$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DJz9GHffDt49NiKRzYKavnKNk-E.roa File: DJz9GHffDt49NiKRzYKavnKNk-E.roa (raw, json) Hash identifier: CmgC1j0aLhMAVAKMiHk1E3TxzXodXl5VBgYnO0uVDJo= Subject key identifier: 0C:9C:FD:18:77:DF:0E:DE:3D:36:22:91:CD:82:9A:BE:72:8D:93:E1 Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0CA2 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DJz9GHffDt49NiKRzYKavnKNk-E.roa Signing time: Mon 26 Aug 2024 05:12:30 +0000 ROA not before: Mon 26 Aug 2024 05:12:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 116.50.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3234 (0xca2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Aug 26 05:12:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0C9CFD1877DF0EDE3D362291CD829ABE728D93E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:23:34:f2:b4:29:f3:d0:7c:c6:7d:08:b6:eb: 8a:81:0b:99:88:96:3a:e7:89:92:1b:1d:30:25:2c: ba:3b:aa:c1:0c:98:11:8a:48:f5:e0:78:8b:b1:f2: 60:33:57:42:be:f3:70:90:2a:59:a0:f5:43:55:97: 8e:13:07:8a:e1:c7:a4:a5:ce:c5:cb:ec:e7:34:fc: a6:26:27:ea:eb:57:0e:9b:55:12:ec:c8:ec:b0:e4: 87:c0:9d:2f:30:0d:0e:6d:5b:8d:be:af:55:15:ed: 47:e1:c0:69:3b:3c:04:03:d2:eb:51:7c:08:24:4b: 70:d9:a5:84:9f:e1:af:81:71:77:dc:b3:97:4c:b9: 7f:a4:c5:58:78:6d:6f:62:01:fd:a8:27:c9:97:95: 0f:6b:2b:e5:a1:6b:8c:6f:f6:4e:cd:e6:9a:0f:24: 0e:89:a2:e4:d7:e4:68:ae:ec:8a:1b:f7:ac:18:b4: 60:6f:20:9d:ac:1a:94:1c:e0:92:aa:1d:c4:5c:83: 83:73:f0:a4:1d:65:05:48:97:7a:2d:db:8d:21:4c: 4a:fb:46:f5:11:e6:2c:64:fd:06:e9:97:3f:b8:7d: c0:d3:91:41:0c:7d:f4:d0:3e:99:20:77:6a:3f:4a: 58:a8:f1:a9:5a:b6:87:35:9a:a6:92:0a:76:d7:c4: 89:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:9C:FD:18:77:DF:0E:DE:3D:36:22:91:CD:82:9A:BE:72:8D:93:E1 X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DJz9GHffDt49NiKRzYKavnKNk-E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 116.50.32.0/20 Signature Algorithm: sha256WithRSAEncryption d2:f3:b7:a4:cb:83:7d:46:9c:83:46:7c:2b:6c:03:18:dd:70: 58:5f:68:9a:cd:e3:b6:e6:59:83:a7:29:8d:cd:e9:57:7b:cf: 19:58:9a:61:1f:07:4e:92:02:97:22:b3:7c:d9:74:00:2b:de: d3:0a:8e:0c:ce:b1:f0:00:8b:10:94:aa:e5:35:c0:8f:88:89: 14:08:ba:85:1b:11:81:ee:7e:00:9f:53:69:d7:87:51:cb:50: 92:a8:06:7d:5b:f0:0a:29:d4:34:be:ee:ba:da:c5:41:5b:f8: dd:6d:3f:ea:e0:26:84:ba:62:a7:ff:62:91:ac:30:8c:01:fe: 95:c5:64:a6:79:45:25:0e:cc:9b:af:a0:d2:06:51:62:e8:bc: 9c:81:1d:20:84:8c:47:6d:ec:c5:72:40:50:87:7a:03:72:8c: 3d:5e:0a:3c:1b:e6:7d:b2:f1:52:1c:89:40:b3:1b:04:25:65: 48:19:de:bd:ec:fb:cd:3d:32:be:fe:1e:09:5f:a1:ea:88:1e: 8b:29:34:e5:9b:f8:7a:f2:e3:b8:1d:08:64:f2:1b:60:25:99: f2:78:c6:66:bc:30:0d:39:78:97:ab:98:a8:85:c4:53:8e:97: db:56:f0:77:28:8d:35:c6:f4:23:e4:29:90:48:dc:4b:06:bf: 67:08:e1:60 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDKIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNDA4MjYw NTEyMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBDOUNGRDE4NzdERjBF REUzRDM2MjI5MUNEODI5QUJFNzI4RDkzRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJIzTytCnz0HzGfQi264qBC5mIljrniZIbHTAlLLo7qsEMmBGK SPXgeIux8mAzV0K+83CQKlmg9UNVl44TB4rhx6SlzsXL7Oc0/KYmJ+rrVw6bVRLs yOyw5IfAnS8wDQ5tW42+r1UV7UfhwGk7PAQD0utRfAgkS3DZpYSf4a+BcXfcs5dM uX+kxVh4bW9iAf2oJ8mXlQ9rK+Wha4xv9k7N5poPJA6JouTX5Giu7Iob96wYtGBv IJ2sGpQc4JKqHcRcg4Nz8KQdZQVIl3ot240hTEr7RvUR5ixk/Qbplz+4fcDTkUEM ffTQPpkgd2o/Slio8alatoc1mqaSCnbXxInhAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUDJz9GHffDt49NiKRzYKavnKNk+EwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9ESno5R0hmZkR0NDlO aUtSellLYXZuS05rLUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQEdDIgMA0GCSqGSIb3DQEBCwUAA4IBAQDS87eky4N9RpyDRnwrbAMY3XBYX2ia zeO25lmDpymNzelXe88ZWJphHwdOkgKXIrN82XQAK97TCo4MzrHwAIsQlKrlNcCP iIkUCLqFGxGB7n4An1Np14dRy1CSqAZ9W/AKKdQ0vu662sVBW/jdbT/q4CaEumKn /2KRrDCMAf6VxWSmeUUlDsybr6DSBlFi6LycgR0ghIxHbezFckBQh3oDcow9Xgo8 G+Z9svFSHIlAsxsEJWVIGd697PvNPTK+/h4JX6HqiB6LKTTlm/h68uO4HQhk8htg JZnyeMZmvDANOXiXq5iohcRTjpfbVvB3KI01xvQj5CmQSNxLBr9nCOFg -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:26 2024 by rpki-client on console-ams.rpki-client.org