$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5IyZOWdUUCP1X6Bz9Iz8yXHGuQU.roa File: 5IyZOWdUUCP1X6Bz9Iz8yXHGuQU.roa (raw, json) Hash identifier: xtlhSCy52YZ+gsHGqPWeNP+zUqKixdmGOha2UNJ2RuE= Subject key identifier: E4:8C:99:39:67:54:50:23:F5:5F:A0:73:F4:8C:FC:C9:71:C6:B9:05 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1240 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5IyZOWdUUCP1X6Bz9Iz8yXHGuQU.roa Signing time: Mon 26 Aug 2024 05:24:49 +0000 ROA not before: Mon 26 Aug 2024 05:24:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 135596 IP address blocks: 60.198.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4672 (0x1240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E48C993967545023F55FA073F48CFCC971C6B905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:76:e4:1d:5e:d1:98:04:dc:aa:74:9e:06:cb: c0:c7:9b:d6:74:16:0d:9c:a6:f2:94:7e:6e:66:bd: 9b:b1:6a:42:6c:4f:fe:49:8c:10:e5:f9:14:e9:38: 69:3f:61:3f:28:c6:ed:3a:15:4b:fa:7a:d1:71:40: 6e:bd:65:a4:a7:0e:f5:b0:df:48:e5:37:b8:96:ae: e4:bb:b8:d0:6d:97:3c:cc:db:2e:65:ea:2f:ac:25: 14:74:06:33:ce:90:f0:a1:2e:dc:84:96:df:c5:4f: 15:c2:1a:d6:42:d5:98:fe:33:a7:74:58:1c:fd:64: cf:d1:44:0a:ee:1a:f4:24:6b:67:59:2d:25:72:0c: be:7b:42:c1:a0:c6:f6:c3:05:e6:a5:e4:92:90:e2: 33:1e:02:a6:c3:ba:c2:5d:de:17:bb:99:d3:e8:71: 10:13:2e:fa:4a:64:36:80:d6:58:77:bb:e3:7a:f9: 5c:f3:eb:11:0a:7a:a7:d4:3c:38:c7:c8:a0:51:b5: d1:31:7a:4c:0d:59:5b:bd:06:b1:63:44:1b:81:8e: 6a:dd:7b:d0:bd:db:70:1b:11:26:d7:4d:0d:8c:bf: 7e:56:18:fb:f5:22:0d:9f:03:24:b6:5e:08:80:41: 2f:12:47:5e:75:9c:92:07:4f:08:28:0f:99:24:62: ae:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:8C:99:39:67:54:50:23:F5:5F:A0:73:F4:8C:FC:C9:71:C6:B9:05 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5IyZOWdUUCP1X6Bz9Iz8yXHGuQU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.155.0/24 Signature Algorithm: sha256WithRSAEncryption 23:c9:7c:d2:52:67:d8:27:67:15:4f:18:61:ac:00:a6:d2:33: 8e:f7:d7:7b:f0:b6:92:11:28:5e:6e:a3:d6:2f:8c:7f:4c:c4: 09:02:bf:3b:8d:e2:d3:1a:bf:3a:bc:26:0a:71:ab:82:75:c0: c9:2f:ea:09:c8:d9:4f:d5:09:28:4a:a2:b9:9d:43:e0:79:19: 9c:6d:91:6c:d5:aa:c8:85:ee:80:68:13:65:59:23:6d:45:e8: bc:5f:4d:be:76:bf:9e:4a:da:07:51:ae:01:ed:ab:08:7f:ed: 36:31:5e:ff:aa:5b:fd:58:23:1f:a0:d1:db:ec:89:91:03:71: 0b:c5:bf:c9:03:25:6f:2c:41:f2:c8:4c:73:f5:c7:fd:d6:04: 99:49:bb:52:27:0e:bd:4b:3e:59:b3:9e:70:81:a7:fe:76:07: b1:a0:d3:5c:2d:04:6c:00:b0:b8:a1:58:b0:36:04:ce:9d:bf: ef:28:e2:a0:27:d7:af:06:96:ba:2c:ca:c4:80:ff:08:07:82: d4:92:f6:34:94:f5:e8:99:3c:e3:25:ac:3d:09:1f:18:ec:49: e2:ac:5a:f3:8f:76:26:2c:72:73:19:4c:7c:38:32:7a:9c:70: f8:02:8b:9e:63:cd:72:7a:cd:b7:bf:06:99:80:6a:0e:ea:24: 97:ff:ee:2c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEkAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU0OEM5OTM5Njc1NDUw MjNGNTVGQTA3M0Y0OENGQ0M5NzFDNkI5MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAduQdXtGYBNyqdJ4Gy8DHm9Z0Fg2cpvKUfm5mvZuxakJsT/5J jBDl+RTpOGk/YT8oxu06FUv6etFxQG69ZaSnDvWw30jlN7iWruS7uNBtlzzM2y5l 6i+sJRR0BjPOkPChLtyElt/FTxXCGtZC1Zj+M6d0WBz9ZM/RRAruGvQka2dZLSVy DL57QsGgxvbDBeal5JKQ4jMeAqbDusJd3he7mdPocRATLvpKZDaA1lh3u+N6+Vzz 6xEKeqfUPDjHyKBRtdExekwNWVu9BrFjRBuBjmrde9C923AbESbXTQ2Mv35WGPv1 Ig2fAyS2XgiAQS8SR151nJIHTwgoD5kkYq6PAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU5IyZOWdUUCP1X6Bz9Iz8yXHGuQUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNUl5Wk9XZFVVQ1AxWDZC ejlJejh5WEhHdVFVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzGmzANBgkqhkiG9w0BAQsFAAOCAQEAI8l80lJn2CdnFU8YYawAptIzjvfXe/C2 khEoXm6j1i+Mf0zECQK/O43i0xq/OrwmCnGrgnXAyS/qCcjZT9UJKEqiuZ1D4HkZ nG2RbNWqyIXugGgTZVkjbUXovF9Nvna/nkraB1GuAe2rCH/tNjFe/6pb/VgjH6DR 2+yJkQNxC8W/yQMlbyxB8shMc/XH/dYEmUm7UicOvUs+WbOecIGn/nYHsaDTXC0E bACwuKFYsDYEzp2/7yjioCfXrwaWuizKxID/CAeC1JL2NJT16Jk84yWsPQkfGOxJ 4qxa8492JixycxlMfDgyepxw+AKLnmPNcnrNt78GmYBqDuokl//uLA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org