$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-fv64asPLp6N8Oj-KIDmjPBJCpQ.roa File: -fv64asPLp6N8Oj-KIDmjPBJCpQ.roa (raw, json) Hash identifier: nxsMkOdDq5ub7oomxVvERC6/bjC6xSEQQVKziN7SM80= Subject key identifier: F9:FB:FA:E1:AB:0F:2E:9E:8D:F0:E8:FE:28:80:E6:8C:F0:49:0A:94 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11EA Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-fv64asPLp6N8Oj-KIDmjPBJCpQ.roa Signing time: Mon 26 Aug 2024 05:24:30 +0000 ROA not before: Mon 26 Aug 2024 05:24:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.17.35.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4586 (0x11ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F9FBFAE1AB0F2E9E8DF0E8FE2880E68CF0490A94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1f:71:e3:cf:3e:1c:80:c2:cd:70:3a:80:58: e4:a5:ff:63:6c:98:e7:4a:34:9c:c0:fa:8e:7f:bd: 70:1c:6b:e8:93:0c:c9:ea:c9:6b:7e:f9:a1:82:0c: 24:2b:54:c9:ac:67:89:25:0d:1c:ef:00:d7:8c:0a: 4c:ee:6f:19:1a:d3:72:a6:6d:4f:05:6d:78:53:a3: 19:1e:52:41:72:89:52:c4:fa:33:16:8a:cb:b0:52: 14:24:09:6e:ab:d8:1c:bc:bc:56:e0:fd:ce:68:1b: 5e:d5:3a:a1:2b:7a:dd:db:80:a5:c1:f1:f0:77:e0: b4:98:85:83:d5:23:f7:07:86:28:c9:42:08:63:3a: 3b:d9:36:62:2c:84:e6:5f:e8:65:b6:1e:db:5c:e2: 68:0f:dd:e5:ed:c8:b3:c2:86:65:e7:5d:5a:06:0c: 95:ac:55:bd:aa:ec:0c:c3:c6:96:da:b7:0f:4d:0e: 68:33:da:15:83:52:9d:e6:59:fd:30:af:fa:50:3b: 22:47:aa:77:4c:08:ff:e3:5b:74:1d:36:ad:21:6f: 9f:31:90:5f:90:68:fb:27:76:b0:50:86:67:62:71: 5b:ef:8f:ed:e0:a6:06:dd:9e:db:be:16:7d:bc:b0: de:95:b9:dd:9c:29:3d:06:bd:0f:7e:08:1b:fe:5a: 04:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:FB:FA:E1:AB:0F:2E:9E:8D:F0:E8:FE:28:80:E6:8C:F0:49:0A:94 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-fv64asPLp6N8Oj-KIDmjPBJCpQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.35.0/24 Signature Algorithm: sha256WithRSAEncryption 89:a5:cc:48:5c:a8:ed:ce:55:4a:10:a0:e9:a3:40:35:32:b7: f9:d6:87:d7:78:2f:bb:28:3b:1d:88:d6:0c:22:a6:38:63:74: 78:95:9b:13:26:4d:31:63:ed:3f:73:58:90:21:8e:88:af:63: 6d:b8:42:5a:c9:93:b5:a6:71:81:04:aa:1f:73:2b:cd:0d:f1: f9:31:fd:f1:ad:af:49:47:ba:3d:16:8f:58:40:a3:ae:96:d2: 3a:82:89:5b:73:19:05:3c:4e:87:8a:ab:ea:4a:86:80:12:99: 89:60:d9:be:b4:dc:8d:70:c7:00:3d:41:0d:a3:46:24:08:c9: cb:cb:b8:ee:3a:dc:78:5a:74:75:11:1f:1d:2c:cc:7b:b8:e3: 74:74:95:7b:7b:83:a3:a7:6a:7c:b1:29:60:ba:9a:c6:0a:a7: f4:6d:a9:4b:4d:a6:9d:a8:cb:16:15:bc:22:c9:dc:9c:fa:7f: 8d:19:96:93:dd:dd:4d:98:4d:61:88:80:88:0b:5c:6f:3d:57: 7d:15:b2:6b:01:0f:04:f6:e5:1e:c1:35:7c:04:85:ca:68:81: 08:45:ca:82:f8:14:f7:2e:af:6e:23:40:32:9f:24:32:63:48: 74:7a:64:23:43:5d:8b:b4:9d:30:a4:e5:49:1a:ec:bb:70:7e: 34:8e:78:ba -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEeowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5RkJGQUUxQUIwRjJF OUU4REYwRThGRTI4ODBFNjhDRjA0OTBBOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqH3Hjzz4cgMLNcDqAWOSl/2NsmOdKNJzA+o5/vXAca+iTDMnq yWt++aGCDCQrVMmsZ4klDRzvANeMCkzubxka03KmbU8FbXhToxkeUkFyiVLE+jMW isuwUhQkCW6r2By8vFbg/c5oG17VOqEret3bgKXB8fB34LSYhYPVI/cHhijJQghj OjvZNmIshOZf6GW2Httc4mgP3eXtyLPChmXnXVoGDJWsVb2q7AzDxpbatw9NDmgz 2hWDUp3mWf0wr/pQOyJHqndMCP/jW3QdNq0hb58xkF+QaPsndrBQhmdicVvvj+3g pgbdntu+Fn28sN6Vud2cKT0GvQ9+CBv+WgRDAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU+fv64asPLp6N8Oj+KIDmjPBJCpQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvLWZ2NjRhc1BMcDZOOE9q LUtJRG1qUEJKQ3BRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ANIRIzANBgkqhkiG9w0BAQsFAAOCAQEAiaXMSFyo7c5VShCg6aNANTK3+daH13gv uyg7HYjWDCKmOGN0eJWbEyZNMWPtP3NYkCGOiK9jbbhCWsmTtaZxgQSqH3MrzQ3x +TH98a2vSUe6PRaPWECjrpbSOoKJW3MZBTxOh4qr6kqGgBKZiWDZvrTcjXDHAD1B DaNGJAjJy8u47jrceFp0dREfHSzMe7jjdHSVe3uDo6dqfLEpYLqaxgqn9G2pS02m najLFhW8IsncnPp/jRmWk93dTZhNYYiAiAtcbz1XfRWyawEPBPblHsE1fASFymiB CEXKgvgU9y6vbiNAMp8kMmNIdHpkI0Ndi7SdMKTlSRrsu3B+NI54ug== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:43 2024 by rpki-client on console-fra.rpki-client.org