$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/63DawYufUruIiM5XKuTgaIDNPo0.roa File: 63DawYufUruIiM5XKuTgaIDNPo0.roa (raw, json) Hash identifier: vrWF7EmkhfCiAe47r0Vm5SDfwIhaSw/yvoSIaLec7So= Subject key identifier: EB:70:DA:C1:8B:9F:52:BB:88:88:CE:57:2A:E4:E0:68:80:CD:3E:8D Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0DA7 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/63DawYufUruIiM5XKuTgaIDNPo0.roa Signing time: Wed 12 Mar 2025 10:04:48 +0000 ROA not before: Wed 12 Mar 2025 10:04:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 61.65.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3495 (0xda7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Mar 12 10:04:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EB70DAC18B9F52BB8888CE572AE4E06880CD3E8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fc:cd:6b:37:91:c6:54:d8:95:7c:c7:13:da: 3d:72:2d:f5:4f:f9:7d:e5:c3:1a:e7:38:f7:39:e8: f8:91:91:0a:66:af:d1:06:56:69:67:85:05:7a:1c: 18:22:8d:b9:3e:64:00:24:b2:66:7b:47:0c:c2:d9: 92:99:ec:db:2f:71:ad:a8:79:53:4f:77:48:92:e8: 28:38:5b:70:5e:0f:3e:22:57:18:19:d2:af:a1:4d: 00:08:83:79:22:da:14:73:fb:2f:d7:fb:1e:5f:14: ae:00:5b:da:78:97:74:a5:d3:c8:56:e3:28:04:73: e3:3e:54:06:36:4b:c9:ae:80:db:be:4b:9d:fd:34: 51:33:a9:40:ad:9b:17:f5:c2:ab:b5:85:7e:d9:cc: 2a:04:e3:f3:18:29:20:62:28:01:ed:5d:4a:50:9b: 8d:6f:62:5d:c3:93:27:a5:9e:7a:77:01:bf:ed:a4: ca:d1:f7:46:33:41:99:b5:44:e7:d8:f5:2b:a3:a5: 6d:76:97:92:66:a9:94:56:fb:9d:af:4f:da:21:ef: 44:70:c9:d8:19:ec:a0:92:ac:b6:d8:2f:14:f7:ea: 7f:3d:9b:b8:cc:2e:b0:99:cb:ac:12:38:7f:6f:26: af:b8:da:4b:e1:fa:8e:0a:cd:e9:df:7a:d8:16:c4: 09:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:70:DA:C1:8B:9F:52:BB:88:88:CE:57:2A:E4:E0:68:80:CD:3E:8D X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/63DawYufUruIiM5XKuTgaIDNPo0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.224.0/21 Signature Algorithm: sha256WithRSAEncryption 08:32:70:d2:ac:dc:17:ec:97:6e:cf:7f:a0:18:29:c3:75:13: 66:72:7c:76:55:14:17:8a:65:2f:18:7d:d7:9a:96:4c:d4:1e: e3:d0:5f:0f:7e:3e:16:51:c5:3a:ce:6b:11:d3:cb:32:24:6d: bc:40:17:9d:72:e0:ef:8d:95:8c:8a:1b:df:0c:da:3d:21:b8: 56:fe:55:51:f9:f5:12:3e:e3:e3:51:63:a0:5a:07:ab:01:e2: a3:7c:78:5b:79:24:02:07:72:08:85:0d:35:64:6b:5c:12:51: e6:c1:c9:df:d5:f2:1d:8c:66:cc:fb:73:a1:6f:de:57:b3:1b: 38:1b:a6:76:36:a3:75:ff:f9:81:b9:eb:37:b2:13:f0:63:65: f1:e8:36:e4:5f:da:ce:80:17:01:17:d4:cd:37:ac:b5:d9:36: f4:d4:a6:0d:da:0b:f1:03:1d:e2:cf:91:05:6b:63:76:da:5e: 0d:21:db:d8:87:13:3c:d2:e8:b2:73:1b:2d:ad:90:41:e3:02: 7d:fb:0a:6d:5a:5d:53:21:79:47:c8:fb:f0:f5:de:1a:60:bd: 24:e9:87:f7:5b:d9:e4:98:fd:0b:b6:70:17:98:d3:8e:8a:d4: 9c:08:2d:9b:a7:6f:0a:65:aa:c6:e6:9c:78:01:b5:3e:6b:1f: 9d:ba:a1:87 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDacwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNTAzMTIx MDA0NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVCNzBEQUMxOEI5RjUy QkI4ODg4Q0U1NzJBRTRFMDY4ODBDRDNFOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCm/M1rN5HGVNiVfMcT2j1yLfVP+X3lwxrnOPc56PiRkQpmr9EG VmlnhQV6HBgijbk+ZAAksmZ7RwzC2ZKZ7Nsvca2oeVNPd0iS6Cg4W3BeDz4iVxgZ 0q+hTQAIg3ki2hRz+y/X+x5fFK4AW9p4l3Sl08hW4ygEc+M+VAY2S8mugNu+S539 NFEzqUCtmxf1wqu1hX7ZzCoE4/MYKSBiKAHtXUpQm41vYl3Dkyelnnp3Ab/tpMrR 90YzQZm1ROfY9SujpW12l5JmqZRW+52vT9oh70RwydgZ7KCSrLbYLxT36n89m7jM LrCZy6wSOH9vJq+42kvh+o4KzenfetgWxAlrAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU63DawYufUruIiM5XKuTgaIDNPo0wHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy82M0Rhd1l1ZlVydUlp TTVYS3VUZ2FJRE5QbzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDPUHgMA0GCSqGSIb3DQEBCwUAA4IBAQAIMnDSrNwX7Jduz3+gGCnDdRNmcnx2 VRQXimUvGH3XmpZM1B7j0F8Pfj4WUcU6zmsR08syJG28QBedcuDvjZWMihvfDNo9 IbhW/lVR+fUSPuPjUWOgWgerAeKjfHhbeSQCB3IIhQ01ZGtcElHmwcnf1fIdjGbM +3Ohb95Xsxs4G6Z2NqN1//mBues3shPwY2Xx6DbkX9rOgBcBF9TNN6y12Tb01KYN 2gvxAx3iz5EFa2N22l4NIdvYhxM80uiycxstrZBB4wJ9+wptWl1TIXlHyPvw9d4a YL0k6Yf3W9nkmP0LtnAXmNOOitScCC2bp28KZarG5px4AbU+ax+duqGH -----END CERTIFICATE-----Generated at Sun Apr 6 19:59:12 2025 by rpki-client