$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ShS7Z65EQxePeOJN1d1DQWK0sG8.roa File: ShS7Z65EQxePeOJN1d1DQWK0sG8.roa (raw, json) Hash identifier: zsMmEuFNdWFegu2vU9btcSjIWR5zzUPXjP22yNb0C8U= Subject key identifier: 4A:14:BB:67:AE:44:43:17:8F:78:E2:4D:D5:DD:43:41:62:B4:B0:6F Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F8F Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ShS7Z65EQxePeOJN1d1DQWK0sG8.roa Signing time: Fri 01 Sep 2023 09:37:01 +0000 ROA not before: Fri 01 Sep 2023 09:37:01 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 203.77.36.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Jun 2024 22:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3983 (0xf8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:01 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4A14BB67AE4443178F78E24DD5DD434162B4B06F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ba:0f:d7:5a:f1:56:70:fe:85:17:3d:a2:b9: d4:4e:ad:73:56:fd:2d:66:25:6f:15:c2:8a:e2:6f: 84:d0:70:3b:e0:af:b3:9b:bf:5a:a2:39:b6:c2:8b: 0f:be:3c:cb:76:12:e3:d1:e8:c5:3d:4b:4a:5d:20: be:4e:4d:e6:a2:74:ca:25:1c:c3:25:ff:8c:9e:89: 38:a1:ac:7c:e6:85:84:2b:db:b6:78:f7:32:83:15: 13:54:a4:79:92:d8:9f:c4:05:ab:6c:50:41:e2:7c: 70:8e:c7:fe:5f:da:a6:52:7a:ad:b3:e7:79:51:81: 26:5e:92:02:5d:fe:38:53:ad:2f:d8:b6:6a:89:3c: d4:ad:b3:04:f3:93:b9:21:ad:1c:f2:af:87:88:71: 5f:06:04:51:5c:9c:08:07:d0:31:dd:fc:27:3c:5f: e4:7c:2d:c9:f1:b9:df:fd:d6:be:aa:3e:a8:a8:bb: 87:b4:e2:1f:f7:b1:4b:32:ef:fa:dc:63:fd:c5:b0: 9e:b9:1d:db:81:00:40:23:2f:75:64:27:c0:57:a9: 3f:d3:d5:46:d5:9b:aa:d6:77:d8:97:21:a1:b6:99: a5:d0:cd:3f:c5:8e:23:18:08:57:4a:11:78:83:fa: b3:ee:30:3d:3f:0f:66:30:50:64:9b:b1:13:49:28: de:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:14:BB:67:AE:44:43:17:8F:78:E2:4D:D5:DD:43:41:62:B4:B0:6F X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ShS7Z65EQxePeOJN1d1DQWK0sG8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.36.0/23 Signature Algorithm: sha256WithRSAEncryption 64:6f:13:87:f2:5e:25:bf:ce:ed:b1:78:75:0a:bf:5b:48:55: 47:a1:fd:f2:1b:ab:3d:c9:67:70:3d:96:e7:1f:dd:a2:5d:1f: 43:cf:72:14:71:f0:9e:ae:d4:93:1c:95:d4:7f:10:10:a5:da: db:55:91:c4:28:57:78:4d:c7:f7:48:0a:49:2a:f9:95:95:e7: 80:79:e8:bf:b7:d5:49:86:cb:62:b1:33:86:d7:90:97:ba:d5: c7:18:d1:f2:80:53:4f:84:12:99:6b:9e:25:c5:2d:29:e5:62: 94:6d:bc:95:65:c1:40:56:d2:6c:58:49:67:fa:1d:ac:68:fe: ec:08:9f:8a:6f:10:9b:2d:e6:67:f2:8f:ca:cd:09:ba:9c:25: 80:c6:ef:cf:64:80:a9:f1:94:71:2d:9a:29:fb:e4:cc:15:aa: 59:47:4d:19:89:78:a4:73:d5:01:c8:ef:4d:76:6b:dd:96:54: 43:7f:e8:0f:e3:b3:07:20:a0:28:e3:fc:bd:01:bc:57:8b:39: 78:75:df:6f:6b:45:e9:f8:59:4d:8f:b5:d3:d0:53:7c:41:e4: 97:f6:fc:18:e9:c8:14:80:9a:cd:df:86:61:57:cb:90:48:13: a8:65:3c:ad:f8:c2:b9:68:f4:66:33:b4:d1:54:bd:9d:1f:d6: 93:b6:60:b0 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD48wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRBMTRCQjY3QUU0NDQz MTc4Rjc4RTI0REQ1REQ0MzQxNjJCNEIwNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqug/XWvFWcP6FFz2iudROrXNW/S1mJW8Vworib4TQcDvgr7Ob v1qiObbCiw++PMt2EuPR6MU9S0pdIL5OTeaidMolHMMl/4yeiTihrHzmhYQr27Z4 9zKDFRNUpHmS2J/EBatsUEHifHCOx/5f2qZSeq2z53lRgSZekgJd/jhTrS/YtmqJ PNStswTzk7khrRzyr4eIcV8GBFFcnAgH0DHd/Cc8X+R8Lcnxud/91r6qPqiou4e0 4h/3sUsy7/rcY/3FsJ65HduBAEAjL3VkJ8BXqT/T1UbVm6rWd9iXIaG2maXQzT/F jiMYCFdKEXiD+rPuMD0/D2YwUGSbsRNJKN4PAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUShS7Z65EQxePeOJN1d1DQWK0sG8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvU2hTN1o2NUVReGVQZU9K TjFkMURRV0swc0c4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ActNJDANBgkqhkiG9w0BAQsFAAOCAQEAZG8Th/JeJb/O7bF4dQq/W0hVR6H98hur PclncD2W5x/dol0fQ89yFHHwnq7UkxyV1H8QEKXa21WRxChXeE3H90gKSSr5lZXn gHnov7fVSYbLYrEzhteQl7rVxxjR8oBTT4QSmWueJcUtKeVilG28lWXBQFbSbFhJ Z/odrGj+7Aifim8Qmy3mZ/KPys0JupwlgMbvz2SAqfGUcS2aKfvkzBWqWUdNGYl4 pHPVAcjvTXZr3ZZUQ3/oD+OzByCgKOP8vQG8V4s5eHXfb2tF6fhZTY+109BTfEHk l/b8GOnIFICazd+GYVfLkEgTqGU8rfjCuWj0ZjO00VS9nR/Wk7ZgsA== -----END CERTIFICATE-----Generated at Sat Jun 29 02:16:56 2024 by rpki-client on console-fra.rpki-client.org