$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/EPjrl8ix9BwxGO7SnM9Zvkf0gVo.roa File: EPjrl8ix9BwxGO7SnM9Zvkf0gVo.roa (raw, json) Hash identifier: CnIb2R1cFieKjfy3Uj7Ol2mWfLvbInSsie3w7mtL2es= Subject key identifier: 10:F8:EB:97:C8:B1:F4:1C:31:18:EE:D2:9C:CF:59:BE:47:F4:81:5A Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0B8C Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/EPjrl8ix9BwxGO7SnM9Zvkf0gVo.roa Signing time: Fri 01 Sep 2023 08:35:39 +0000 ROA not before: Fri 01 Sep 2023 08:35:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18046 IP address blocks: 61.65.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 14:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2956 (0xb8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Sep 1 08:35:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=10F8EB97C8B1F41C3118EED29CCF59BE47F4815A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:40:da:20:5e:a7:0c:f4:35:a9:3c:05:79:e2: 92:51:f0:6b:f5:6b:5c:9f:60:5d:28:c7:4c:f9:04: 50:9b:fd:66:9f:98:fa:63:a4:44:09:2c:7e:69:13: 94:e1:9f:11:67:cb:0e:ee:2e:aa:9c:8b:87:53:ee: 8c:79:61:95:08:73:e0:38:ad:1c:ae:90:35:80:6a: 94:44:53:c3:cf:8d:0c:16:c0:9f:78:40:e5:91:2d: 42:09:68:56:d6:55:ef:77:e4:ad:4d:ed:21:ee:d7: e0:94:be:31:6d:ed:e7:06:4c:85:8f:fe:60:36:0a: 9e:cb:61:3a:f9:77:98:fe:a1:3e:f3:99:bf:96:dd: 7c:bc:48:b7:2a:84:10:ee:79:c1:a0:86:bb:d6:2b: f2:22:12:ae:15:bd:b2:83:3c:ed:10:12:52:cc:6e: 14:62:86:83:6c:00:33:ff:3b:a6:e9:6e:4d:5b:a4: ad:21:19:5a:26:b7:8a:df:88:42:4f:06:44:32:b3: 82:3b:c4:1c:49:09:9f:f7:d5:71:2c:67:e2:ec:c3: 86:8a:d5:0e:c3:92:aa:bb:2d:7f:ba:f9:35:20:f9: 12:d4:35:8f:06:3f:ac:7f:05:fb:66:a2:bf:8c:5b: 60:d5:1b:c3:b3:62:28:bb:78:36:36:d4:83:94:3a: bd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F8:EB:97:C8:B1:F4:1C:31:18:EE:D2:9C:CF:59:BE:47:F4:81:5A X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/EPjrl8ix9BwxGO7SnM9Zvkf0gVo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.236.0/22 Signature Algorithm: sha256WithRSAEncryption b3:ac:30:c1:e7:6f:b0:1a:f8:f6:c3:cb:22:f7:97:90:56:f3: 94:c2:aa:41:b4:d3:34:f4:85:a6:c4:c2:a7:79:aa:ad:a2:e7: 4c:72:af:d5:d8:4b:97:db:ca:80:fb:88:8e:66:9b:d2:65:a8: 02:a1:1b:5e:2d:39:df:32:8f:fd:cd:80:a2:57:0c:9e:f5:9b: bb:21:ef:80:39:1d:42:97:e3:84:77:7b:98:78:ae:f3:77:64: 2a:68:e6:bb:5c:45:a7:50:11:5b:7d:26:0c:99:ab:ad:50:8a: 60:78:c1:f0:cc:b9:a1:ec:53:0e:8d:a7:04:e8:58:79:d9:06: c7:85:6a:aa:b1:9e:2a:19:6c:35:37:62:05:08:85:48:d7:e9: b3:0a:b2:c0:02:2f:64:c1:7b:45:97:15:a2:11:96:f1:79:57: fc:44:4d:43:29:a7:ce:59:de:df:ae:12:c4:12:d9:38:05:ff: 69:0b:1b:bf:3c:d7:24:f8:90:80:ed:2c:10:70:0f:ba:90:1c: 08:3b:ea:7b:0c:f6:c9:af:67:7c:24:5a:01:e9:ca:f9:d6:f7: ed:85:96:7a:6b:57:8a:2f:07:d6:26:b7:4a:71:f9:62:8d:f8: f4:7d:e7:6b:14:bb:97:62:17:f0:ee:e4:cf:9b:ec:26:5b:c8: 05:0f:12:cd -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yMzA5MDEw ODM1MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDEwRjhFQjk3QzhCMUY0 MUMzMTE4RUVEMjlDQ0Y1OUJFNDdGNDgxNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEQNogXqcM9DWpPAV54pJR8Gv1a1yfYF0ox0z5BFCb/WafmPpj pEQJLH5pE5ThnxFnyw7uLqqci4dT7ox5YZUIc+A4rRyukDWAapREU8PPjQwWwJ94 QOWRLUIJaFbWVe935K1N7SHu1+CUvjFt7ecGTIWP/mA2Cp7LYTr5d5j+oT7zmb+W 3Xy8SLcqhBDuecGghrvWK/IiEq4VvbKDPO0QElLMbhRihoNsADP/O6bpbk1bpK0h GVomt4rfiEJPBkQys4I7xBxJCZ/31XEsZ+Lsw4aK1Q7Dkqq7LX+6+TUg+RLUNY8G P6x/Bftmor+MW2DVG8OzYii7eDY21IOUOr3vAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUEPjrl8ix9BwxGO7SnM9Zvkf0gVowHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9FUGpybDhpeDlCd3hH TzdTbk05WnZrZjBnVm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCPUHsMA0GCSqGSIb3DQEBCwUAA4IBAQCzrDDB52+wGvj2w8si95eQVvOUwqpB tNM09IWmxMKneaqtoudMcq/V2EuX28qA+4iOZpvSZagCoRteLTnfMo/9zYCiVwye 9Zu7Ie+AOR1Cl+OEd3uYeK7zd2QqaOa7XEWnUBFbfSYMmautUIpgeMHwzLmh7FMO jacE6Fh52QbHhWqqsZ4qGWw1N2IFCIVI1+mzCrLAAi9kwXtFlxWiEZbxeVf8RE1D KafOWd7frhLEEtk4Bf9pCxu/PNck+JCA7SwQcA+6kBwIO+p7DPbJr2d8JFoB6cr5 1vfthZZ6a1eKLwfWJrdKcflijfj0fedrFLuXYhfw7uTPm+wmW8gFDxLN -----END CERTIFICATE-----Generated at Thu May 23 18:48:09 2024 by rpki-client on console-ams.rpki-client.org