$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/4jkO6qFPwXzW1AN84NNQJyrmcVI.roa File: 4jkO6qFPwXzW1AN84NNQJyrmcVI.roa (raw, json) Hash identifier: C8gSBDL5A7BCOMbJkMjXoaVOkLTIOqXvaEe+FzuEWvU= Subject key identifier: E2:39:0E:EA:A1:4F:C1:7C:D6:D4:03:7C:E0:D3:50:27:2A:E6:71:52 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1314 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/4jkO6qFPwXzW1AN84NNQJyrmcVI.roa Signing time: Mon 10 Feb 2025 14:09:04 +0000 ROA not before: Mon 10 Feb 2025 14:09:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.147.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4884 (0x1314) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E2390EEAA14FC17CD6D4037CE0D350272AE67152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:50:eb:40:93:b3:ba:c0:1d:ef:dd:27:0e:bc: d8:09:31:fd:bf:5e:ac:52:24:c4:72:51:fa:2a:01: ea:86:35:35:35:27:8e:81:70:e4:f3:76:02:43:9e: 64:2e:da:57:d7:ab:01:5f:42:99:46:3e:cf:a3:4a: 40:ae:d7:dc:e2:6a:a4:9a:42:d1:af:3c:8e:01:a1: fa:a5:df:3f:83:f4:c9:9f:3f:93:ec:7d:ab:13:b8: 3b:2b:2c:b4:15:f9:93:bc:23:94:d3:95:f9:20:2f: 7a:ed:d8:1f:c2:c9:6b:98:13:18:3c:b4:2d:34:5e: 98:65:e3:a4:eb:10:ab:f8:14:6a:fe:ae:36:e4:2d: 06:97:52:58:90:96:28:cd:bd:d2:04:df:2e:71:7c: 4c:1e:33:27:e0:5c:8c:ee:dd:fe:b7:6a:83:80:17: 25:4c:2b:e2:39:cb:df:a4:86:fb:1b:9e:f5:a9:7d: 8a:f1:1d:38:10:9a:d9:ab:d1:2a:1f:25:b1:73:4c: 97:cb:5a:86:f5:9f:dc:28:60:90:40:0e:7c:a0:1a: f4:32:9e:14:52:41:de:62:92:7e:1e:91:dd:78:39: c6:28:13:50:a0:2f:77:32:1c:b5:fb:1f:b4:04:16: 42:7c:ce:3c:d8:39:fd:1a:fe:74:97:47:4c:56:2d: 7c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:39:0E:EA:A1:4F:C1:7C:D6:D4:03:7C:E0:D3:50:27:2A:E6:71:52 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/4jkO6qFPwXzW1AN84NNQJyrmcVI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.147.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:ed:d6:df:e1:f5:88:60:67:4d:f2:46:b2:88:1e:d0:f5:3d: e5:21:fd:8c:93:ad:6d:e3:d3:98:af:f8:23:91:5d:c1:92:4b: 90:57:28:2d:f6:d3:e3:43:85:f2:1c:2c:d3:29:e8:3c:ba:ab: 0a:e3:0d:ab:fb:98:33:72:2a:7e:a6:25:04:6c:b8:67:0f:68: 03:53:26:ea:3a:c6:d3:4c:bb:5d:87:c6:92:a9:84:7d:73:31: 7a:43:23:fc:5b:e9:aa:06:58:d6:c7:db:fa:29:39:84:22:5f: 2b:54:8c:33:e1:7f:44:a7:f0:8b:40:45:f1:34:f2:ac:8c:9a: 94:4f:5d:9e:d5:72:38:5b:ac:a2:d6:2f:d3:06:50:ff:4a:77: 21:1b:64:55:ee:aa:ab:65:f6:f6:3c:07:2d:77:57:f9:01:16: 9c:82:6a:e7:c7:05:a7:ed:26:a2:4f:fb:15:6d:7b:76:5d:9d: a6:db:55:41:16:b5:1b:eb:d6:39:5f:82:ef:31:8f:2f:01:57: 30:ff:52:ec:ea:37:cc:48:22:8a:3d:d3:28:05:96:37:28:96: 10:81:e8:4c:79:92:91:0a:b4:43:fa:75:13:3a:b5:d1:9e:38: 03:d8:7a:34:9f:fb:4e:ec:c8:a5:a0:c9:87:56:28:12:cd:1e: de:ef:ba:17 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICExQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUyMzkwRUVBQTE0RkMx N0NENkQ0MDM3Q0UwRDM1MDI3MkFFNjcxNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7UOtAk7O6wB3v3ScOvNgJMf2/XqxSJMRyUfoqAeqGNTU1J46B cOTzdgJDnmQu2lfXqwFfQplGPs+jSkCu19ziaqSaQtGvPI4Bofql3z+D9MmfP5Ps fasTuDsrLLQV+ZO8I5TTlfkgL3rt2B/CyWuYExg8tC00Xphl46TrEKv4FGr+rjbk LQaXUliQlijNvdIE3y5xfEweMyfgXIzu3f63aoOAFyVMK+I5y9+khvsbnvWpfYrx HTgQmtmr0SofJbFzTJfLWob1n9woYJBADnygGvQynhRSQd5ikn4ekd14OcYoE1Cg L3cyHLX7H7QEFkJ8zjzYOf0a/nSXR0xWLXxBAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU4jkO6qFPwXzW1AN84NNQJyrmcVIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNGprTzZxRlB3WHpXMUFO ODROTlFKeXJtY1ZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHkzANBgkqhkiG9w0BAQsFAAOCAQEAWu3W3+H1iGBnTfJGsoge0PU95SH9jJOt bePTmK/4I5FdwZJLkFcoLfbT40OF8hws0ynoPLqrCuMNq/uYM3IqfqYlBGy4Zw9o A1Mm6jrG00y7XYfGkqmEfXMxekMj/FvpqgZY1sfb+ik5hCJfK1SMM+F/RKfwi0BF 8TTyrIyalE9dntVyOFusotYv0wZQ/0p3IRtkVe6qq2X29jwHLXdX+QEWnIJq58cF p+0mok/7FW17dl2dpttVQRa1G+vWOV+C7zGPLwFXMP9S7Oo3zEgiij3TKAWWNyiW EIHoTHmSkQq0Q/p1Ezq10Z44A9h6NJ/7TuzIpaDJh1YoEs0e3u+6Fw== -----END CERTIFICATE-----Generated at Mon Apr 7 02:00:20 2025 by rpki-client