$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/1QwwJrduwzAJiVGS_u7ZkRHlcXM.roa File: 1QwwJrduwzAJiVGS_u7ZkRHlcXM.roa (raw, json) Hash identifier: Bc2SQORI3mmLWAAigJgR3Jn6Ur5eYBAYMHI5jDKa2Zc= Subject key identifier: D5:0C:30:26:B7:6E:C3:30:09:89:51:92:FE:EE:D9:91:11:E5:71:73 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D76 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/1QwwJrduwzAJiVGS_u7ZkRHlcXM.roa Signing time: Mon 10 Feb 2025 13:50:02 +0000 ROA not before: Mon 10 Feb 2025 13:50:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 2403:ee00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3446 (0xd76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D50C3026B76EC33009895192FEEED99111E57173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d9:03:d3:32:c0:5b:da:1c:e5:3d:d0:a1:c0: 9d:be:ab:ac:94:1b:90:35:07:07:f8:8e:6f:90:98: a7:04:3c:27:4e:a0:23:3c:14:10:f1:9e:cf:39:6f: 65:96:11:b0:ac:49:4d:5e:8a:ca:03:d3:e8:29:69: 9d:54:f2:80:d7:02:9f:fb:09:05:03:fb:a4:cd:bc: da:fc:24:54:05:2f:4f:90:df:7c:47:7d:f6:b2:a9: e6:43:ef:46:c6:94:fb:f8:78:85:0c:18:62:69:63: 34:08:ce:52:76:1e:71:2b:78:50:66:27:48:aa:37: c1:dc:f2:e7:3b:d6:16:b5:2c:23:94:c3:a9:34:06: 2f:7a:a6:62:d3:95:c3:82:aa:f5:f1:68:32:2b:81: 66:3d:72:f5:41:30:d0:5d:01:b6:40:32:cd:b9:7c: e7:6b:22:78:13:f9:b9:8b:60:f3:c8:09:5c:ce:b1: 9b:5e:c8:86:ab:77:37:16:ea:66:7f:eb:47:b7:07: fa:ca:2a:40:be:5c:3f:18:76:f4:54:75:0b:2c:87: ab:af:5d:33:39:d1:b8:ee:8c:1b:65:63:87:1a:bc: 28:fe:76:da:7a:c8:20:ce:d1:20:5b:3e:9b:d6:5f: b3:23:88:a7:96:a6:45:a6:85:3f:85:ce:00:7e:ae: 61:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0C:30:26:B7:6E:C3:30:09:89:51:92:FE:EE:D9:91:11:E5:71:73 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/1QwwJrduwzAJiVGS_u7ZkRHlcXM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:ee00::/32 Signature Algorithm: sha256WithRSAEncryption 6f:10:94:63:23:b0:5d:0d:9a:e6:fc:96:52:4d:17:e3:e9:83: aa:41:6c:b3:58:26:5c:9f:c1:6a:a0:b4:0f:58:68:ba:94:83: 88:b7:10:8e:3b:25:e9:57:c6:17:a7:9f:57:cd:39:60:a9:87: 45:9c:bb:c8:fe:4b:6d:af:84:9c:36:7c:77:49:b8:eb:5b:97: dd:41:c4:29:87:22:2b:f9:a2:7c:ba:bb:bc:65:b9:8b:1c:de: 7c:d7:a9:e8:0c:a4:9b:76:9f:45:a9:7f:5f:b8:04:ba:19:eb: 9e:2d:9e:87:2e:5e:f3:19:5e:29:d6:91:5a:0c:4a:c8:6d:67: 79:1f:af:2a:f4:86:34:ac:3c:bf:8c:aa:4c:35:46:17:21:6e: 03:3f:b8:0d:7e:b6:20:84:8b:2d:b4:50:fd:e3:f7:d4:f3:c3: 7e:f0:76:a4:54:d1:9e:d5:78:ef:12:a0:88:77:fb:7b:e1:f6: c4:36:3a:6a:d1:21:f7:5c:51:93:d0:bf:14:fc:b5:0b:5a:64: 15:ff:9d:ac:c6:b8:07:40:ba:7b:c0:a4:14:88:9b:8f:a1:22: 05:08:65:80:c7:3e:b2:01:78:fe:2d:25:fe:ff:d7:f7:64:14: 24:c1:c2:60:8c:05:40:cb:9d:23:97:9e:fe:0e:3a:65:f3:a0: e7:3e:64:af -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ1MEMzMDI2Qjc2RUMz MzAwOTg5NTE5MkZFRUVEOTkxMTFFNTcxNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA2QPTMsBb2hzlPdChwJ2+q6yUG5A1Bwf4jm+QmKcEPCdOoCM8 FBDxns85b2WWEbCsSU1eisoD0+gpaZ1U8oDXAp/7CQUD+6TNvNr8JFQFL0+Q33xH ffayqeZD70bGlPv4eIUMGGJpYzQIzlJ2HnEreFBmJ0iqN8Hc8uc71ha1LCOUw6k0 Bi96pmLTlcOCqvXxaDIrgWY9cvVBMNBdAbZAMs25fOdrIngT+bmLYPPICVzOsZte yIardzcW6mZ/60e3B/rKKkC+XD8YdvRUdQssh6uvXTM50bjujBtlY4cavCj+dtp6 yCDO0SBbPpvWX7MjiKeWpkWmhT+FzgB+rmEtAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU1QwwJrduwzAJiVGS/u7ZkRHlcXMwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzFRd3dKcmR1d3pBSmlWR1Nf dTdaa1JIbGNYTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk A+4AMA0GCSqGSIb3DQEBCwUAA4IBAQBvEJRjI7BdDZrm/JZSTRfj6YOqQWyzWCZc n8FqoLQPWGi6lIOItxCOOyXpV8YXp59XzTlgqYdFnLvI/kttr4ScNnx3SbjrW5fd QcQphyIr+aJ8uru8ZbmLHN5816noDKSbdp9FqX9fuAS6GeueLZ6HLl7zGV4p1pFa DErIbWd5H68q9IY0rDy/jKpMNUYXIW4DP7gNfrYghIsttFD94/fU88N+8HakVNGe 1XjvEqCId/t74fbENjpq0SH3XFGT0L8U/LULWmQV/52sxrgHQLp7wKQUiJuPoSIF CGWAxz6yAXj+LSX+/9f3ZBQkwcJgjAVAy50jl57+Djpl86DnPmSv -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:35 2025 by rpki-client on console.sobornost.net