$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0wCp1Sp-Ve11h4SSOExD4_Q7T8Y.roa File: 0wCp1Sp-Ve11h4SSOExD4_Q7T8Y.roa (raw, json) Hash identifier: gZN1uKnrs3GqHlWfBBG7Nikd1Rz8FMnWQGUSUQrES4I= Subject key identifier: D3:00:A9:D5:2A:7E:55:ED:75:87:84:92:38:4C:43:E3:F4:3B:4F:C6 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11C5 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0wCp1Sp-Ve11h4SSOExD4_Q7T8Y.roa Signing time: Mon 26 Aug 2024 05:24:22 +0000 ROA not before: Mon 26 Aug 2024 05:24:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.107.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4549 (0x11c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D300A9D52A7E55ED75878492384C43E3F43B4FC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:eb:e7:df:06:c0:55:94:63:f1:14:09:5f:df: b1:f2:a5:fa:f4:33:a8:26:8b:71:10:b1:64:e8:88: 01:e6:b1:97:22:c1:72:42:6d:76:4c:4f:1b:8e:97: b9:e2:b6:e8:72:59:e2:f3:da:84:80:ea:1b:59:29: ed:ca:04:34:de:f8:ee:9d:e8:71:cc:9f:fd:75:11: ad:b1:b0:71:0d:66:4a:41:63:22:f8:82:b9:b3:3a: 2c:92:22:ec:b7:55:b5:82:d3:a1:71:4d:41:4d:75: 60:26:0f:cd:ad:45:fd:85:64:32:a8:64:13:da:e0: 71:a1:f3:a1:25:30:33:e9:f6:5c:d8:18:97:7d:cb: 61:27:18:81:7d:07:32:6b:e9:db:eb:29:bc:ba:b9: 6b:57:f5:02:79:d3:76:dc:1d:19:43:7a:5b:cc:a0: 8a:7a:34:47:5c:02:79:75:89:41:c2:0b:3f:ce:51: 6e:47:75:af:cf:1f:6e:28:00:26:1b:5c:8a:be:2a: 08:73:5e:b2:26:ec:1a:30:4e:98:0d:56:0d:0d:26: 7f:cd:ed:06:6b:67:df:28:98:b3:e5:ef:ee:75:1c: 62:57:a2:73:a2:74:ed:b2:ef:d2:1f:10:7a:d7:c4: eb:59:d3:f1:ca:35:77:a6:cd:b0:ea:e2:aa:c0:92: e5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:00:A9:D5:2A:7E:55:ED:75:87:84:92:38:4C:43:E3:F4:3B:4F:C6 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0wCp1Sp-Ve11h4SSOExD4_Q7T8Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.107.0/24 Signature Algorithm: sha256WithRSAEncryption 43:2c:a5:4d:c6:5d:06:31:95:fe:af:f8:f6:ef:a7:0a:53:c5: bb:cb:aa:75:e5:6e:98:09:c0:37:71:6e:c5:fa:cc:11:31:9c: 04:43:f1:a7:60:91:7e:10:27:d4:d0:63:e7:17:f7:4c:d5:7e: f7:e1:a6:f7:45:94:91:3a:8f:b4:3a:2b:2d:5e:81:c9:a4:3c: 22:bf:47:2a:c3:42:30:0c:aa:b7:ab:17:d3:52:fd:bc:3b:eb: 17:e1:84:a6:a3:27:20:f2:82:a5:8d:f4:b8:74:dd:a9:2f:49: 1a:c3:51:e8:c0:90:26:74:71:69:bd:c6:d9:ac:99:3f:d1:99: 9d:d1:c0:12:98:94:e5:02:2b:b3:a3:96:e2:96:ef:12:66:7c: c7:65:94:b4:5a:5d:60:1e:3e:0d:67:f7:c0:9b:cf:26:6c:e8: 38:5f:51:15:a0:f0:03:ce:68:fc:d7:42:f7:ee:7b:41:38:e6: 53:85:ab:26:70:69:fd:5b:6e:8a:48:60:96:c2:f9:23:7d:34: 83:f4:31:a1:90:7e:b0:52:f5:94:d8:59:12:9d:15:26:5e:8f: f4:8c:77:05:a0:7f:f2:a4:01:a7:27:d4:82:59:04:9e:cb:f9: 75:f4:a6:d3:2e:bc:db:a6:a1:d4:fc:16:7d:01:25:0a:76:ff: 61:de:a9:04 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQzMDBBOUQ1MkE3RTU1 RUQ3NTg3ODQ5MjM4NEM0M0UzRjQzQjRGQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY6+ffBsBVlGPxFAlf37Hypfr0M6gmi3EQsWToiAHmsZciwXJC bXZMTxuOl7nituhyWeLz2oSA6htZKe3KBDTe+O6d6HHMn/11Ea2xsHENZkpBYyL4 grmzOiySIuy3VbWC06FxTUFNdWAmD82tRf2FZDKoZBPa4HGh86ElMDPp9lzYGJd9 y2EnGIF9BzJr6dvrKby6uWtX9QJ503bcHRlDelvMoIp6NEdcAnl1iUHCCz/OUW5H da/PH24oACYbXIq+KghzXrIm7BowTpgNVg0NJn/N7QZrZ98omLPl7+51HGJXonOi dO2y79IfEHrXxOtZ0/HKNXemzbDq4qrAkuV3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU0wCp1Sp+Ve11h4SSOExD4/Q7T8YwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvMHdDcDFTcC1WZTExaDRT U09FeEQ0X1E3VDhZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHazANBgkqhkiG9w0BAQsFAAOCAQEAQyylTcZdBjGV/q/49u+nClPFu8uqdeVu mAnAN3FuxfrMETGcBEPxp2CRfhAn1NBj5xf3TNV+9+Gm90WUkTqPtDorLV6ByaQ8 Ir9HKsNCMAyqt6sX01L9vDvrF+GEpqMnIPKCpY30uHTdqS9JGsNR6MCQJnRxab3G 2ayZP9GZndHAEpiU5QIrs6OW4pbvEmZ8x2WUtFpdYB4+DWf3wJvPJmzoOF9RFaDw A85o/NdC9+57QTjmU4WrJnBp/VtuikhglsL5I300g/QxoZB+sFL1lNhZEp0VJl6P 9Ix3BaB/8qQBpyfUglkEnsv5dfSm0y6826ah1PwWfQElCnb/Yd6pBA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org