$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/rxkDFMc36J4fze8DlHIMLyTpWdk.roa File: rxkDFMc36J4fze8DlHIMLyTpWdk.roa (raw, json) Hash identifier: DM5bTRALdnZKVye42BSK0X8HBdH4wKJmS64JM86xQsM= Subject key identifier: AF:19:03:14:C7:37:E8:9E:1F:CD:EF:03:94:72:0C:2F:24:E9:59:D9 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D8A Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/rxkDFMc36J4fze8DlHIMLyTpWdk.roa Signing time: Mon 10 Feb 2025 13:50:06 +0000 ROA not before: Mon 10 Feb 2025 13:50:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.56.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 06:19:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3466 (0xd8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AF190314C737E89E1FCDEF0394720C2F24E959D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:63:62:dd:5e:11:80:f0:4c:a4:b6:67:cf: 3a:22:bf:c3:77:9b:83:bb:18:db:f1:1a:a3:72:3e: bc:18:c9:e2:f0:f7:0a:22:95:e8:e2:85:1b:ad:3e: ca:e7:ac:33:9b:15:5d:dd:be:b7:77:da:47:50:c5: d2:f5:70:6b:50:b1:2b:1e:4c:9b:e2:af:d0:8c:8f: 09:92:34:a2:1a:e6:99:7c:32:68:27:17:b8:9e:2b: 57:fc:bb:63:f8:d6:b7:2e:50:c3:06:9b:94:72:99: 95:41:57:69:e8:da:13:d4:75:db:45:d6:50:71:6b: cd:d8:0b:21:21:6b:b2:45:b2:79:59:c1:43:5a:e7: b3:56:c8:b4:b1:1a:78:9c:86:d5:78:1f:a5:61:12: 23:6b:5c:7b:bb:5d:01:15:58:36:5f:4a:55:5d:6f: 84:b8:9f:10:54:a2:16:72:d8:bf:ec:0a:07:dd:5c: 09:0c:a6:ad:30:6f:a5:58:e6:08:89:ea:bc:34:a0: 89:8a:04:ec:e9:5d:dd:c7:3e:ab:dc:2e:e6:e7:a4: eb:ee:3d:d9:1d:07:e1:7a:86:24:d3:d5:f5:6f:ff: c6:3d:5e:63:dd:37:94:21:ed:4f:62:e1:d5:36:b3: a1:bf:4a:2a:9f:a0:4e:c8:14:ab:35:cf:67:79:0b: 10:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:19:03:14:C7:37:E8:9E:1F:CD:EF:03:94:72:0C:2F:24:E9:59:D9 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/rxkDFMc36J4fze8DlHIMLyTpWdk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.65.0/24 Signature Algorithm: sha256WithRSAEncryption 75:c5:90:06:b5:0d:7d:9a:c0:00:2a:40:cc:6a:48:67:04:f0: d0:5f:b6:8c:7b:b5:2f:2e:7c:c2:84:a5:44:f3:e1:55:a6:63: f4:11:cc:66:34:83:ec:02:63:b5:ad:68:df:37:68:6d:58:83: 43:de:06:0c:c8:e8:0c:74:a3:5b:d6:b4:09:72:ea:d1:fe:86: 94:2f:4f:56:7d:ed:f7:4a:c4:ab:71:27:8d:24:52:8d:3d:43: 93:4c:a5:19:d5:5b:1d:e6:c4:32:56:1c:1c:03:c9:ab:f4:d6: bc:a1:40:45:bc:14:b4:ae:70:d3:3b:bf:7e:59:2e:6f:4d:e1: 88:7b:38:6b:8b:72:67:3b:67:44:17:89:1a:a8:31:35:4c:a0: 2a:b6:69:c3:2e:d7:71:fe:1b:1f:27:a6:24:bc:42:d6:42:68: 5b:f5:98:2c:4a:bd:53:dc:5f:10:b0:cc:93:78:c2:b5:26:5a: f6:d2:10:7b:6c:47:46:a7:26:42:3c:59:d2:e0:59:57:84:56: ef:63:1a:61:fe:2a:31:ea:a2:0f:37:d1:cd:8e:7b:1c:fa:3c: 59:a8:c8:e4:84:d1:3c:36:8e:60:64:9e:de:f0:af:ea:9e:eb: 7c:84:8d:65:27:19:13:12:af:3a:3f:20:0c:a5:47:f5:74:ba: 7b:6f:7b:4c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDYowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFGMTkwMzE0QzczN0U4 OUUxRkNERUYwMzk0NzIwQzJGMjRFOTU5RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4MWNi3V4RgPBMpLZnzzoiv8N3m4O7GNvxGqNyPrwYyeLw9woi lejihRutPsrnrDObFV3dvrd32kdQxdL1cGtQsSseTJvir9CMjwmSNKIa5pl8Mmgn F7ieK1f8u2P41rcuUMMGm5RymZVBV2no2hPUddtF1lBxa83YCyEha7JFsnlZwUNa 57NWyLSxGnichtV4H6VhEiNrXHu7XQEVWDZfSlVdb4S4nxBUohZy2L/sCgfdXAkM pq0wb6VY5giJ6rw0oImKBOzpXd3HPqvcLubnpOvuPdkdB+F6hiTT1fVv/8Y9XmPd N5Qh7U9i4dU2s6G/SiqfoE7IFKs1z2d5CxCFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrxkDFMc36J4fze8DlHIMLyTpWdkwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL3J4a0RGTWMzNko0ZnplOERs SElNTHlUcFdkay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9 OEEwDQYJKoZIhvcNAQELBQADggEBAHXFkAa1DX2awAAqQMxqSGcE8NBftox7tS8u fMKEpUTz4VWmY/QRzGY0g+wCY7WtaN83aG1Yg0PeBgzI6Ax0o1vWtAly6tH+hpQv T1Z97fdKxKtxJ40kUo09Q5NMpRnVWx3mxDJWHBwDyav01ryhQEW8FLSucNM7v35Z Lm9N4Yh7OGuLcmc7Z0QXiRqoMTVMoCq2acMu13H+Gx8npiS8QtZCaFv1mCxKvVPc XxCwzJN4wrUmWvbSEHtsR0anJkI8WdLgWVeEVu9jGmH+KjHqog830c2Oexz6PFmo yOSE0Tw2jmBknt7wr+qe63yEjWUnGRMSrzo/IAylR/V0untve0w= -----END CERTIFICATE-----Generated at Sun Apr 27 04:10:56 2025 by rpki-client