$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-cdWQ_H8BA0iu9-N5DHAX3twunY.roa File: -cdWQ_H8BA0iu9-N5DHAX3twunY.roa (raw, json) Hash identifier: piqGwLWi06IIsiYOtdznfwXLrkA1T/MRSljk4pALLUg= Subject key identifier: F9:C7:56:43:F1:FC:04:0D:22:BB:DF:8D:E4:31:C0:5F:7B:70:BA:76 Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0B90 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-cdWQ_H8BA0iu9-N5DHAX3twunY.roa Signing time: Fri 01 Sep 2023 08:35:40 +0000 ROA not before: Fri 01 Sep 2023 08:35:40 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 198949 IP address blocks: 61.65.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 11:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Sep 1 08:35:40 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F9C75643F1FC040D22BBDF8DE431C05F7B70BA76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:07:da:8b:f3:f7:94:53:00:2a:7f:0b:27:f6: 9a:a3:f6:85:aa:84:ee:87:02:38:53:a7:57:a5:a4: 0b:4a:8d:61:1e:4f:b7:b4:68:7f:45:0b:3f:84:28: 75:33:44:99:7f:f8:ea:30:12:11:99:11:6b:fd:db: 49:58:7e:ed:76:9e:a2:34:b0:02:64:2e:67:9b:80: 93:85:81:ab:a3:c0:8c:90:a3:62:e8:ec:de:19:6a: 33:8c:21:e3:8e:3d:c3:22:ec:fe:b9:00:b7:5a:50: cf:35:ec:d7:a2:f6:c6:7e:62:55:3b:f8:48:47:0b: fb:65:d1:c9:f9:a5:bd:00:84:2d:c7:b3:5e:50:c7: d1:9f:ce:10:c8:d2:1e:59:3b:4c:bb:1c:a8:34:42: a1:40:df:ab:b9:de:57:e3:05:13:07:cb:25:1d:f4: 47:b9:8a:ae:18:10:45:d2:83:81:e5:25:cc:42:3e: 73:83:70:81:af:5c:92:a4:05:44:4c:47:e4:ea:e2: d1:29:52:26:3e:20:e8:6e:eb:36:c5:7c:c2:e7:ef: aa:8c:f9:26:10:d1:96:89:34:ea:ea:17:60:79:7a: 6d:35:38:e5:3f:bd:1e:fb:43:89:fc:a8:e0:bd:6f: b2:8a:dd:4d:8f:26:e9:f6:df:bb:83:69:ad:fc:4d: ad:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C7:56:43:F1:FC:04:0D:22:BB:DF:8D:E4:31:C0:5F:7B:70:BA:76 X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-cdWQ_H8BA0iu9-N5DHAX3twunY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.236.0/24 Signature Algorithm: sha256WithRSAEncryption 11:e1:b8:63:2c:3d:10:02:d8:61:1c:0c:0f:73:e3:c8:c8:2b: 2f:0f:c9:92:3a:1c:86:24:52:7f:2e:ed:60:46:33:15:82:f2: 4d:ad:07:e2:46:f1:0b:13:4c:a5:13:0f:69:56:19:9e:95:44: 33:a8:12:dd:45:d1:01:bd:7b:9a:ae:30:fb:08:17:ae:38:d8: fd:9f:00:71:85:a5:6d:39:48:fc:b0:c4:f0:ef:4f:d4:02:9c: b3:62:1b:2a:de:58:82:3f:3e:31:d7:76:e3:d5:5c:9f:03:0a: 4d:de:c3:4c:05:7b:76:53:dc:94:36:ee:77:65:67:07:aa:c0: 18:1d:7c:af:86:0c:95:5e:b1:e3:67:21:7b:96:91:ab:a6:6b: fe:21:62:99:cf:45:c4:fd:77:2e:71:1e:5f:34:5e:a5:f0:77: cb:0e:da:cb:fb:0c:e6:fc:5f:03:24:90:18:ea:7d:a6:95:20: 90:c5:56:b5:2d:26:6a:c0:f2:12:13:11:93:ab:5e:c2:92:ea: 0a:16:d8:a6:80:30:91:04:77:33:86:16:67:c9:cc:7b:2e:42: 66:3d:bc:35:0e:fe:a2:ca:ee:44:ce:38:a8:5c:4a:13:bb:a0: f5:6e:a9:52:12:d7:4f:1d:41:a6:e3:09:7a:63:51:5e:87:92: d0:06:ec:7f -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yMzA5MDEw ODM1NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY5Qzc1NjQzRjFGQzA0 MEQyMkJCREY4REU0MzFDMDVGN0I3MEJBNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUB9qL8/eUUwAqfwsn9pqj9oWqhO6HAjhTp1elpAtKjWEeT7e0 aH9FCz+EKHUzRJl/+OowEhGZEWv920lYfu12nqI0sAJkLmebgJOFgaujwIyQo2Lo 7N4ZajOMIeOOPcMi7P65ALdaUM817Nei9sZ+YlU7+EhHC/tl0cn5pb0AhC3Hs15Q x9GfzhDI0h5ZO0y7HKg0QqFA36u53lfjBRMHyyUd9Ee5iq4YEEXSg4HlJcxCPnOD cIGvXJKkBURMR+Tq4tEpUiY+IOhu6zbFfMLn76qM+SYQ0ZaJNOrqF2B5em01OOU/ vR77Q4n8qOC9b7KK3U2PJun237uDaa38Ta2tAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU+cdWQ/H8BA0iu9+N5DHAX3twunYwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy8tY2RXUV9IOEJBMGl1 OS1ONURIQVgzdHd1blkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAPUHsMA0GCSqGSIb3DQEBCwUAA4IBAQAR4bhjLD0QAthhHAwPc+PIyCsvD8mS OhyGJFJ/Lu1gRjMVgvJNrQfiRvELE0ylEw9pVhmelUQzqBLdRdEBvXuarjD7CBeu ONj9nwBxhaVtOUj8sMTw70/UApyzYhsq3liCPz4x13bj1VyfAwpN3sNMBXt2U9yU Nu53ZWcHqsAYHXyvhgyVXrHjZyF7lpGrpmv+IWKZz0XE/XcucR5fNF6l8HfLDtrL +wzm/F8DJJAY6n2mlSCQxVa1LSZqwPISExGTq17CkuoKFtimgDCRBHczhhZnycx7 LkJmPbw1Dv6iyu5EzjioXEoTu6D1bqlSEtdPHUGm4wl6Y1Feh5LQBux/ -----END CERTIFICATE-----Generated at Sun May 5 22:12:58 2024 by rpki-client on console-fra.rpki-client.org