$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Eyr2o4UED9l0bN_Xc3XRtAbLN4k.roa File: Eyr2o4UED9l0bN_Xc3XRtAbLN4k.roa (raw, json) Hash identifier: Z1fX6XT6XLNcmapZZw6Hs35GMM3+cnnu4IwQ5OomUTw= Subject key identifier: 13:2A:F6:A3:85:04:0F:D9:74:6C:DF:D7:73:75:D1:B4:06:CB:37:89 Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0CCC Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Eyr2o4UED9l0bN_Xc3XRtAbLN4k.roa Signing time: Thu 24 Oct 2024 08:04:21 +0000 ROA not before: Thu 24 Oct 2024 08:04:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 2401:1780::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3276 (0xccc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Oct 24 08:04:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=132AF6A385040FD9746CDFD77375D1B406CB3789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b4:0f:2e:da:05:e7:5e:1e:72:96:74:6d:db: bc:97:fe:d5:15:6b:41:2d:67:ff:27:c9:80:89:28: c7:c7:e0:61:6c:73:11:9a:64:8f:06:f0:f1:a8:a5: 1a:2d:98:23:e2:b2:0a:0d:38:3c:21:f3:b0:cd:90: 46:ce:41:a2:98:19:49:97:73:4c:d8:64:5e:cc:cc: 90:9f:a7:b0:42:8c:31:84:b2:22:ed:a2:77:fd:20: 52:79:4b:27:d4:2a:ac:5f:89:e6:b4:0d:d7:bf:0d: 7e:86:5d:ca:de:2c:e2:2f:66:69:cf:b2:0a:01:96: 8c:23:35:2a:3d:8d:9f:3d:b5:7f:91:4d:60:91:bd: 28:43:cb:94:f6:d3:40:21:9d:6c:77:37:a8:66:d1: 15:88:ee:21:84:93:ee:d4:4b:7c:96:25:e8:c0:89: a8:38:72:15:a2:90:ad:9d:9e:f1:c6:72:04:37:ab: 39:79:ad:16:8d:b1:a0:c8:ca:a0:1c:71:16:f6:25: 5a:36:39:c6:09:55:e8:84:50:ce:a4:02:be:62:62: 53:4d:47:a6:70:67:0f:6d:aa:39:ae:bd:16:23:df: b5:60:04:6e:f1:d9:05:ad:ab:72:f8:5a:d7:39:9c: dd:8c:30:62:54:88:e1:40:50:4e:72:02:ef:c4:4f: 7f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2A:F6:A3:85:04:0F:D9:74:6C:DF:D7:73:75:D1:B4:06:CB:37:89 X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Eyr2o4UED9l0bN_Xc3XRtAbLN4k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:1780::/32 Signature Algorithm: sha256WithRSAEncryption 0b:10:9a:26:15:f3:f6:d7:12:fc:48:17:ae:19:14:3d:9f:2c: 74:db:85:e9:a4:c6:82:38:88:46:56:05:1e:47:9c:a1:38:bd: a1:59:d5:e6:dc:39:c4:16:09:b4:b9:46:9f:eb:7c:66:73:c0: be:ec:20:a2:62:26:f1:63:d6:ad:74:b6:58:19:51:4a:d3:a8: 17:7f:32:9e:86:08:54:37:a8:ab:4a:31:98:d4:f2:1f:c4:0c: f8:ed:73:7f:46:70:8a:a3:1c:5e:ca:f3:eb:13:c9:0c:1b:f2: 71:ac:82:e7:e1:a1:ba:2a:e5:81:e4:9e:2d:84:6b:68:d1:1a: d8:54:6e:65:2e:7b:fc:b6:b2:7d:15:6f:02:e3:15:a7:05:1a: d2:48:cf:83:63:e3:00:dc:4e:d9:d8:8a:12:6a:e8:48:06:e1: f6:3a:08:4a:db:29:02:d0:ca:3f:d8:44:4d:55:e4:2c:e4:78: 13:b9:14:5f:8d:75:c8:a4:19:80:ea:31:c0:5e:f4:4e:df:e1: eb:52:6d:1d:62:fe:66:c1:7a:ae:9d:dc:89:2f:35:57:a1:0b: 4a:f4:b6:6a:d7:94:c5:79:95:06:8a:27:15:81:11:7e:05:1c: 98:56:b3:1b:fb:a3:6e:0d:ff:22:83:05:6e:11:6c:ac:7e:5f: bc:87:30:72 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNDEwMjQw ODA0MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEzMkFGNkEzODUwNDBG RDk3NDZDREZENzczNzVEMUI0MDZDQjM3ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDetA8u2gXnXh5ylnRt27yX/tUVa0EtZ/8nyYCJKMfH4GFscxGa ZI8G8PGopRotmCPisgoNODwh87DNkEbOQaKYGUmXc0zYZF7MzJCfp7BCjDGEsiLt onf9IFJ5SyfUKqxfiea0Dde/DX6GXcreLOIvZmnPsgoBlowjNSo9jZ89tX+RTWCR vShDy5T200AhnWx3N6hm0RWI7iGEk+7US3yWJejAiag4chWikK2dnvHGcgQ3qzl5 rRaNsaDIyqAccRb2JVo2OcYJVeiEUM6kAr5iYlNNR6ZwZw9tqjmuvRYj37VgBG7x 2QWtq3L4Wtc5nN2MMGJUiOFAUE5yAu/ET3/HAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUEyr2o4UED9l0bN/Xc3XRtAbLN4kwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9FeXIybzRVRUQ5bDBi Tl9YYzNYUnRBYkxONGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAEXgDANBgkqhkiG9w0BAQsFAAOCAQEACxCaJhXz9tcS/EgXrhkUPZ8sdNuF 6aTGgjiIRlYFHkecoTi9oVnV5tw5xBYJtLlGn+t8ZnPAvuwgomIm8WPWrXS2WBlR StOoF38ynoYIVDeoq0oxmNTyH8QM+O1zf0ZwiqMcXsrz6xPJDBvycayC5+Ghuirl geSeLYRraNEa2FRuZS57/LayfRVvAuMVpwUa0kjPg2PjANxO2diKEmroSAbh9joI StspAtDKP9hETVXkLOR4E7kUX411yKQZgOoxwF70Tt/h61JtHWL+ZsF6rp3ciS81 V6ELSvS2ateUxXmVBoonFYERfgUcmFazG/ujbg3/IoMFbhFsrH5fvIcwcg== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:26 2024 by rpki-client on console-ams.rpki-client.org