$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/pc3OI3yVroziSMFU0SermV3ZPBM.roa File: pc3OI3yVroziSMFU0SermV3ZPBM.roa (raw, json) Hash identifier: H4t+vrugP/rQHRxKhW6I/KpVHk4WsUFJUYJLB1I4NgI= Subject key identifier: A5:CD:CE:23:7C:95:AE:8C:E2:48:C1:54:D1:27:AB:99:5D:D9:3C:13 Certificate issuer: /CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Certificate serial: 0C4A Authority key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/pc3OI3yVroziSMFU0SermV3ZPBM.roa Signing time: Mon 26 Aug 2024 05:12:26 +0000 ROA not before: Mon 26 Aug 2024 05:12:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 159.117.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 12:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3146 (0xc4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Validity Not Before: Aug 26 05:12:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A5CDCE237C95AE8CE248C154D127AB995DD93C13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cf:7c:d4:67:72:6e:2b:0c:91:84:52:12:3d: 01:a4:01:c2:70:9c:15:a1:9f:f7:00:4b:a0:f5:8c: ac:a1:e5:18:0f:dc:3a:e6:19:16:27:91:73:b5:58: 45:44:1c:be:82:14:e0:22:30:75:a8:4e:42:ee:9b: c7:69:b7:43:8e:49:24:9d:e7:31:df:d5:21:bf:e6: 5d:8b:27:e9:67:e2:0d:37:a6:58:7c:4c:95:0a:64: b9:b6:75:24:fd:8f:ae:45:94:3a:23:c9:1e:4c:f2: a5:aa:1c:4d:7c:4f:28:01:5c:29:85:b3:3a:61:76: cb:69:22:d9:d6:7d:fb:e7:de:3e:2e:65:20:f7:a2: 8b:c3:1b:b6:1c:51:7e:28:59:1e:ad:a7:b6:b7:40: e6:5d:ee:c9:0b:98:59:fc:6b:a9:b0:9c:28:f3:cd: c0:17:e9:ea:a8:f4:92:0f:f7:d4:8e:fd:bb:60:25: ae:61:89:b5:3a:9a:13:1c:ca:a1:8e:c0:f2:00:94: aa:9c:7a:b3:f9:b2:28:0b:8b:bf:a6:0a:59:f6:cd: 49:63:e4:4c:09:0f:d4:c8:c4:e7:53:47:e3:8d:ac: 76:51:14:23:b9:aa:da:18:7f:95:0c:e5:bd:60:62: 31:b3:56:88:98:27:2e:f0:d9:aa:16:c4:63:f8:f1: b9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:CD:CE:23:7C:95:AE:8C:E2:48:C1:54:D1:27:AB:99:5D:D9:3C:13 X509v3 Authority Key Identifier: keyid:F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/pc3OI3yVroziSMFU0SermV3ZPBM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 159.117.64.0/19 Signature Algorithm: sha256WithRSAEncryption 5b:66:3e:64:c7:ef:24:dd:8d:16:37:bc:36:c0:ab:33:14:d7: 99:e6:77:67:ea:15:9c:6b:18:15:e5:99:8c:b5:b3:8a:8f:c4: 63:ac:46:58:12:f1:07:42:7f:22:a9:c0:c9:09:cf:87:37:51: 6e:4f:5a:8f:72:cf:cd:05:04:f6:ed:dd:e6:90:79:a8:28:14: ac:21:5d:17:a3:d0:1e:3a:45:da:5a:8f:a0:e2:68:2f:0f:e9: 4c:9c:73:59:0a:23:85:c7:13:e3:1c:33:51:87:f1:4e:ce:d7: 06:f6:18:5a:70:5d:63:82:c1:63:cd:d2:43:f2:37:4b:1e:3d: 61:c6:dc:7c:8a:fb:b3:ea:eb:bc:b3:33:b4:70:be:68:9c:33: c4:81:ab:8f:c2:df:92:83:5e:5b:af:ed:18:ee:5a:89:08:1c: 88:57:17:bd:3b:a6:eb:8f:dd:cc:db:7a:48:5b:9d:1a:82:5a: 48:6d:33:73:62:f0:c0:8f:d6:1f:7d:46:bb:e0:45:5b:c2:f1: 24:50:0f:5f:02:6f:49:51:ee:c8:b6:49:c8:40:bb:98:21:49: 0c:2c:40:43:44:03:e3:ee:29:66:d8:bd:c3:79:1d:86:27:6e: ac:3e:19:f4:dc:b7:c6:e8:d0:a1:bb:1c:d3:7a:4e:cc:35:0c: 54:23:2e:f5 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDEowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjg1 OEQwMDAwQzdDNDZBOTg2QjJFQjk2ODE1RjA2QUUyNjkzQTlEMDAeFw0yNDA4MjYw NTEyMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE1Q0RDRTIzN0M5NUFF OENFMjQ4QzE1NEQxMjdBQjk5NUREOTNDMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFz3zUZ3JuKwyRhFISPQGkAcJwnBWhn/cAS6D1jKyh5RgP3Drm GRYnkXO1WEVEHL6CFOAiMHWoTkLum8dpt0OOSSSd5zHf1SG/5l2LJ+ln4g03plh8 TJUKZLm2dST9j65FlDojyR5M8qWqHE18TygBXCmFszphdstpItnWffvn3j4uZSD3 oovDG7YcUX4oWR6tp7a3QOZd7skLmFn8a6mwnCjzzcAX6eqo9JIP99SO/btgJa5h ibU6mhMcyqGOwPIAlKqcerP5sigLi7+mCln2zUlj5EwJD9TIxOdTR+ONrHZRFCO5 qtoYf5UM5b1gYjGzVoiYJy7w2aoWxGP48bnvAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUpc3OI3yVroziSMFU0SermV3ZPBMwHwYDVR0jBBgwFoAU+FjQAAx8RqmGsuuW gV8GriaTqdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvLUZqUUFBeDhScW1Hc3V1V2dWOEdyaWFUcWRBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS8tRmpRQUF4OFJxbUdzdXVXZ1Y4R3JpYVRxZEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9wYzNPSTN5VnJvemlT TUZVMFNlcm1WM1pQQk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFn3VAMA0GCSqGSIb3DQEBCwUAA4IBAQBbZj5kx+8k3Y0WN7w2wKszFNeZ5ndn 6hWcaxgV5ZmMtbOKj8RjrEZYEvEHQn8iqcDJCc+HN1FuT1qPcs/NBQT27d3mkHmo KBSsIV0Xo9AeOkXaWo+g4mgvD+lMnHNZCiOFxxPjHDNRh/FOztcG9hhacF1jgsFj zdJD8jdLHj1hxtx8ivuz6uu8szO0cL5onDPEgauPwt+Sg15br+0Y7lqJCByIVxe9 O6brj93M23pIW50aglpIbTNzYvDAj9YffUa74EVbwvEkUA9fAm9JUe7ItknIQLuY IUkMLEBDRAPj7ilm2L3DeR2GJ26sPhn03LfG6NChuxzTek7MNQxUIy71 -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:24 2024 by rpki-client on console-fra.rpki-client.org