$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/b33AMHIuBX5jYq5zEHBsijgyQsU.roa File: b33AMHIuBX5jYq5zEHBsijgyQsU.roa (raw, json) Hash identifier: Jt2MNtfnXPEoAV8P76xZytliPqbg9seTU550Rz3QmTI= Subject key identifier: 6F:7D:C0:30:72:2E:05:7E:63:62:AE:73:10:70:6C:8A:38:32:42:C5 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0D89 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/b33AMHIuBX5jYq5zEHBsijgyQsU.roa Signing time: Mon 10 Feb 2025 13:50:06 +0000 ROA not before: Mon 10 Feb 2025 13:50:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 113.21.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3465 (0xd89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Feb 10 13:50:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6F7DC030722E057E6362AE7310706C8A383242C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:13:48:8e:a4:9c:35:b9:b4:f3:8e:60:d5:2e: 04:1d:8e:7b:14:ee:75:6c:db:67:4f:47:bd:91:0a: 2a:87:1f:b3:86:76:8d:82:33:cf:82:21:6f:af:87: 8f:76:63:a0:e7:f3:92:1d:71:7e:0d:2b:f2:17:97: 42:df:22:e3:6d:f0:75:e6:d3:87:64:45:2d:78:4b: c9:e7:7b:76:22:4e:53:de:f3:f6:ec:1e:5a:52:e5: 54:d3:4d:cb:80:f7:75:8c:e0:ac:3b:5c:5a:cf:15: 1a:9e:d5:b3:6d:7d:28:d0:9b:e8:fc:b2:c4:57:7b: 8c:81:1f:53:19:04:79:f1:9b:55:54:39:3a:61:5c: 48:52:90:59:75:79:7a:f5:38:8c:f0:89:b9:78:1d: b9:ee:9b:12:44:8a:c9:0d:60:fe:8e:ab:b2:6a:41: 36:af:4d:9f:17:06:31:1f:e1:2c:26:a9:6a:c0:c0: e6:8a:61:3c:98:6a:d4:9b:86:88:ad:12:ca:94:6d: bb:4c:5e:55:b9:c5:8e:19:c1:97:67:4b:ec:2e:3b: a4:10:1a:23:3f:d8:de:d6:07:df:ef:09:71:da:be: b2:7d:8e:b0:10:82:42:9f:4b:6a:cb:57:97:30:8a: 66:bd:bd:a5:b9:73:38:8c:42:2b:c8:df:7a:dc:f0: 47:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:7D:C0:30:72:2E:05:7E:63:62:AE:73:10:70:6C:8A:38:32:42:C5 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/b33AMHIuBX5jYq5zEHBsijgyQsU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.176.0/21 Signature Algorithm: sha256WithRSAEncryption 13:28:11:9c:dd:1b:b9:ea:e8:3f:2f:6c:2b:bb:ab:d8:bb:67: 48:ad:aa:2e:8e:fd:f4:9a:80:4a:1a:7e:c9:87:5e:4f:f0:6e: e4:26:95:6d:df:c5:f8:5f:4d:42:07:3c:de:30:c8:1f:a5:85: 9f:1e:df:e2:20:9f:3c:be:e3:d4:75:99:85:ae:fb:52:59:ac: 2a:9c:cd:e1:2e:93:64:96:23:34:59:1a:21:09:f9:42:bd:21: 45:f6:86:e8:75:21:01:6b:f3:29:3b:23:07:a1:54:8b:7f:0a: f3:d3:04:7b:67:ec:1d:95:9d:fc:bd:75:e3:94:da:8c:c5:fe: 7c:bf:76:9d:75:5f:4f:b2:fe:0c:d6:89:d4:94:62:e1:14:de: 82:25:ed:94:fa:94:82:ed:35:b4:6f:71:38:16:0f:a9:71:c1: 45:58:fa:7d:a0:b8:74:cf:74:eb:9f:72:40:43:db:4f:cb:13: 2a:41:32:60:bd:e5:a7:77:16:73:27:59:9e:75:71:f8:2c:15: dd:c1:57:3b:2c:88:63:3d:e7:5c:c5:d7:fb:f9:aa:d8:3a:88: 37:e5:09:6f:f3:35:f4:6f:de:bd:21:47:3a:4f:d1:1b:a5:c7: a1:e0:b3:b4:63:40:c1:07:cf:06:29:b3:75:bd:b6:50:2b:25: 9a:18:12:00 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTAyMTAx MzUwMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZGN0RDMDMwNzIyRTA1 N0U2MzYyQUU3MzEwNzA2QzhBMzgzMjQyQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+E0iOpJw1ubTzjmDVLgQdjnsU7nVs22dPR72RCiqHH7OGdo2C M8+CIW+vh492Y6Dn85IdcX4NK/IXl0LfIuNt8HXm04dkRS14S8nne3YiTlPe8/bs HlpS5VTTTcuA93WM4Kw7XFrPFRqe1bNtfSjQm+j8ssRXe4yBH1MZBHnxm1VUOTph XEhSkFl1eXr1OIzwibl4HbnumxJEiskNYP6Oq7JqQTavTZ8XBjEf4SwmqWrAwOaK YTyYatSbhoitEsqUbbtMXlW5xY4ZwZdnS+wuO6QQGiM/2N7WB9/vCXHavrJ9jrAQ gkKfS2rLV5cwima9vaW5cziMQivI33rc8Ef9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUb33AMHIuBX5jYq5zEHBsijgyQsUwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2IzM0FNSEl1Qlg1allxNXpF SEJzaWpneVFzVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANx FbAwDQYJKoZIhvcNAQELBQADggEBABMoEZzdG7nq6D8vbCu7q9i7Z0itqi6O/fSa gEoafsmHXk/wbuQmlW3fxfhfTUIHPN4wyB+lhZ8e3+Ignzy+49R1mYWu+1JZrCqc zeEuk2SWIzRZGiEJ+UK9IUX2huh1IQFr8yk7IwehVIt/CvPTBHtn7B2Vnfy9deOU 2ozF/ny/dp11X0+y/gzWidSUYuEU3oIl7ZT6lILtNbRvcTgWD6lxwUVY+n2guHTP dOufckBD20/LEypBMmC95ad3FnMnWZ51cfgsFd3BVzssiGM951zF1/v5qtg6iDfl CW/zNfRv3r0hRzpP0Rulx6Hgs7RjQMEHzwYps3W9tlArJZoYEgA= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:35 2025 by rpki-client on console.sobornost.net