$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k16f0KMOi5puhSJyiY3iVLO6wX8.roa File: k16f0KMOi5puhSJyiY3iVLO6wX8.roa (raw, json) Hash identifier: xU6v7ZBaNoBQEWXBWBrdtcN9kZaEoGQOQllbujAfAz0= Subject key identifier: 93:5E:9F:D0:A3:0E:8B:9A:6E:85:22:72:89:8D:E2:54:B3:BA:C1:7F Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F7E Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k16f0KMOi5puhSJyiY3iVLO6wX8.roa Signing time: Fri 01 Sep 2023 09:36:55 +0000 ROA not before: Fri 01 Sep 2023 09:36:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4662 IP address blocks: 210.62.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Jun 2024 22:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3966 (0xf7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:36:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=935E9FD0A30E8B9A6E852272898DE254B3BAC17F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:87:45:90:b2:23:a0:bd:5a:9f:de:57:fb:8c: 84:7a:3c:c7:e4:17:a7:5c:28:37:03:3f:28:f0:3a: 9e:10:91:e1:b0:66:92:f3:1f:1a:c6:18:26:45:fa: 32:be:33:95:4d:92:96:82:20:2f:ba:22:16:99:3b: 1a:0e:30:14:9f:60:2e:9d:01:67:41:02:f7:f2:b0: 24:f7:38:48:85:58:69:9a:4c:ff:44:8c:ca:4e:08: eb:60:51:e0:f0:e0:0d:43:ad:39:4b:67:59:d4:e0: 19:61:13:e1:09:2b:23:50:49:7e:47:72:80:90:89: 51:ab:e6:f1:f5:17:9f:29:61:ef:cb:56:2d:7b:85: 21:65:b1:7b:58:d0:56:33:e2:56:26:76:44:e7:70: 3e:c3:80:8d:0f:fa:6e:54:8a:18:a2:93:2c:94:a1: 9c:15:d8:75:cb:ed:ca:9f:b0:49:d4:83:bd:5f:61: ab:25:9d:16:09:28:82:45:fd:b5:4a:5c:07:95:f6: 99:ea:8a:70:89:6a:a3:b4:2e:3d:d4:7b:b9:9f:6d: 70:47:b9:f1:a9:fe:54:19:a1:e4:c3:91:b8:cf:3f: 83:d6:4e:4a:72:c1:df:28:7e:1c:c2:9e:70:f7:7e: ff:2a:a7:8d:be:d7:49:de:f7:5f:7b:83:e5:bc:24: 09:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:5E:9F:D0:A3:0E:8B:9A:6E:85:22:72:89:8D:E2:54:B3:BA:C1:7F X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k16f0KMOi5puhSJyiY3iVLO6wX8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.0.0/18 Signature Algorithm: sha256WithRSAEncryption 99:d1:67:7a:fb:d3:6f:8c:fd:38:37:5e:2e:29:fd:ae:da:4e: 4f:0e:40:5e:09:08:2e:6a:a7:52:66:6a:e5:1f:69:8a:e2:e6: 83:ee:71:7c:7c:0e:2a:62:49:fa:b4:8c:92:ee:ee:27:fd:68: 91:5f:36:85:a8:f0:31:e5:58:b7:c9:5a:39:45:23:e2:6c:6f: f8:66:f6:fd:d1:ed:e1:b8:8b:01:43:87:01:ce:3b:56:4f:3c: a5:c8:79:3f:b0:9a:28:b8:cf:f1:7b:06:c1:15:ee:1a:45:cf: c9:74:0c:0d:59:4a:6d:85:99:83:e1:3f:14:24:77:94:12:04: 65:cc:55:f0:92:8d:eb:3a:14:f8:79:76:c4:59:d5:56:03:53: 2b:4e:09:ce:6a:3f:59:c7:20:64:f0:c3:ba:0c:28:8e:8d:a4: 0e:c4:b2:cb:9f:82:59:3e:6b:1a:e7:b5:39:73:ca:a3:f8:f1: 53:e7:9b:b4:fa:af:5b:68:55:2a:f8:22:5d:2e:f4:c8:e6:38: 04:19:1a:d8:4d:af:83:91:a3:31:87:c1:12:e8:81:9f:fb:2a: 70:4b:3c:22:9c:6b:34:9f:e5:fd:c2:b8:93:e3:9c:e2:e2:b4: 45:9c:65:c9:55:ba:4d:2e:31:5a:21:61:43:54:91:4e:07:5e: 59:bb:c6:e6 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD34wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM2NTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkzNUU5RkQwQTMwRThC OUE2RTg1MjI3Mjg5OERFMjU0QjNCQUMxN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqh0WQsiOgvVqf3lf7jIR6PMfkF6dcKDcDPyjwOp4QkeGwZpLz HxrGGCZF+jK+M5VNkpaCIC+6IhaZOxoOMBSfYC6dAWdBAvfysCT3OEiFWGmaTP9E jMpOCOtgUeDw4A1DrTlLZ1nU4BlhE+EJKyNQSX5HcoCQiVGr5vH1F58pYe/LVi17 hSFlsXtY0FYz4lYmdkTncD7DgI0P+m5UihiikyyUoZwV2HXL7cqfsEnUg71fYasl nRYJKIJF/bVKXAeV9pnqinCJaqO0Lj3Ue7mfbXBHufGp/lQZoeTDkbjPP4PWTkpy wd8ofhzCnnD3fv8qp42+10ne9197g+W8JAkZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUk16f0KMOi5puhSJyiY3iVLO6wX8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvazE2ZjBLTU9pNXB1aFNK eWlZM2lWTE82d1g4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BtI+ADANBgkqhkiG9w0BAQsFAAOCAQEAmdFnevvTb4z9ODdeLin9rtpOTw5AXgkI LmqnUmZq5R9piuLmg+5xfHwOKmJJ+rSMku7uJ/1okV82hajwMeVYt8laOUUj4mxv +Gb2/dHt4biLAUOHAc47Vk88pch5P7CaKLjP8XsGwRXuGkXPyXQMDVlKbYWZg+E/ FCR3lBIEZcxV8JKN6zoU+Hl2xFnVVgNTK04Jzmo/WccgZPDDugwojo2kDsSyy5+C WT5rGue1OXPKo/jxU+ebtPqvW2hVKvgiXS70yOY4BBka2E2vg5GjMYfBEuiBn/sq cEs8IpxrNJ/l/cK4k+Oc4uK0RZxlyVW6TS4xWiFhQ1SRTgdeWbvG5g== -----END CERTIFICATE-----Generated at Sat Jun 29 02:16:57 2024 by rpki-client on console-fra.rpki-client.org