$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TSRvQ3wfBne6QpOCm9DX-MtMriI.roa File: TSRvQ3wfBne6QpOCm9DX-MtMriI.roa (raw, json) Hash identifier: 9dhr8noZHYdTI1NrD7g/9A5BdyMdFeI+rb/ef1VTP0E= Subject key identifier: 4D:24:6F:43:7C:1F:06:77:BA:42:93:82:9B:D0:D7:F8:CB:4C:AE:22 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FAC Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TSRvQ3wfBne6QpOCm9DX-MtMriI.roa Signing time: Fri 01 Sep 2023 09:37:08 +0000 ROA not before: Fri 01 Sep 2023 09:37:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131611 IP address blocks: 60.198.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Jun 2024 22:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4012 (0xfac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:08 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4D246F437C1F0677BA4293829BD0D7F8CB4CAE22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f4:19:a9:3c:e3:c0:f4:48:56:a1:96:a8:8e: d1:25:22:9a:4f:1b:11:02:4d:59:72:b4:32:b9:47: 2f:80:b6:90:9a:55:43:76:69:05:9a:67:c5:6a:ac: f2:d2:dd:79:97:2b:d5:b7:05:d9:eb:9f:2f:c9:1d: 01:73:00:55:da:51:26:73:e7:36:cf:eb:12:64:d0: ac:ca:84:d0:f6:6f:55:8c:e0:d0:8b:7c:74:f2:b4: 64:d1:be:14:2f:f8:50:7a:a6:ca:41:b2:42:83:74: f6:73:e0:64:b1:2c:4a:05:e4:b0:dc:ea:8d:ee:94: 62:a1:66:b4:4d:09:1d:87:6e:52:cb:43:1a:df:ce: d0:21:2e:3e:18:a6:70:4a:de:b8:92:52:6d:07:18: 9f:fe:b1:ed:c3:75:af:c9:9e:e5:12:19:b9:18:3d: d0:ad:cc:ec:c3:d3:5d:28:68:01:67:f1:07:91:0a: 78:81:83:5a:fc:a7:8e:ca:cf:95:e4:fc:8c:8c:14: 4d:c0:16:a0:f1:fa:c0:f7:78:d3:4e:7e:e0:ac:1c: a3:a5:09:1f:54:61:13:d7:de:80:5d:37:e0:99:d6: bc:f7:eb:11:ce:66:de:06:6c:1e:52:67:b4:e9:d7: 39:05:ae:7c:06:0f:e3:7a:58:7a:03:1f:2f:33:ac: ec:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:24:6F:43:7C:1F:06:77:BA:42:93:82:9B:D0:D7:F8:CB:4C:AE:22 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TSRvQ3wfBne6QpOCm9DX-MtMriI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.160.0/19 Signature Algorithm: sha256WithRSAEncryption 62:74:a1:bc:ad:a7:00:3b:cf:29:ca:cb:df:da:3a:b0:76:da: c0:6a:d4:6b:36:c3:e5:86:29:57:91:54:38:a4:47:eb:b0:b7: d7:d0:e3:d2:f7:ef:25:72:2f:69:7e:8e:57:f3:de:22:08:f7: 8f:e8:b3:05:31:24:30:b2:a2:20:d6:cc:b4:ee:10:fb:50:b2: 46:96:48:c7:08:ee:53:a5:9a:10:a1:ba:48:a0:32:91:e0:ea: 0d:7e:6e:69:6a:80:2a:5c:0d:dc:24:a7:79:f5:e6:b5:75:eb: 7e:8b:82:05:99:e1:1c:25:8b:fc:9c:ea:d0:4b:9b:22:f8:df: 91:bd:b0:87:90:98:b6:05:92:2d:c2:10:44:a2:50:7e:98:10: 47:c6:f9:4c:48:bf:67:84:d5:34:88:ee:e3:e5:07:75:1d:61: 2d:67:e7:e1:ab:29:d3:72:e1:9d:02:05:e9:29:93:19:dc:4d: dd:b6:e4:a6:35:39:60:e3:f2:f3:1c:13:00:01:a1:d4:fc:8f: 5c:54:37:8d:de:84:95:ea:1d:2e:d9:b8:5b:5a:85:01:1c:70: bf:1a:ab:80:64:cc:b5:b5:ec:5c:6f:f7:3c:ec:17:54:29:5b: fc:51:7a:bc:4b:b3:d8:5a:34:24:47:da:4d:b2:4a:ed:3b:29: 42:3d:69:df -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD6wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDREMjQ2RjQzN0MxRjA2 NzdCQTQyOTM4MjlCRDBEN0Y4Q0I0Q0FFMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCf9BmpPOPA9EhWoZaojtElIppPGxECTVlytDK5Ry+AtpCaVUN2 aQWaZ8VqrPLS3XmXK9W3Bdnrny/JHQFzAFXaUSZz5zbP6xJk0KzKhND2b1WM4NCL fHTytGTRvhQv+FB6pspBskKDdPZz4GSxLEoF5LDc6o3ulGKhZrRNCR2HblLLQxrf ztAhLj4YpnBK3riSUm0HGJ/+se3Dda/JnuUSGbkYPdCtzOzD010oaAFn8QeRCniB g1r8p47Kz5Xk/IyMFE3AFqDx+sD3eNNOfuCsHKOlCR9UYRPX3oBdN+CZ1rz36xHO Zt4GbB5SZ7Tp1zkFrnwGD+N6WHoDHy8zrOxrAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUTSRvQ3wfBne6QpOCm9DX+MtMriIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvVFNSdlEzd2ZCbmU2UXBP Q205RFgtTXRNcmlJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BTzGoDANBgkqhkiG9w0BAQsFAAOCAQEAYnShvK2nADvPKcrL39o6sHbawGrUazbD 5YYpV5FUOKRH67C319Dj0vfvJXIvaX6OV/PeIgj3j+izBTEkMLKiINbMtO4Q+1Cy RpZIxwjuU6WaEKG6SKAykeDqDX5uaWqAKlwN3CSnefXmtXXrfouCBZnhHCWL/Jzq 0EubIvjfkb2wh5CYtgWSLcIQRKJQfpgQR8b5TEi/Z4TVNIju4+UHdR1hLWfn4asp 03LhnQIF6SmTGdxN3bbkpjU5YOPy8xwTAAGh1PyPXFQ3jd6EleodLtm4W1qFARxw vxqrgGTMtbXsXG/3POwXVClb/FF6vEuz2Fo0JEfaTbJK7TspQj1p3w== -----END CERTIFICATE-----Generated at Sat Jun 29 02:16:56 2024 by rpki-client on console-fra.rpki-client.org