$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-5CHgNfiKgiep0cASyuvC2LshGQ.roa File: -5CHgNfiKgiep0cASyuvC2LshGQ.roa (raw, json) Hash identifier: zxVqQKwJKQInO1tSPn9iXhqFSMfV+moIG3Kj5Gd8Ubw= Subject key identifier: FB:90:87:80:D7:E2:2A:08:9E:A7:47:00:4B:2B:AF:0B:62:EC:84:64 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F7A Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-5CHgNfiKgiep0cASyuvC2LshGQ.roa Signing time: Fri 01 Sep 2023 09:36:54 +0000 ROA not before: Fri 01 Sep 2023 09:36:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24158 IP address blocks: 2001:4546:1000:8f00::/56 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3962 (0xf7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:36:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FB908780D7E22A089EA747004B2BAF0B62EC8464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:10:c4:e0:2a:5e:98:4c:e5:a5:27:86:1b:b9: 14:cb:bd:ad:77:b7:37:36:37:17:63:53:58:cf:77: 3d:0d:a8:7a:c6:61:93:0b:85:dd:c3:bc:a1:18:13: 58:84:dc:a9:ff:5b:63:70:d9:de:1c:e7:90:a3:00: 99:c4:c8:d7:53:5f:2c:c0:9e:ef:27:22:2f:88:7b: e1:e1:d1:ec:a0:f6:fe:77:5a:7b:99:2e:46:3e:d8: ee:29:38:10:b3:3a:df:33:67:51:81:36:bb:c0:1d: 45:1e:d0:10:d3:59:4c:90:fc:13:56:c1:67:2a:64: 26:b9:ce:8c:74:6c:0d:95:5e:81:b2:f2:93:ad:d9: f2:22:42:f7:59:5b:fa:93:08:aa:58:5a:a4:37:59: fc:55:cb:92:0f:4c:14:68:7b:95:3c:3a:b5:82:24: 4a:5f:94:8b:5f:92:df:c3:1d:2d:62:ff:47:e0:9a: ea:2e:11:d0:b6:62:80:e6:0f:70:a0:a5:de:1f:6d: 6e:aa:a8:de:32:6b:2a:4d:a7:4f:8c:25:94:15:ef: 72:41:40:3c:41:80:fe:93:30:ed:0b:fb:75:44:43: f8:85:db:3c:08:9f:e1:37:96:b3:b1:fe:41:27:df: c4:13:40:74:2e:60:ee:00:21:de:88:11:54:1f:7d: cd:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:90:87:80:D7:E2:2A:08:9E:A7:47:00:4B:2B:AF:0B:62:EC:84:64 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-5CHgNfiKgiep0cASyuvC2LshGQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4546:1000:8f00::/56 Signature Algorithm: sha256WithRSAEncryption 42:5b:14:cd:3c:e0:30:55:a1:81:43:77:67:e7:0c:97:19:3a: 6d:17:c1:ed:e5:72:54:ba:6c:8a:2f:e1:95:60:99:06:28:a8: af:4b:5e:29:d1:79:0a:e8:c2:3d:7b:40:62:31:16:d6:02:d1: 67:93:16:3b:c7:d6:bb:84:b3:a0:5d:76:af:32:3a:34:dd:d2: 02:27:f0:9d:d2:fe:e9:8d:5e:c5:dd:d9:3c:0f:3d:d6:bc:c8: cc:07:15:49:6a:da:fc:9c:b2:fd:01:27:c6:6a:c9:63:7b:3b: 81:01:39:f6:4d:51:b1:03:e4:cd:19:a1:eb:5a:90:7e:8e:ae: 73:b6:47:16:45:a5:8e:1b:00:4a:2e:3e:c5:e1:20:63:4f:9e: 9f:e6:b2:fe:93:88:1e:a3:a4:ac:59:6a:ac:74:92:82:83:52: 4a:dc:af:8d:3d:b2:80:9c:6b:fa:26:26:e3:15:87:81:c9:a9: 4a:24:c3:2a:77:db:d0:d1:ba:b2:13:df:9b:42:8e:53:7c:7c: 90:ba:ff:f6:66:60:ef:b7:f8:4c:f1:f6:b4:39:1e:c3:11:03: f8:95:df:27:74:d8:99:96:36:2c:1c:d8:32:d3:00:75:97:75: 63:ee:27:aa:44:d6:06:15:e4:9e:52:d0:9b:49:99:fc:ce:73: c5:99:9b:1f -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICD3owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM2NTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZCOTA4NzgwRDdFMjJB MDg5RUE3NDcwMDRCMkJBRjBCNjJFQzg0NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBEMTgKl6YTOWlJ4YbuRTLva13tzc2NxdjU1jPdz0NqHrGYZML hd3DvKEYE1iE3Kn/W2Nw2d4c55CjAJnEyNdTXyzAnu8nIi+Ie+Hh0eyg9v53WnuZ LkY+2O4pOBCzOt8zZ1GBNrvAHUUe0BDTWUyQ/BNWwWcqZCa5zox0bA2VXoGy8pOt 2fIiQvdZW/qTCKpYWqQ3WfxVy5IPTBRoe5U8OrWCJEpflItfkt/DHS1i/0fgmuou EdC2YoDmD3Cgpd4fbW6qqN4yaypNp0+MJZQV73JBQDxBgP6TMO0L+3VEQ/iF2zwI n+E3lrOx/kEn38QTQHQuYO4AId6IEVQffc2zAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU+5CHgNfiKgiep0cASyuvC2LshGQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvLTVDSGdOZmlLZ2llcDBj QVN5dXZDMkxzaEdRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAjBggrBgEFBQcBBwEB/wQUMBIwEAQCAAIwCgMI ACABRUYQAI8wDQYJKoZIhvcNAQELBQADggEBAEJbFM084DBVoYFDd2fnDJcZOm0X we3lclS6bIov4ZVgmQYoqK9LXinReQrowj17QGIxFtYC0WeTFjvH1ruEs6Bddq8y OjTd0gIn8J3S/umNXsXd2TwPPda8yMwHFUlq2vycsv0BJ8ZqyWN7O4EBOfZNUbED 5M0ZoetakH6OrnO2RxZFpY4bAEouPsXhIGNPnp/msv6TiB6jpKxZaqx0koKDUkrc r409soCca/omJuMVh4HJqUokwyp329DRurIT35tCjlN8fJC6//ZmYO+3+Ezx9rQ5 HsMRA/iV3yd02JmWNiwc2DLTAHWXdWPuJ6pE1gYV5J5S0JtJmfzOc8WZmx8= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:02 2024 by rpki-client on console-fra.rpki-client.org