$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/PyXS-QDFEFy58BgpN0JdQRYOIcc.roa File: PyXS-QDFEFy58BgpN0JdQRYOIcc.roa (raw, json) Hash identifier: 55vJQfYoo1ES3HdonDNbYIrMZu0O+w7NDiXEa6G0Yeo= Subject key identifier: 3F:25:D2:F9:00:C5:10:5C:B9:F0:18:29:37:42:5D:41:16:0E:21:C7 Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 056D Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/PyXS-QDFEFy58BgpN0JdQRYOIcc.roa Signing time: Fri 01 Sep 2023 09:00:33 +0000 ROA not before: Fri 01 Sep 2023 09:00:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 134522 IP address blocks: 2401:95c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1389 (0x56d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Sep 1 09:00:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=3F25D2F900C5105CB9F0182937425D41160E21C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7d:13:c1:65:4b:fa:7b:6d:05:08:25:fa:50: b5:d0:69:e0:50:5f:1b:99:f7:25:cc:44:e4:04:51: 80:fd:5a:2e:64:13:6e:46:f2:8b:32:d7:4b:e9:2f: ba:fd:33:7c:98:b2:59:6d:96:a5:21:91:1b:34:2a: f3:4a:1e:2a:76:0b:c9:28:91:f5:d9:b4:f6:9e:ed: 92:70:d7:79:e6:29:fe:61:25:bc:3f:f5:13:3a:21: c7:7e:c7:1c:24:0a:f8:6c:d1:c5:14:bd:c9:8e:b0: 67:86:92:1a:1b:bd:63:b2:51:93:d2:27:b8:69:78: ad:20:59:32:4b:ff:77:32:ff:a1:ab:63:69:ea:09: 2d:8d:ac:8a:bd:27:da:14:60:20:8c:70:89:98:8a: 87:9c:bc:14:88:1b:52:70:9b:60:16:14:6d:cf:04: 98:27:e2:14:cc:26:60:27:6c:f2:d4:e3:95:7b:54: ca:2b:59:04:01:c2:46:e1:db:0e:cb:d0:20:38:21: 5b:7d:a6:c0:a5:f8:1c:4a:dd:1e:ae:24:8b:ff:51: 91:e2:25:ca:dd:74:59:32:d3:76:58:fe:3a:43:09: e6:c9:08:12:36:5e:66:a7:75:44:a4:ac:95:7d:b6: 0b:96:18:4a:17:83:50:c4:aa:0a:f1:c4:39:78:12: 89:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:25:D2:F9:00:C5:10:5C:B9:F0:18:29:37:42:5D:41:16:0E:21:C7 X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/PyXS-QDFEFy58BgpN0JdQRYOIcc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:95c0::/32 Signature Algorithm: sha256WithRSAEncryption 19:74:5b:0f:9f:15:ff:bc:47:c7:62:aa:d3:42:ec:64:21:03: 70:d9:63:53:0a:e4:a7:51:45:2f:98:dd:b3:aa:e1:ee:83:95: 6b:7a:53:11:4e:95:d4:a0:ff:9f:d6:0e:d6:48:21:dc:e9:c2: 22:ec:78:a6:10:61:96:3c:37:5a:20:82:1d:0e:c1:0e:ba:f1: ba:6e:9e:96:e6:02:c7:93:d5:a1:40:ad:e5:9c:67:3e:da:12: 08:81:83:07:88:f4:e5:3a:8a:f3:63:66:7c:bc:fb:be:5d:4e: e7:f0:16:b8:ef:15:42:a6:c9:ab:10:8d:33:f3:af:27:e9:80: 32:72:e8:48:88:af:30:40:37:cb:31:f3:3f:55:fb:02:7f:d0: af:48:0a:c4:e9:94:e0:55:a8:13:94:10:04:76:66:92:11:97: 4e:d8:7d:43:d2:90:bf:44:94:fc:10:4b:de:87:3a:12:0d:1e: a7:87:93:3e:13:63:48:09:f0:93:72:1b:3c:93:88:66:81:73: ed:fc:3e:b9:b9:e3:b9:8f:24:ca:a2:8b:22:0c:23:a2:da:ff: 40:38:e0:4f:58:3e:94:2d:8a:d4:26:ba:df:a8:b4:d3:eb:b7: 97:40:a2:fc:bb:2e:b5:b9:70:8c:22:67:72:02:63:df:ea:7e: 8f:e9:2c:4a -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yMzA5MDEw OTAwMzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNGMjVEMkY5MDBDNTEw NUNCOUYwMTgyOTM3NDI1RDQxMTYwRTIxQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChfRPBZUv6e20FCCX6ULXQaeBQXxuZ9yXMROQEUYD9Wi5kE25G 8osy10vpL7r9M3yYslltlqUhkRs0KvNKHip2C8kokfXZtPae7ZJw13nmKf5hJbw/ 9RM6Icd+xxwkCvhs0cUUvcmOsGeGkhobvWOyUZPSJ7hpeK0gWTJL/3cy/6GrY2nq CS2NrIq9J9oUYCCMcImYioecvBSIG1Jwm2AWFG3PBJgn4hTMJmAnbPLU45V7VMor WQQBwkbh2w7L0CA4IVt9psCl+BxK3R6uJIv/UZHiJcrddFky03ZY/jpDCebJCBI2 XmandUSkrJV9tguWGEoXg1DEqgrxxDl4EolRAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUPyXS+QDFEFy58BgpN0JdQRYOIccwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL1B5WFMtUURGRUZ5NThCZ3BO MEpkUVJZT0ljYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk AZXAMA0GCSqGSIb3DQEBCwUAA4IBAQAZdFsPnxX/vEfHYqrTQuxkIQNw2WNTCuSn UUUvmN2zquHug5VrelMRTpXUoP+f1g7WSCHc6cIi7HimEGGWPDdaIIIdDsEOuvG6 bp6W5gLHk9WhQK3lnGc+2hIIgYMHiPTlOorzY2Z8vPu+XU7n8Ba47xVCpsmrEI0z 868n6YAycuhIiK8wQDfLMfM/VfsCf9CvSArE6ZTgVagTlBAEdmaSEZdO2H1D0pC/ RJT8EEvehzoSDR6nh5M+E2NICfCTchs8k4hmgXPt/D65ueO5jyTKoosiDCOi2v9A OOBPWD6ULYrUJrrfqLTT67eXQKL8uy61uXCMImdyAmPf6n6P6SxK -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:45 2024 by rpki-client on console-ams.rpki-client.org