$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/VaVVKchW3CP3DSDl4PK48y87Gd8.roa File: VaVVKchW3CP3DSDl4PK48y87Gd8.roa (raw, json) Hash identifier: OGf/Ln98Opu9vpS+4q2EiyiTW2T07qX4B2o4Jw7/eno= Subject key identifier: 55:A5:55:29:C8:56:DC:23:F7:0D:20:E5:E0:F2:B8:F3:2F:3B:19:DF Certificate issuer: /CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Certificate serial: 0C4B Authority key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/VaVVKchW3CP3DSDl4PK48y87Gd8.roa Signing time: Mon 26 Aug 2024 05:12:27 +0000 ROA not before: Mon 26 Aug 2024 05:12:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 159.117.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 12:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3147 (0xc4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Validity Not Before: Aug 26 05:12:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=55A55529C856DC23F70D20E5E0F2B8F32F3B19DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5f:d7:1b:53:e2:55:22:07:7f:cf:35:6c:66: 0c:7d:b3:3d:a5:1a:7b:ec:17:13:03:41:ca:96:73: 1f:1b:80:6e:95:40:28:25:4d:ea:ad:bb:fa:57:af: 41:ce:37:c2:0f:1a:02:6f:ef:77:2b:4c:cd:59:9b: c1:81:a6:bf:72:29:fb:3b:16:9a:c7:1c:37:40:41: d2:dd:ad:33:bf:22:85:3c:77:f1:46:b2:f5:cc:d5: fb:e2:cd:f2:5f:a4:c3:a3:9f:12:5c:d1:ef:92:1e: 58:bf:53:1f:86:25:3f:52:13:6c:48:3e:90:e7:fa: 8f:33:a5:fc:dd:3b:74:78:13:e5:d7:fa:56:95:51: b1:87:95:2c:33:ef:84:62:01:23:0c:6e:6c:92:2a: eb:f3:b5:7d:95:00:38:ac:e2:b3:df:fe:c9:40:37: 63:c9:4d:f5:a3:83:91:50:f9:29:12:7a:95:ae:f5: ab:22:11:bf:ff:ab:11:d9:64:aa:cd:a3:3d:ab:3f: e0:e1:eb:b0:a0:d7:ed:b4:3f:a0:2b:a2:1d:b3:48: 88:fa:ea:39:3a:e2:23:ed:7c:77:7f:97:b7:43:1c: 4f:10:3b:02:80:0e:76:58:e9:5a:46:8e:3e:df:33: a7:88:1e:1c:22:7d:47:95:f4:9d:cc:db:ee:b9:01: 2b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:A5:55:29:C8:56:DC:23:F7:0D:20:E5:E0:F2:B8:F3:2F:3B:19:DF X509v3 Authority Key Identifier: keyid:F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/VaVVKchW3CP3DSDl4PK48y87Gd8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 159.117.84.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:59:60:e8:82:06:86:79:30:59:5a:d8:6e:59:db:6e:f6:a2: 0e:c8:ee:d6:a2:fe:92:32:27:1a:28:3d:8e:2a:7e:79:be:aa: 24:62:fc:b5:60:53:45:0e:43:47:56:36:b0:ef:a5:94:88:4d: 8a:88:d8:fd:b5:9c:d7:81:9b:00:88:e2:1b:13:65:cf:0f:57: 78:aa:23:d0:ac:67:de:72:af:ea:6f:b7:68:ee:ea:b3:2e:3b: a2:b1:3e:6a:00:74:c7:6f:75:03:48:09:f1:06:7c:43:28:12: e3:00:db:92:80:65:63:6b:6c:dc:02:37:ca:7d:8e:88:24:a0: 74:ab:69:2e:a1:fa:f9:d2:44:4e:92:b2:d7:d0:90:fc:c8:6a: 4e:33:d7:6f:ad:aa:78:0f:bb:8b:2a:43:dc:59:c7:63:0b:bd: 65:da:8a:eb:e2:0b:cb:d0:3b:46:23:08:60:ef:8f:77:cb:4e: 8c:f8:a5:4f:df:b8:1d:73:33:65:4c:4d:bc:21:d7:55:c5:2e: 9e:ad:4b:aa:14:1f:1b:e3:80:a2:aa:c8:39:87:5e:c2:c2:cc: dc:ff:0b:fe:1b:66:01:37:60:10:ea:cc:92:c5:a4:5d:fa:90: cd:28:5c:88:9e:03:c1:79:a3:85:87:76:a6:29:52:3f:ce:e9: 0b:5e:67:9d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDEswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjg1 OEQwMDAwQzdDNDZBOTg2QjJFQjk2ODE1RjA2QUUyNjkzQTlEMDAeFw0yNDA4MjYw NTEyMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1QTU1NTI5Qzg1NkRD MjNGNzBEMjBFNUUwRjJCOEYzMkYzQjE5REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDX9cbU+JVIgd/zzVsZgx9sz2lGnvsFxMDQcqWcx8bgG6VQCgl Teqtu/pXr0HON8IPGgJv73crTM1Zm8GBpr9yKfs7FprHHDdAQdLdrTO/IoU8d/FG svXM1fvizfJfpMOjnxJc0e+SHli/Ux+GJT9SE2xIPpDn+o8zpfzdO3R4E+XX+laV UbGHlSwz74RiASMMbmySKuvztX2VADis4rPf/slAN2PJTfWjg5FQ+SkSepWu9asi Eb//qxHZZKrNoz2rP+Dh67Cg1+20P6Aroh2zSIj66jk64iPtfHd/l7dDHE8QOwKA DnZY6VpGjj7fM6eIHhwifUeV9J3M2+65ASvxAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUVaVVKchW3CP3DSDl4PK48y87Gd8wHwYDVR0jBBgwFoAU+FjQAAx8RqmGsuuW gV8GriaTqdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvLUZqUUFBeDhScW1Hc3V1V2dWOEdyaWFUcWRBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS8tRmpRQUF4OFJxbUdzdXVXZ1Y4R3JpYVRxZEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9WYVZWS2NoVzNDUDNE U0RsNFBLNDh5ODdHZDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAn3VUMA0GCSqGSIb3DQEBCwUAA4IBAQBvWWDoggaGeTBZWthuWdtu9qIOyO7W ov6SMicaKD2OKn55vqokYvy1YFNFDkNHVjaw76WUiE2KiNj9tZzXgZsAiOIbE2XP D1d4qiPQrGfecq/qb7do7uqzLjuisT5qAHTHb3UDSAnxBnxDKBLjANuSgGVja2zc AjfKfY6IJKB0q2kuofr50kROkrLX0JD8yGpOM9dvrap4D7uLKkPcWcdjC71l2orr 4gvL0DtGIwhg7493y06M+KVP37gdczNlTE28IddVxS6erUuqFB8b44Ciqsg5h17C wszc/wv+G2YBN2AQ6sySxaRd+pDNKFyIngPBeaOFh3amKVI/zukLXmed -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:24 2024 by rpki-client on console-fra.rpki-client.org