$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/8fg-TzfhHoS8yTq9EMrnXFJQd5Q.roa File: 8fg-TzfhHoS8yTq9EMrnXFJQd5Q.roa (raw, json) Hash identifier: iQvryVrjxci8W1gqFI7cq7brEizYYNiD/hdGk+3UIPM= Subject key identifier: F1:F8:3E:4F:37:E1:1E:84:BC:C9:3A:BD:10:CA:E7:5C:52:50:77:94 Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0B91 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/8fg-TzfhHoS8yTq9EMrnXFJQd5Q.roa Signing time: Fri 01 Sep 2023 08:35:40 +0000 ROA not before: Fri 01 Sep 2023 08:35:40 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18046 IP address blocks: 116.50.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 15:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2961 (0xb91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Sep 1 08:35:40 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F1F83E4F37E11E84BCC93ABD10CAE75C52507794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:30:59:da:d6:14:1e:8f:c9:d8:15:47:c2: 63:a9:d5:81:dc:c6:aa:53:85:75:58:11:90:b0:8d: fb:07:d4:da:dc:e6:ac:eb:77:ac:81:ee:48:86:e9: 5f:21:f6:9b:aa:6b:8c:0a:92:ed:a6:4b:28:a1:13: 91:59:66:6d:5b:d1:c7:a6:ce:4b:24:e0:c5:46:3d: 90:0d:97:d3:78:67:6f:4b:97:5d:2f:eb:4a:09:22: c0:e7:2b:07:20:4e:f7:71:17:25:90:ff:82:d9:7e: d9:6c:1f:47:92:6a:85:16:f1:bf:a9:55:77:7d:9b: 5d:c1:83:50:aa:1f:a4:56:bd:93:3b:8b:f8:44:4e: 79:d5:3e:e3:57:5d:ef:e8:c0:36:29:55:50:6e:e9: a9:84:56:0d:76:00:1d:40:63:75:b2:d9:38:d5:17: a8:39:8f:75:4d:87:0a:b9:67:78:9e:a0:c1:7d:bb: 8c:17:ef:32:0a:e0:87:00:f1:2f:8b:b9:e6:49:51: 87:71:0b:7e:0f:d0:cd:e1:82:ac:5d:b2:93:db:fc: 86:d5:14:54:c2:10:11:bc:0d:68:7f:e2:b9:e4:e9: 62:4e:ef:a5:8c:27:6c:b5:9f:7b:e8:2e:90:31:7f: b9:44:37:ce:8d:16:5f:74:3c:ba:6b:b0:39:bf:d7: 41:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F8:3E:4F:37:E1:1E:84:BC:C9:3A:BD:10:CA:E7:5C:52:50:77:94 X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/8fg-TzfhHoS8yTq9EMrnXFJQd5Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 116.50.41.0/24 Signature Algorithm: sha256WithRSAEncryption cf:4e:37:dd:4f:af:60:36:ec:c6:48:97:19:34:40:83:21:f8: b0:64:f8:ae:56:b6:96:92:d7:fd:c8:55:ec:49:50:34:43:96: ac:05:90:27:a6:34:fc:1b:ce:04:14:1d:c9:54:4d:a6:be:9c: 94:df:4f:dc:30:fe:fb:c7:4d:e1:cb:25:be:4e:8b:c6:a6:8d: 4c:83:34:7c:7c:2f:a1:12:57:15:2e:18:67:2f:88:32:0d:f3: ca:68:4e:e7:87:fb:e4:18:d8:6d:c6:fd:dc:d8:9d:cc:14:4d: 19:91:f9:e9:84:d0:46:c9:df:e1:9d:aa:6e:0f:a3:12:63:d0: 4e:3c:11:cc:3f:7d:6a:a3:2f:1c:56:b0:38:31:3a:b6:16:cc: 2c:fe:2e:e7:7c:e2:38:dd:bf:2c:f9:85:60:37:45:7b:4c:7a: d8:b0:7c:c2:66:11:2c:3b:31:cf:00:1c:62:ba:94:92:de:46: d8:c2:65:bf:16:5d:1b:d1:6b:8d:06:15:00:0d:c8:d1:ed:2e: f0:a0:0a:43:e6:93:10:e3:53:01:a8:54:99:4a:ae:a1:d7:3d: 9c:13:c2:86:6c:d2:41:3d:3a:fb:b2:e2:fe:5b:a1:10:e4:2f: 3c:58:63:03:ba:3c:3c:30:e3:a7:a2:5a:94:8d:a9:e9:93:69: 1a:c0:be:0e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICC5EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yMzA5MDEw ODM1NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYxRjgzRTRGMzdFMTFF ODRCQ0M5M0FCRDEwQ0FFNzVDNTI1MDc3OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBsjBZ2tYUHo/J2BVHwmOp1YHcxqpThXVYEZCwjfsH1Nrc5qzr d6yB7kiG6V8h9puqa4wKku2mSyihE5FZZm1b0cemzksk4MVGPZANl9N4Z29Ll10v 60oJIsDnKwcgTvdxFyWQ/4LZftlsH0eSaoUW8b+pVXd9m13Bg1CqH6RWvZM7i/hE TnnVPuNXXe/owDYpVVBu6amEVg12AB1AY3Wy2TjVF6g5j3VNhwq5Z3ieoMF9u4wX 7zIK4IcA8S+LueZJUYdxC34P0M3hgqxdspPb/IbVFFTCEBG8DWh/4rnk6WJO76WM J2y1n3voLpAxf7lEN86NFl90PLprsDm/10GzAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU8fg+TzfhHoS8yTq9EMrnXFJQd5QwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy84ZmctVHpmaEhvUzh5 VHE5RU1yblhGSlFkNVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAdDIpMA0GCSqGSIb3DQEBCwUAA4IBAQDPTjfdT69gNuzGSJcZNECDIfiwZPiu VraWktf9yFXsSVA0Q5asBZAnpjT8G84EFB3JVE2mvpyU30/cMP77x03hyyW+TovG po1MgzR8fC+hElcVLhhnL4gyDfPKaE7nh/vkGNhtxv3c2J3MFE0ZkfnphNBGyd/h napuD6MSY9BOPBHMP31qoy8cVrA4MTq2Fsws/i7nfOI43b8s+YVgN0V7THrYsHzC ZhEsOzHPABxiupSS3kbYwmW/Fl0b0WuNBhUADcjR7S7woApD5pMQ41MBqFSZSq6h 1z2cE8KGbNJBPTr7suL+W6EQ5C88WGMDujw8MOOnolqUjanpk2kawL4O -----END CERTIFICATE-----Generated at Fri Jun 7 18:16:19 2024 by rpki-client on console-ams.rpki-client.org