$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/qlydHYs3KJVz06YUKOm2SFa0Cd8.roa File: qlydHYs3KJVz06YUKOm2SFa0Cd8.roa (raw, json) Hash identifier: pAi+fUFDX9MgGMWXI96WedHhTCoDGNsJ70jmM5f3CWY= Subject key identifier: AA:5C:9D:1D:8B:37:28:95:73:D3:A6:14:28:E9:B6:48:56:B4:09:DF Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB Certificate serial: 0C98 Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/qlydHYs3KJVz06YUKOm2SFa0Cd8.roa Signing time: Mon 26 Aug 2024 05:12:27 +0000 ROA not before: Mon 26 Aug 2024 05:12:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 61.65.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB Validity Not Before: Aug 26 05:12:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AA5C9D1D8B37289573D3A61428E9B64856B409DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:67:bf:ec:6c:9e:9e:a6:f0:9f:19:11:9f:d5: 38:ab:9f:16:b9:ee:89:61:88:50:4c:7b:7a:35:a5: 70:e2:01:31:4c:9e:fa:83:71:c5:b9:b5:1b:74:4d: f8:11:b6:c3:32:02:3b:9f:2b:3d:48:84:8d:75:dc: a3:fd:03:45:a9:ac:73:64:e9:16:af:7b:41:76:9e: bc:97:35:4c:e7:4e:cc:d7:1c:46:cc:de:0e:49:05: c0:85:6d:ee:4a:94:b7:d0:b3:95:16:4c:c9:f9:c4: 2b:01:58:06:8b:2a:98:fd:00:b2:46:27:01:03:53: dd:c7:25:a6:1f:66:a4:ed:a1:f2:cd:c0:8f:31:6a: f5:46:a4:27:cf:2b:96:94:30:5e:08:e4:04:d1:18: 28:e2:ec:80:98:21:a1:c1:a2:f0:e5:a2:d0:53:7e: 69:84:db:1c:a1:f7:fa:d2:fd:4b:eb:c4:2b:c2:fc: 00:b5:3f:e7:41:18:0a:01:34:3e:8e:de:54:d0:d5: d6:8a:48:2c:8b:a0:a1:32:e7:72:30:50:fa:dc:ab: e2:24:1e:df:89:b4:28:0f:5d:7e:33:18:1e:3a:b0: 96:a3:84:7b:5c:9b:ed:07:5f:7c:e7:50:44:68:a5: ed:c6:3f:6e:81:ff:71:e9:5b:04:51:8e:df:4e:2f: fb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:5C:9D:1D:8B:37:28:95:73:D3:A6:14:28:E9:B6:48:56:B4:09:DF X509v3 Authority Key Identifier: keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/qlydHYs3KJVz06YUKOm2SFa0Cd8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.224.0/19 Signature Algorithm: sha256WithRSAEncryption 5e:5e:f4:3f:b7:b4:1c:3e:82:b0:2c:af:e0:65:90:3c:4c:96: ab:c0:52:0c:59:7b:9c:f4:d9:a2:82:ec:91:56:ec:bb:82:d5: f8:a7:ef:fe:26:ab:c7:d8:43:5a:7f:ef:46:2b:b2:6e:4f:aa: 9c:ec:fa:e4:17:eb:57:b3:d2:13:48:cd:e1:e8:24:42:bf:88: d9:f6:ac:37:e8:11:09:f8:23:e2:1b:9e:55:1b:9a:84:27:fe: 51:5b:19:0f:a5:ab:4e:af:30:1f:8e:df:f1:16:cc:81:11:d6: 0d:f1:e0:5f:dd:91:fa:0e:02:73:cc:da:34:7d:0e:f4:d4:0b: 19:0f:21:52:ec:81:7d:58:72:65:8f:34:31:ce:62:89:e2:c1: 67:5f:fb:68:f8:a3:ce:0c:25:cd:ae:f2:04:ea:6c:5a:7f:47: e5:d5:04:41:a1:d3:d3:4e:8b:a6:19:02:0e:6a:8c:44:d0:7f: 8c:6e:14:e6:22:dc:ec:db:0c:c8:62:c3:45:51:ea:42:6d:38: b8:44:c3:9a:2f:cb:bc:94:13:bb:e9:57:1d:c7:46:f1:d9:05: a6:32:4c:96:ff:fc:fe:d4:3d:65:fd:60:df:e6:aa:d3:93:ed: 64:4f:a7:aa:28:64:49:49:13:6b:ca:5e:bb:0a:7b:07:28:11: 48:8b:53:f1 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3 ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNDA4MjYw NTEyMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBNUM5RDFEOEIzNzI4 OTU3M0QzQTYxNDI4RTlCNjQ4NTZCNDA5REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGZ7/sbJ6epvCfGRGf1Tirnxa57olhiFBMe3o1pXDiATFMnvqD ccW5tRt0TfgRtsMyAjufKz1IhI113KP9A0WprHNk6Rave0F2nryXNUznTszXHEbM 3g5JBcCFbe5KlLfQs5UWTMn5xCsBWAaLKpj9ALJGJwEDU93HJaYfZqTtofLNwI8x avVGpCfPK5aUMF4I5ATRGCji7ICYIaHBovDlotBTfmmE2xyh9/rS/UvrxCvC/AC1 P+dBGAoBND6O3lTQ1daKSCyLoKEy53IwUPrcq+IkHt+JtCgPXX4zGB46sJajhHtc m+0HX3znUERope3GP26B/3HpWwRRjt9OL/uBAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUqlydHYs3KJVz06YUKOm2SFa0Cd8wHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9xbHlkSFlzM0tKVnow NllVS09tMlNGYTBDZDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFPUHgMA0GCSqGSIb3DQEBCwUAA4IBAQBeXvQ/t7QcPoKwLK/gZZA8TJarwFIM WXuc9NmiguyRVuy7gtX4p+/+JqvH2ENaf+9GK7JuT6qc7PrkF+tXs9ITSM3h6CRC v4jZ9qw36BEJ+CPiG55VG5qEJ/5RWxkPpatOrzAfjt/xFsyBEdYN8eBf3ZH6DgJz zNo0fQ701AsZDyFS7IF9WHJljzQxzmKJ4sFnX/to+KPODCXNrvIE6mxaf0fl1QRB odPTToumGQIOaoxE0H+MbhTmItzs2wzIYsNFUepCbTi4RMOaL8u8lBO76Vcdx0bx 2QWmMkyW//z+1D1l/WDf5qrTk+1kT6eqKGRJSRNryl67CnsHKBFIi1Px -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:26 2024 by rpki-client on console-ams.rpki-client.org