:54:c5:42:5a: 91:11:0e:e7:cf:38:b4:aa:94:1c:25:77:b7:0f:07:bf:77:ec: 74:ec:b4:a3:1a:d9:d5:57:8c:4f:b1:9a:17:bf:98:17:ca:61: da:59:1d:d8:e3:1c:07:b1:d3:ca:6a:1b:4d:b8:3d:bb:f9:b7: 89:aa:38:a5:c3:2b:cb:43:2e:70:1e:7b:94:40:a6:30:47:7d: 3b:f5:b6:2e:e9:48:3b:d6:1f:5b:25:fb:74:f2:6f:24:b0:b2: 12:b6:96:24:76:3c:21:3f:06:cd:4e:92:e5:c4:f9:35:68:fb: e7:0d:b2:cc:88:08:6d:53:5f:bd:87:74:60:b7:9f:05:f2:9f: 84:ef:ba:90:d2:79:d3:b5:73:ad:d7:4f:1d:50:51:dd:56:14: db:fb:ee:67:34:0b:8c:06:18:18:c3:00:55:36:33:25:ef:38: b4:16:b5:31:92:b7:cb:26:1c:45:08:84:17:e0:0e:ea:81:56: 21:28:a3:2a:91:c6:0b:bf:39:cb:d5:3a:26:b0:6b:08:a3:d6: 78:12:8a:ac:79:bb:a0:47:f9:51:f5:2e:94:e6:ad:2d:fe:6e: 57:dc:cd:33:3f:14:05:74:c4:50:a3:3a:88:e6:46:bc:b8:1e: e7:6f:aa:34 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC8AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw ODM2NDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENDNjlGRDc0RjlGMjZE MTRDMjQ3MDEwMjU4NjNBQ0REQTJGODgzQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkJGUbP86r3kaIR1HGVqd4JVS/ACIZcyIjgTHY9lEY1gi7eOR8 yy95ZbgeMucDG7yV39ARQS6cb9e+dciwzX08DzU63M72b8NdWv6cDA2H8K4PatFO W3351dyMpTjCRrW3747639vLbfgbzGkb5/nuZ7hJ5eHNy1fcafDbLyRI56i+mtlC ZVrCXPD++WbYOVn2ynI3oVAf0kOTIrlgMWNZJVj5VsMzKsOC3J0ONSvPrhawhBnt j5T1E2rf9njLfNsKtynkBTVkSZ/Ti7RbzP1YyM1auKeT8yVn0QRZlCap0VCC0Ku2 xfTbpT7mOfddP9+jovSjgW3O0cNlhgLFPa8HAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUzGn9dPnybRTCRwECWGOs3aL4g8YwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL3pHbjlkUG55YlJUQ1J3RUNX R09zM2FMNGc4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 OEMwDQYJKoZIhvcNAQELBQADggEBAEKHJzF5ZgIzi74PmqC1VMVCWpERDufPOLSq lBwld7cPB7937HTstKMa2dVXjE+xmhe/mBfKYdpZHdjjHAex08pqG024Pbv5t4mq OKXDK8tDLnAee5RApjBHfTv1ti7pSDvWH1sl+3TybySwshK2liR2PCE/Bs1OkuXE +TVo++cNssyICG1TX72HdGC3nwXyn4TvupDSedO1c63XTx1QUd1WFNv77mc0C4wG GBjDAFU2MyXvOLQWtTGSt8smHEUIhBfgDuqBViEooyqRxgu/OcvVOiawawij1ngS iqx5u6BH+VH1LpTmrS3+blfczTM/FAV0xFCjOojmRry4HudvqjQ= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:41 2024 by rpki-client on console-ams.rpki-client.org