$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/geENs46qInOmCyoEh9lNvo4sR5Q.roa File: geENs46qInOmCyoEh9lNvo4sR5Q.roa (raw, json) Hash identifier: yXMpkghh/xsvlZgObeAwoSjJf9PqzTUnlTA1MySwJP8= Subject key identifier: 81:E1:0D:B3:8E:AA:22:73:A6:0B:2A:04:87:D9:4D:BE:8E:2C:47:94 Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0D16 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/geENs46qInOmCyoEh9lNvo4sR5Q.roa Signing time: Mon 10 Feb 2025 14:04:32 +0000 ROA not before: Mon 10 Feb 2025 14:04:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 2401:1780::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3350 (0xd16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Feb 10 14:04:32 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=81E10DB38EAA2273A60B2A0487D94DBE8E2C4794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2b:4a:1f:22:3e:be:5a:3c:93:3e:e0:6f:dc: af:d9:22:3d:6a:5d:0f:ea:14:2c:bf:c4:2d:62:1a: 5d:de:0b:f7:87:81:ca:26:45:eb:b0:ab:e9:17:a5: a7:b5:4a:f7:98:16:ad:64:2d:ed:b6:eb:3f:6d:64: 94:8e:71:a1:82:8f:e1:96:5a:10:b3:7c:95:63:02: da:24:f7:49:bd:24:2d:81:2c:c8:9d:ae:31:5f:7f: 34:73:40:48:9e:11:d3:86:97:b1:4f:42:49:1a:b6: 53:9d:db:ff:a3:93:a0:e6:59:d2:c2:57:cd:b9:0f: 89:cc:7f:15:9d:ad:16:4a:e5:38:46:35:9e:d1:6b: 44:7e:35:f6:e0:f1:3c:67:65:d3:22:86:1b:45:0d: a5:bd:4b:ce:51:2d:11:15:c0:a5:93:d6:2e:9b:c6: 7f:70:f2:57:dc:b2:12:61:d8:bd:27:2e:05:c9:de: d2:09:83:e1:a1:7f:8f:4d:10:ed:8d:e3:fc:22:34: 5c:5c:d4:7b:9a:1f:3a:93:82:eb:fa:79:1b:64:1f: 11:05:15:78:77:35:fe:ef:f7:0a:3f:02:12:21:8a: fd:6a:88:d0:93:ee:bc:f5:09:02:cd:e0:2f:54:27: cb:18:84:fb:52:6b:f9:fa:57:06:b0:e4:5d:ea:b8: 04:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:E1:0D:B3:8E:AA:22:73:A6:0B:2A:04:87:D9:4D:BE:8E:2C:47:94 X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/geENs46qInOmCyoEh9lNvo4sR5Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:1780::/32 Signature Algorithm: sha256WithRSAEncryption 4f:4b:f6:4f:e6:c9:d6:b3:ba:7e:16:1b:78:20:36:32:b6:d9: 97:35:4f:fb:55:54:f9:b8:d4:22:06:8a:79:77:a3:b8:c8:f9: 50:cd:b1:a3:2f:31:ee:6b:10:94:2a:49:16:57:97:08:79:5d: 72:9f:bc:8c:05:81:2b:b6:05:d7:32:13:50:29:1e:b0:93:8e: c1:53:db:f5:74:ae:63:f0:28:08:d8:21:5f:5f:a6:91:b9:81: 87:39:45:d9:66:44:33:01:04:e1:f2:b0:20:a0:53:9b:8d:1e: 30:fc:d1:f4:b7:42:b7:1c:26:69:16:61:8e:5a:3c:fb:f2:df: 5e:3e:b7:b9:6d:d1:37:89:9b:60:b1:6f:9a:82:07:84:7c:e6: 28:aa:2e:dc:24:15:97:27:0d:92:04:7a:bd:b9:cf:df:07:c3: 99:db:d6:55:b6:17:e3:c6:a9:73:3d:ec:d2:77:53:bf:3e:42: ed:81:48:07:e1:fb:80:20:c2:1d:3b:54:91:11:aa:c3:af:d6: 82:76:b0:66:9d:54:8d:fa:94:62:64:42:80:a7:00:fa:f7:e1: 28:0d:38:90:c9:4c:69:66:1b:4b:a8:ba:46:f3:61:d3:d7:20: fe:e1:45:92:c7:0b:46:51:10:fd:f2:ba:b6:c1:65:99:15:48: 42:e6:a1:f4 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDRYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNTAyMTAx NDA0MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgxRTEwREIzOEVBQTIy NzNBNjBCMkEwNDg3RDk0REJFOEUyQzQ3OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoK0ofIj6+WjyTPuBv3K/ZIj1qXQ/qFCy/xC1iGl3eC/eHgcom Reuwq+kXpae1SveYFq1kLe226z9tZJSOcaGCj+GWWhCzfJVjAtok90m9JC2BLMid rjFffzRzQEieEdOGl7FPQkkatlOd2/+jk6DmWdLCV825D4nMfxWdrRZK5ThGNZ7R a0R+Nfbg8TxnZdMihhtFDaW9S85RLREVwKWT1i6bxn9w8lfcshJh2L0nLgXJ3tIJ g+Ghf49NEO2N4/wiNFxc1HuaHzqTguv6eRtkHxEFFXh3Nf7v9wo/AhIhiv1qiNCT 7rz1CQLN4C9UJ8sYhPtSa/n6Vwaw5F3quASzAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUgeENs46qInOmCyoEh9lNvo4sR5QwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9nZUVOczQ2cUluT21D eW9FaDlsTnZvNHNSNVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAEXgDANBgkqhkiG9w0BAQsFAAOCAQEAT0v2T+bJ1rO6fhYbeCA2MrbZlzVP +1VU+bjUIgaKeXejuMj5UM2xoy8x7msQlCpJFleXCHldcp+8jAWBK7YF1zITUCke sJOOwVPb9XSuY/AoCNghX1+mkbmBhzlF2WZEMwEE4fKwIKBTm40eMPzR9LdCtxwm aRZhjlo8+/LfXj63uW3RN4mbYLFvmoIHhHzmKKou3CQVlycNkgR6vbnP3wfDmdvW VbYX48apcz3s0ndTvz5C7YFIB+H7gCDCHTtUkRGqw6/WgnawZp1UjfqUYmRCgKcA +vfhKA04kMlMaWYbS6i6RvNh09cg/uFFkscLRlEQ/fK6tsFlmRVIQuah9A== -----END CERTIFICATE-----Generated at Sun Apr 6 19:59:20 2025 by rpki-client