$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/19COSeh6K8b12z10qjDd8KooaT0.roa File: 19COSeh6K8b12z10qjDd8KooaT0.roa (raw, json) Hash identifier: v/7aGByCxA8M5EPirbe8Pki1gHT9E1Ot/Ev6pffim2k= Subject key identifier: D7:D0:8E:49:E8:7A:2B:C6:F5:DB:3D:74:AA:30:DD:F0:AA:28:69:3D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FB2 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/19COSeh6K8b12z10qjDd8KooaT0.roa Signing time: Fri 01 Sep 2023 09:37:10 +0000 ROA not before: Fri 01 Sep 2023 09:37:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 203.77.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4018 (0xfb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:10 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D7D08E49E87A2BC6F5DB3D74AA30DDF0AA28693D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c4:78:1c:6d:ab:ea:80:2c:16:2e:3c:dd:6f: d0:09:42:7d:90:06:00:7f:bf:f8:c3:a6:00:c3:f2: 9b:ba:1a:53:57:5e:77:79:08:33:29:3f:b5:91:14: 4f:af:59:d5:68:69:e5:bf:03:c1:06:a4:d0:ed:b0: d4:e0:af:bd:22:42:22:a7:32:b5:e7:58:84:ec:7b: 02:6e:e6:c6:68:62:c7:73:ef:24:3d:17:77:17:bc: b5:96:da:88:9d:e6:d6:6e:3d:9d:43:5e:5f:59:c4: 31:95:bb:ad:28:b3:eb:36:27:d9:38:11:72:ab:ae: 42:eb:4c:98:6a:d7:6f:58:51:9c:cf:54:09:90:26: 7a:31:b1:5c:8b:51:cc:cf:3d:29:bd:de:ca:60:4a: b2:e1:6c:a0:49:de:5b:28:71:1c:1a:70:6e:e2:cf: cf:58:be:5a:d0:96:06:e0:05:bf:df:65:f1:94:55: 54:8d:d3:ac:bf:ea:90:95:31:b9:a0:fd:00:44:d9: b9:49:3e:09:68:18:72:d9:1e:03:ae:ed:b0:53:47: 36:eb:b6:8e:01:db:3a:e6:91:61:e1:a4:d3:5d:ae: fb:6b:ad:51:e8:d1:bb:e4:df:c0:db:92:84:2b:8c: a4:14:37:07:b9:33:81:97:03:88:d2:81:ab:b6:3d: 51:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D0:8E:49:E8:7A:2B:C6:F5:DB:3D:74:AA:30:DD:F0:AA:28:69:3D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/19COSeh6K8b12z10qjDd8KooaT0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.38.0/23 Signature Algorithm: sha256WithRSAEncryption 25:e2:d7:93:e2:c4:44:33:2b:57:af:58:84:fa:06:bb:26:60: 37:e5:e7:e5:eb:81:9b:6f:b8:97:25:a7:3a:89:00:6f:77:3f: 5f:67:f0:2b:ff:80:eb:25:b7:e8:4e:6b:e8:6e:e8:27:4c:c4: 42:25:8a:fc:d7:d2:ce:c5:6f:23:9b:b7:46:ef:0b:d4:db:87: 3d:a0:28:ef:10:9a:9e:4a:31:6e:1e:c7:7e:d9:4f:b3:9d:ad: d9:88:7a:f8:f1:3e:97:41:1a:58:e2:89:d9:53:9a:2b:d6:bc: dd:32:29:9f:af:67:3c:da:0b:41:b4:76:a9:61:ff:21:7c:a3: 99:71:8d:74:c9:9d:f5:a2:f3:1f:2c:eb:40:1e:46:85:e2:74: c9:29:d7:b8:09:6d:27:df:19:c6:82:93:f8:51:38:c0:17:a1: 40:ab:42:c5:53:23:9c:8d:ac:51:bf:37:f2:9a:b4:0e:d4:7b: 71:e9:cd:6b:bb:2c:83:76:51:85:86:19:88:3c:37:03:bf:10: be:9a:b7:33:ea:f8:71:56:cc:da:68:0c:3d:92:75:35:e5:e2: ba:1c:02:37:07:d2:56:88:22:41:04:25:71:41:ff:df:e3:82: a8:74:22:ed:4c:17:c5:ff:11:03:ec:1b:9c:18:2d:be:c0:40: 3d:1b:16:48 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD7IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ3RDA4RTQ5RTg3QTJC QzZGNURCM0Q3NEFBMzBEREYwQUEyODY5M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwxHgcbavqgCwWLjzdb9AJQn2QBgB/v/jDpgDD8pu6GlNXXnd5 CDMpP7WRFE+vWdVoaeW/A8EGpNDtsNTgr70iQiKnMrXnWITsewJu5sZoYsdz7yQ9 F3cXvLWW2oid5tZuPZ1DXl9ZxDGVu60os+s2J9k4EXKrrkLrTJhq129YUZzPVAmQ JnoxsVyLUczPPSm93spgSrLhbKBJ3lsocRwacG7iz89YvlrQlgbgBb/fZfGUVVSN 06y/6pCVMbmg/QBE2blJPgloGHLZHgOu7bBTRzbrto4B2zrmkWHhpNNdrvtrrVHo 0bvk38DbkoQrjKQUNwe5M4GXA4jSgau2PVG3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU19COSeh6K8b12z10qjDd8KooaT0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvMTlDT1NlaDZLOGIxMnox MHFqRGQ4S29vYVQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ActNJjANBgkqhkiG9w0BAQsFAAOCAQEAJeLXk+LERDMrV69YhPoGuyZgN+Xn5euB m2+4lyWnOokAb3c/X2fwK/+A6yW36E5r6G7oJ0zEQiWK/NfSzsVvI5u3Ru8L1NuH PaAo7xCankoxbh7HftlPs52t2Yh6+PE+l0EaWOKJ2VOaK9a83TIpn69nPNoLQbR2 qWH/IXyjmXGNdMmd9aLzHyzrQB5GheJ0ySnXuAltJ98ZxoKT+FE4wBehQKtCxVMj nI2sUb838pq0DtR7cenNa7ssg3ZRhYYZiDw3A78Qvpq3M+r4cVbM2mgMPZJ1NeXi uhwCNwfSVogiQQQlcUH/3+OCqHQi7UwXxf8RA+wbnBgtvsBAPRsWSA== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:02 2024 by rpki-client on console-fra.rpki-client.org