$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/wVa92PLNJNL2pWwO4lH-hVH6rwk.roa File: wVa92PLNJNL2pWwO4lH-hVH6rwk.roa (raw, json) Hash identifier: JVslYdL4t8+fzcqTMHWGtTru4C+KdooYlAsLr8CDGE0= Subject key identifier: C1:56:BD:D8:F2:CD:24:D2:F6:A5:6C:0E:E2:51:FE:85:51:FA:AF:09 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D7D Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/wVa92PLNJNL2pWwO4lH-hVH6rwk.roa Signing time: Mon 10 Feb 2025 13:50:03 +0000 ROA not before: Mon 10 Feb 2025 13:50:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.56.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 06:19:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3453 (0xd7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C156BDD8F2CD24D2F6A56C0EE251FE8551FAAF09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3c:a0:8e:9f:f5:fb:3a:cc:e6:ec:fa:ae:b9: c6:0b:e4:fe:ea:24:97:99:5a:e9:58:d3:60:14:52: 7b:b2:2d:ee:b5:18:68:39:0e:af:a8:74:f6:09:05: ef:89:13:2c:e1:b6:18:aa:7f:c3:01:1c:4a:7d:f0: 88:81:fa:08:8f:c6:83:ed:63:93:19:ab:75:45:3d: 4f:17:e1:7c:a1:e0:e6:2a:43:cf:5a:aa:b4:ab:52: 1d:66:fb:78:21:88:1b:70:dd:a8:4d:5c:6f:4b:65: 6b:4f:84:6a:60:b7:fc:4f:f0:fe:1d:56:82:f0:c7: 08:dc:ed:13:e4:6a:64:00:e8:f2:fd:9a:0c:1a:1c: 9a:0e:1a:d4:ca:ad:a0:62:c4:ea:5c:1e:8b:a4:34: c4:1c:df:eb:82:c2:6e:0b:4c:81:f8:a5:56:f8:91: b5:91:b6:dc:e8:9b:64:ec:1b:84:fc:93:8d:c3:0e: 63:51:6c:13:11:df:6b:5b:6b:0d:9a:17:ce:8d:3a: c2:25:02:47:b6:6b:2e:02:be:36:7f:07:b1:5c:e4: 6c:34:70:2e:aa:a0:62:be:5f:ed:92:2b:ba:22:fe: 0a:80:3e:78:6d:96:5c:be:03:ae:49:2b:58:c3:03: d3:4b:17:6a:ae:f8:47:0b:c3:8c:3a:35:d2:23:55: e0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:56:BD:D8:F2:CD:24:D2:F6:A5:6C:0E:E2:51:FE:85:51:FA:AF:09 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/wVa92PLNJNL2pWwO4lH-hVH6rwk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.64.0/20 Signature Algorithm: sha256WithRSAEncryption 0e:74:df:f7:7a:ef:a7:04:a2:0a:c2:b4:2b:68:17:da:4f:ca: a4:71:de:7c:72:8d:0a:4f:7f:e9:cf:08:95:9e:d7:6e:7d:a5: 90:fe:a3:d2:7b:2a:2a:45:d3:44:4d:30:50:46:79:58:89:6e: 3c:ec:09:49:98:08:88:20:dd:56:55:08:03:d5:20:a3:72:09: d4:bd:24:1d:c9:70:02:4f:b2:fc:0e:94:a5:6b:d2:05:5d:11: de:de:69:b4:16:14:4f:0d:2c:72:5a:0f:43:c1:0f:ba:1e:57: 7c:cb:1b:75:23:60:29:5a:80:ca:3a:cb:6f:d0:18:39:59:1e: bb:9d:30:a2:ab:0c:87:88:87:ce:39:06:41:c8:7b:d3:0e:69: 65:ef:5e:b2:4e:9d:a0:22:85:83:f2:eb:d0:7b:d1:99:ec:e4: dc:da:83:8c:e8:ea:ad:a0:da:08:c0:a1:66:bd:c1:dd:6e:ef: db:03:3f:10:27:1d:9d:a9:c5:c0:e2:86:da:58:fe:ec:ca:79: 71:f9:f9:66:40:b1:ef:c9:0d:53:33:fd:8a:63:03:ad:ed:c5: 40:85:05:5f:5f:9b:b4:a0:9d:39:51:81:a9:01:fd:8e:63:5e: bd:72:52:5c:da:80:da:3a:43:64:3c:96:72:a8:cb:9d:41:13: 94:e0:06:f6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDX0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMxNTZCREQ4RjJDRDI0 RDJGNkE1NkMwRUUyNTFGRTg1NTFGQUFGMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWPKCOn/X7Oszm7PquucYL5P7qJJeZWulY02AUUnuyLe61GGg5 Dq+odPYJBe+JEyzhthiqf8MBHEp98IiB+giPxoPtY5MZq3VFPU8X4Xyh4OYqQ89a qrSrUh1m+3ghiBtw3ahNXG9LZWtPhGpgt/xP8P4dVoLwxwjc7RPkamQA6PL9mgwa HJoOGtTKraBixOpcHoukNMQc3+uCwm4LTIH4pVb4kbWRttzom2TsG4T8k43DDmNR bBMR32tbaw2aF86NOsIlAke2ay4CvjZ/B7Fc5Gw0cC6qoGK+X+2SK7oi/gqAPnht lly+A65JK1jDA9NLF2qu+EcLw4w6NdIjVeD3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwVa92PLNJNL2pWwO4lH+hVH6rwkwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL3dWYTkyUExOSk5MMnBXd080 bEgtaFZINnJ3ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OEAwDQYJKoZIhvcNAQELBQADggEBAA503/d676cEogrCtCtoF9pPyqRx3nxyjQpP f+nPCJWe1259pZD+o9J7KipF00RNMFBGeViJbjzsCUmYCIgg3VZVCAPVIKNyCdS9 JB3JcAJPsvwOlKVr0gVdEd7eabQWFE8NLHJaD0PBD7oeV3zLG3UjYClagMo6y2/Q GDlZHrudMKKrDIeIh845BkHIe9MOaWXvXrJOnaAihYPy69B70Zns5Nzag4zo6q2g 2gjAoWa9wd1u79sDPxAnHZ2pxcDihtpY/uzKeXH5+WZAse/JDVMz/YpjA63txUCF BV9fm7SgnTlRgakB/Y5jXr1yUlzagNo6Q2Q8lnKoy51BE5TgBvY= -----END CERTIFICATE-----Generated at Sun Apr 27 05:00:14 2025 by rpki-client