$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Ii6G2jwtaoVKxyP8fW2u7RWPk7g.roa File: Ii6G2jwtaoVKxyP8fW2u7RWPk7g.roa (raw, json) Hash identifier: S3K6uVC68AmTzWV6zWlR9oAC8f9M3ettt8mKiCiFxws= Subject key identifier: 22:2E:86:DA:3C:2D:6A:85:4A:C7:23:FC:7D:6D:AE:ED:15:8F:93:B8 Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0B8B Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Ii6G2jwtaoVKxyP8fW2u7RWPk7g.roa Signing time: Fri 01 Sep 2023 08:35:38 +0000 ROA not before: Fri 01 Sep 2023 08:35:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 198949 IP address blocks: 61.65.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 14:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2955 (0xb8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Sep 1 08:35:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=222E86DA3C2D6A854AC723FC7D6DAEED158F93B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0c:c0:d9:b3:94:09:3e:d4:f4:fb:e4:ad:ff: 6d:3e:21:7b:c5:fb:93:dc:56:e6:48:ea:12:46:f6: c9:e7:ea:d6:7b:63:45:27:08:9d:40:e0:3b:84:49: 22:6f:00:35:a1:24:6d:a8:b7:0e:6d:ee:6f:64:8d: 88:fb:76:ce:30:33:91:d3:4a:2d:37:42:90:76:3d: 44:95:bc:75:bb:ae:d4:66:9e:1f:5f:bb:89:17:0c: fd:b0:24:0c:9c:72:e9:9a:2d:64:8f:db:85:94:d6: de:ce:d8:44:51:58:2c:fd:5c:f9:b7:71:f7:80:26: e1:0c:b9:15:74:bf:bf:56:35:2d:bf:cd:bc:b2:ec: 17:b4:90:9e:fa:a9:e0:d5:f8:8e:91:ee:07:8d:24: 76:a1:a2:62:6d:36:75:83:28:6b:c7:41:b4:bf:6d: 4f:6f:32:37:03:9a:45:3a:98:2c:0e:f8:3a:32:2c: 92:b2:be:ff:1a:05:90:14:ff:7c:f8:7a:bb:d9:5a: b6:7c:fc:c5:de:31:ee:eb:5d:dd:d8:28:18:0c:83: da:75:87:04:13:fb:70:f9:af:b2:96:a4:95:21:73: 22:69:e3:d4:32:f3:30:ee:fb:01:19:b8:6e:70:95: a4:b3:3c:a9:92:e2:b0:8f:f0:7e:42:f4:ea:36:bb: 2b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:2E:86:DA:3C:2D:6A:85:4A:C7:23:FC:7D:6D:AE:ED:15:8F:93:B8 X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Ii6G2jwtaoVKxyP8fW2u7RWPk7g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.239.0/24 Signature Algorithm: sha256WithRSAEncryption ba:82:d9:63:26:b0:d2:29:44:29:9c:17:0a:ee:86:4e:cb:10: 9e:91:c7:64:91:07:30:57:b6:6d:cd:d7:96:dc:5a:6f:36:84: 0d:16:19:62:71:8f:22:85:bc:34:11:49:7a:fc:68:9d:17:f9: df:80:25:ba:44:5f:6d:69:a5:ef:8f:fd:18:d3:3b:80:cb:c7: be:5a:da:9a:25:2c:b1:80:25:b4:bb:3c:c2:53:3c:1c:c7:ba: 24:e0:e7:c2:d8:fc:61:e4:4c:29:b5:78:58:0d:da:d8:7c:fb: d6:14:df:c2:e6:10:33:e5:34:7b:95:5a:8c:aa:59:79:68:a3: dc:38:ef:48:e5:2e:dc:8d:b1:c6:55:b6:80:62:77:31:de:f7: 45:3c:28:1b:82:db:b4:83:ff:f4:20:f6:ba:10:97:9d:59:db: dd:46:6a:9f:5d:a9:fb:0f:57:70:88:5e:b8:cd:6f:30:24:7a: 71:d2:97:c7:7f:f5:f9:7a:5e:61:16:8c:fb:7a:de:86:08:9d: 75:13:0f:d1:c2:88:82:16:6d:e7:a6:dd:cd:c4:8c:38:c8:2c: 1d:bf:41:f0:be:17:1f:1a:92:c3:46:4d:3b:27:d3:31:f4:96: d3:b3:5b:89:23:92:ee:6b:ef:e9:6a:7a:65:7d:09:04:7e:98: 86:40:84:8a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICC4swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yMzA5MDEw ODM1MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIyMkU4NkRBM0MyRDZB ODU0QUM3MjNGQzdENkRBRUVEMTU4RjkzQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXDMDZs5QJPtT0++St/20+IXvF+5PcVuZI6hJG9snn6tZ7Y0Un CJ1A4DuESSJvADWhJG2otw5t7m9kjYj7ds4wM5HTSi03QpB2PUSVvHW7rtRmnh9f u4kXDP2wJAyccumaLWSP24WU1t7O2ERRWCz9XPm3cfeAJuEMuRV0v79WNS2/zbyy 7Be0kJ76qeDV+I6R7geNJHahomJtNnWDKGvHQbS/bU9vMjcDmkU6mCwO+DoyLJKy vv8aBZAU/3z4ervZWrZ8/MXeMe7rXd3YKBgMg9p1hwQT+3D5r7KWpJUhcyJp49Qy 8zDu+wEZuG5wlaSzPKmS4rCP8H5C9Oo2uyuVAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUIi6G2jwtaoVKxyP8fW2u7RWPk7gwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9JaTZHMmp3dGFvVkt4 eVA4ZlcydTdSV1BrN2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAPUHvMA0GCSqGSIb3DQEBCwUAA4IBAQC6gtljJrDSKUQpnBcK7oZOyxCekcdk kQcwV7ZtzdeW3FpvNoQNFhlicY8ihbw0EUl6/GidF/nfgCW6RF9taaXvj/0Y0zuA y8e+WtqaJSyxgCW0uzzCUzwcx7ok4OfC2Pxh5EwptXhYDdrYfPvWFN/C5hAz5TR7 lVqMqll5aKPcOO9I5S7cjbHGVbaAYncx3vdFPCgbgtu0g//0IPa6EJedWdvdRmqf Xan7D1dwiF64zW8wJHpx0pfHf/X5el5hFoz7et6GCJ11Ew/RwoiCFm3npt3NxIw4 yCwdv0HwvhcfGpLDRk07J9Mx9JbTs1uJI5Lua+/panplfQkEfpiGQISK -----END CERTIFICATE-----Generated at Mon May 6 01:02:46 2024 by rpki-client on console-ams.rpki-client.org