$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QS35HV1fp9f74tnnHkWo7VsEKmk.roa File: QS35HV1fp9f74tnnHkWo7VsEKmk.roa (raw, json) Hash identifier: LovYV+yay/ow0Zor8jqNCUAz5zyshTCaaZYykbI2BY0= Subject key identifier: 41:2D:F9:1D:5D:5F:A7:D7:FB:E2:D9:E7:1E:45:A8:ED:5B:04:2A:69 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F7C Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QS35HV1fp9f74tnnHkWo7VsEKmk.roa Signing time: Fri 01 Sep 2023 09:36:54 +0000 ROA not before: Fri 01 Sep 2023 09:36:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 203.77.0.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Jun 2024 22:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3964 (0xf7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:36:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=412DF91D5D5FA7D7FBE2D9E71E45A8ED5B042A69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0e:6a:fb:66:7e:ae:38:ae:b1:57:31:1d:a1: 8b:24:36:6f:03:21:e8:77:61:82:b1:20:00:5e:15: 80:75:7f:c6:b5:b1:45:a0:f5:00:13:78:3b:2a:01: 0c:70:d6:34:62:d1:33:7e:cd:cb:9e:26:cd:a8:c1: f7:91:96:69:71:8e:b6:a0:49:3b:2e:5f:c1:3a:5c: 52:31:2f:aa:2a:1e:c4:80:55:ce:8c:13:04:41:4d: 12:24:9e:31:04:98:72:2d:eb:c9:4c:99:50:95:74: dd:0c:a4:e9:f0:ce:33:85:e2:71:40:6a:9d:f1:de: 44:80:00:6e:15:9f:5f:9e:01:12:38:8f:c1:56:0d: d9:49:30:24:5d:42:72:27:68:6a:41:5f:8c:44:e4: cb:7c:44:e7:9f:2e:d7:a1:01:a4:d6:10:ba:d1:9b: 45:7c:cc:37:9d:42:23:cf:47:11:35:5f:43:26:d1: ae:94:2e:ef:53:dd:16:a4:5f:ec:ff:96:6e:68:ed: 77:ee:91:94:46:ef:ea:3f:f0:ae:1c:55:71:20:29: 99:23:be:bf:0f:ee:ed:1d:64:a8:ca:86:d4:45:8f: 6b:a4:68:2f:ba:f1:45:26:89:3f:2d:8b:69:c3:e8: 81:14:3e:91:4b:10:1b:21:f1:27:32:ac:be:3a:93: fa:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:2D:F9:1D:5D:5F:A7:D7:FB:E2:D9:E7:1E:45:A8:ED:5B:04:2A:69 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QS35HV1fp9f74tnnHkWo7VsEKmk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.0.0/19 Signature Algorithm: sha256WithRSAEncryption 2f:93:2f:4d:f4:08:6e:eb:5e:3b:d4:be:8e:bc:7a:08:3c:db: e6:ad:0f:89:a5:5e:c0:44:9d:9c:75:61:f7:3a:66:fb:8b:bf: 09:74:c3:a8:ef:ed:d8:f1:82:1c:9d:75:75:d6:8d:68:a0:6f: 83:a4:de:7d:fc:d4:20:54:9f:de:72:6a:e2:9e:5c:9f:6f:6d: 67:f7:4a:2f:ad:cb:c9:b6:73:ab:09:de:72:67:d8:1e:f3:04: 23:c3:39:52:c2:37:dc:ea:b6:6d:2d:f7:5d:43:9d:7d:8b:f6: be:60:fd:ca:97:90:ca:e2:25:1d:4d:42:84:bc:b6:c5:3f:8e: 22:56:20:1e:74:a4:a4:ce:4e:b4:6a:6c:1e:d3:92:31:b7:f4: aa:dc:58:9a:53:eb:ca:19:a9:56:a6:c6:98:23:16:66:f0:e3: 61:b2:e2:c4:83:ad:12:10:e5:fc:eb:97:ec:d9:b2:73:f6:f3: 46:c1:c2:81:e9:8d:0b:f1:99:ac:ad:3e:b9:7a:20:0b:47:32: c8:fb:e5:0b:ea:c7:f3:89:63:2c:17:b2:72:92:a0:aa:68:a0: 15:1b:2c:f6:44:56:42:68:ef:3e:fb:e9:a5:f2:ce:80:0d:b1: 7a:dd:5a:21:8f:6f:c6:a0:4d:12:38:b4:56:d3:d6:9e:12:7a: 07:bc:8a:41 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD3wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM2NTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQxMkRGOTFENUQ1RkE3 RDdGQkUyRDlFNzFFNDVBOEVENUIwNDJBNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeDmr7Zn6uOK6xVzEdoYskNm8DIeh3YYKxIABeFYB1f8a1sUWg 9QATeDsqAQxw1jRi0TN+zcueJs2owfeRlmlxjragSTsuX8E6XFIxL6oqHsSAVc6M EwRBTRIknjEEmHIt68lMmVCVdN0MpOnwzjOF4nFAap3x3kSAAG4Vn1+eARI4j8FW DdlJMCRdQnInaGpBX4xE5Mt8ROefLtehAaTWELrRm0V8zDedQiPPRxE1X0Mm0a6U Lu9T3RakX+z/lm5o7XfukZRG7+o/8K4cVXEgKZkjvr8P7u0dZKjKhtRFj2ukaC+6 8UUmiT8ti2nD6IEUPpFLEBsh8ScyrL46k/pJAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUQS35HV1fp9f74tnnHkWo7VsEKmkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvUVMzNUhWMWZwOWY3NHRu bkhrV283VnNFS21rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BctNADANBgkqhkiG9w0BAQsFAAOCAQEAL5MvTfQIbuteO9S+jrx6CDzb5q0PiaVe wESdnHVh9zpm+4u/CXTDqO/t2PGCHJ11ddaNaKBvg6TeffzUIFSf3nJq4p5cn29t Z/dKL63LybZzqwnecmfYHvMEI8M5UsI33Oq2bS33XUOdfYv2vmD9ypeQyuIlHU1C hLy2xT+OIlYgHnSkpM5OtGpsHtOSMbf0qtxYmlPryhmpVqbGmCMWZvDjYbLixIOt EhDl/OuX7Nmyc/bzRsHCgemNC/GZrK0+uXogC0cyyPvlC+rH84ljLBeycpKgqmig FRss9kRWQmjvPvvppfLOgA2xet1aIY9vxqBNEji0VtPWnhJ6B7yKQQ== -----END CERTIFICATE-----Generated at Sat Jun 29 02:27:54 2024 by rpki-client on console-ams.rpki-client.org