$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/mreEGvJxQQodjPrXk5UIcKbNOfk.roa File: mreEGvJxQQodjPrXk5UIcKbNOfk.roa (raw, json) Hash identifier: 1rS+WZ9JPxENwKTs0vU/Emb2h03oICQ81oPZxu2XGCQ= Subject key identifier: 9A:B7:84:1A:F2:71:41:0A:1D:8C:FA:D7:93:95:08:70:A6:CD:39:F9 Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0C9B Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/mreEGvJxQQodjPrXk5UIcKbNOfk.roa Signing time: Mon 26 Aug 2024 05:12:28 +0000 ROA not before: Mon 26 Aug 2024 05:12:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 116.50.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3227 (0xc9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Aug 26 05:12:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9AB7841AF271410A1D8CFAD793950870A6CD39F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2e:9a:c9:b0:2a:9c:39:ea:45:6d:38:46:00: 40:65:78:e7:9e:ce:e9:1a:31:43:c8:88:3d:f0:9b: 73:8b:e6:14:62:1c:0d:4f:90:ad:6c:1f:63:e1:a8: af:0a:bf:74:20:a7:4d:fe:d4:86:60:89:5a:ab:92: de:d8:27:d8:3c:d5:8b:e4:92:cf:c1:2a:e1:52:b3: b0:70:e0:aa:fa:2d:83:60:49:d0:40:73:dc:f4:86: 61:4b:79:1b:64:e0:94:ca:1f:5d:8a:28:76:62:43: d7:8a:b4:6b:b9:ef:41:9b:51:fd:44:d4:a5:64:93: 8a:75:b0:02:27:d4:2c:83:f2:b9:58:9a:7e:0b:51: 22:1b:e5:c0:27:d8:8a:f3:0a:8d:58:95:9b:3c:6e: 94:b3:35:b7:28:98:ab:e2:ab:fc:d2:40:2e:15:af: a9:54:8a:0d:de:85:41:96:39:12:5d:1f:1c:f7:bd: 93:4f:40:b6:61:cc:fa:29:7c:88:b7:ad:cb:dd:c8: ac:9c:d6:39:a7:58:09:24:ff:4b:c8:52:1b:c2:6d: 15:21:18:8c:23:1c:d0:fb:fd:26:6b:c5:57:e7:ba: b5:c3:43:d7:7f:d9:45:f1:bb:2f:1e:4a:0c:63:50: 99:90:89:a0:12:93:4b:57:6c:6e:dc:2a:cd:7a:1e: 18:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B7:84:1A:F2:71:41:0A:1D:8C:FA:D7:93:95:08:70:A6:CD:39:F9 X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/mreEGvJxQQodjPrXk5UIcKbNOfk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 116.50.41.0/24 Signature Algorithm: sha256WithRSAEncryption b0:eb:f8:4e:d4:b3:79:fb:84:7a:d5:dc:23:13:a3:c8:66:47: 8f:7e:d1:3d:c4:b3:74:c1:1d:1f:fd:b5:1d:3a:94:1c:41:02: 5e:a2:d8:c9:be:ef:45:d3:f7:c3:f9:d8:ef:15:d2:eb:82:b4: ef:0d:d4:dc:70:be:9e:d5:67:e5:d9:5b:f9:72:e2:45:38:cd: 42:5e:e2:69:ea:8d:47:f6:10:58:3c:59:f8:92:8e:bb:9c:88: 4a:d8:00:58:65:1b:0d:0d:00:1e:37:5a:24:8c:57:f1:99:5f: e4:89:80:e6:c4:e9:71:7e:ef:91:39:68:76:c4:9c:e7:7a:4b: f9:83:66:43:51:58:b0:83:e2:ad:22:5a:5d:7c:96:c6:f0:63: 2f:85:7d:70:81:b4:4b:19:da:26:8a:2d:9b:42:03:54:f7:e6: 1c:ca:85:76:bd:13:4f:c3:6c:6b:11:9f:34:d5:4a:95:bb:3b: 8f:52:a0:41:3b:f5:00:cf:6c:10:28:84:9e:c2:1b:5d:7d:66: 86:cd:d3:ee:09:60:aa:b4:53:3a:dd:4f:c9:61:ed:46:a0:f7: 7e:ab:e3:4e:03:97:11:19:b9:ec:af:0c:d3:e5:87:5b:10:70: a3:ad:f4:a0:67:7e:82:95:fb:ac:ff:eb:14:12:0d:bc:51:4c: 9c:4d:83:3c -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNDA4MjYw NTEyMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlBQjc4NDFBRjI3MTQx MEExRDhDRkFENzkzOTUwODcwQTZDRDM5RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVLprJsCqcOepFbThGAEBleOeezukaMUPIiD3wm3OL5hRiHA1P kK1sH2PhqK8Kv3Qgp03+1IZgiVqrkt7YJ9g81Yvkks/BKuFSs7Bw4Kr6LYNgSdBA c9z0hmFLeRtk4JTKH12KKHZiQ9eKtGu570GbUf1E1KVkk4p1sAIn1CyD8rlYmn4L USIb5cAn2IrzCo1YlZs8bpSzNbcomKviq/zSQC4Vr6lUig3ehUGWORJdHxz3vZNP QLZhzPopfIi3rcvdyKyc1jmnWAkk/0vIUhvCbRUhGIwjHND7/SZrxVfnurXDQ9d/ 2UXxuy8eSgxjUJmQiaASk0tXbG7cKs16HhjTAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUmreEGvJxQQodjPrXk5UIcKbNOfkwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9tcmVFR3ZKeFFRb2Rq UHJYazVVSWNLYk5PZmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAdDIpMA0GCSqGSIb3DQEBCwUAA4IBAQCw6/hO1LN5+4R61dwjE6PIZkePftE9 xLN0wR0f/bUdOpQcQQJeotjJvu9F0/fD+djvFdLrgrTvDdTccL6e1Wfl2Vv5cuJF OM1CXuJp6o1H9hBYPFn4ko67nIhK2ABYZRsNDQAeN1okjFfxmV/kiYDmxOlxfu+R OWh2xJznekv5g2ZDUViwg+KtIlpdfJbG8GMvhX1wgbRLGdomii2bQgNU9+YcyoV2 vRNPw2xrEZ801UqVuzuPUqBBO/UAz2wQKISewhtdfWaGzdPuCWCqtFM63U/JYe1G oPd+q+NOA5cRGbnsrwzT5YdbEHCjrfSgZ36Clfus/+sUEg28UUycTYM8 -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:24 2024 by rpki-client on console-fra.rpki-client.org