$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5egOyXgxsvXUs3Kgy9I-luqGW4w.roa File: 5egOyXgxsvXUs3Kgy9I-luqGW4w.roa (raw, json) Hash identifier: /7fEs0R0IJb94NcA+YZ6oEC4KOiw/1ey0nnChtRiYaU= Subject key identifier: E5:E8:0E:C9:78:31:B2:F5:D4:B3:72:A0:CB:D2:3E:96:EA:86:5B:8C Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1217 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5egOyXgxsvXUs3Kgy9I-luqGW4w.roa Signing time: Mon 26 Aug 2024 05:24:41 +0000 ROA not before: Mon 26 Aug 2024 05:24:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 60.198.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4631 (0x1217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E5E80EC97831B2F5D4B372A0CBD23E96EA865B8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:fa:51:2e:3d:be:a2:ce:c5:98:c6:ee:d5: dd:3d:05:2d:68:39:1c:ff:cf:4e:a2:3f:26:ab:8d: d2:74:55:10:5f:9d:20:de:53:d2:1b:f5:4c:4f:e4: 28:87:c3:23:8e:02:af:f8:00:07:37:9b:8c:79:cb: 0b:eb:26:d9:40:11:b4:bd:10:55:9c:d3:9e:f2:b0: 09:d3:77:b1:8d:99:a2:57:d0:78:b1:21:b3:2f:bc: 66:8c:7c:7c:dd:56:e0:3c:ec:48:76:0d:26:c6:97: f4:59:7e:15:21:1d:07:36:67:d2:25:66:91:cb:fe: c5:a1:a3:40:17:38:c0:4c:f5:d5:0e:5e:3d:85:0f: 2c:6e:94:39:86:f6:29:71:55:e5:cb:87:eb:8b:9f: b0:17:48:fb:d9:2b:d3:3b:67:5c:94:04:34:b1:1f: 91:e0:df:a7:01:b8:93:39:a2:d8:20:e9:85:d6:73: 62:19:eb:0e:80:fc:d6:e3:97:3d:53:8c:25:fa:19: fe:c6:f3:59:4e:34:d7:b3:cf:e9:4f:7d:b5:d4:ed: 00:e4:0f:cb:0d:34:f4:6b:32:0d:7b:e7:ec:ab:9d: 9b:c2:28:c8:72:6e:02:10:b3:a7:54:f5:16:0a:d8: be:ff:65:81:00:5e:f0:01:dd:47:65:ad:32:7e:f4: 66:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E8:0E:C9:78:31:B2:F5:D4:B3:72:A0:CB:D2:3E:96:EA:86:5B:8C X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5egOyXgxsvXUs3Kgy9I-luqGW4w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.36.0/22 Signature Algorithm: sha256WithRSAEncryption 71:5a:c5:47:9a:06:50:9a:81:d4:a1:8c:78:3b:e0:ac:45:34: f3:0a:a2:af:49:23:7c:96:ca:51:96:1d:7d:31:89:ac:ac:d3: d1:e4:15:c1:9d:e9:42:81:55:8a:c0:a0:5c:b5:74:bf:45:9b: e1:73:28:df:f4:2e:50:a0:9b:e1:e1:e2:ea:95:c6:24:1d:a2: 5a:80:90:31:59:4a:f0:a4:da:2e:12:14:ba:93:ef:09:eb:9a: a5:35:df:7e:fb:68:62:67:1c:2c:c6:2f:bd:1a:a1:75:87:05: 91:0d:45:c0:45:72:77:b9:a8:03:91:e6:6a:0c:52:79:41:00: 62:55:80:38:0f:ce:31:54:a9:5a:dc:20:da:d4:62:7d:6e:ec: 73:7f:36:18:e6:3b:6d:69:e3:c6:69:2f:e3:d8:4d:cd:92:7a: 9f:38:5c:42:0d:df:6b:b5:90:ea:cc:85:32:60:96:96:3e:bb: 61:52:a7:06:a5:8a:b5:85:f3:8f:c4:5e:9e:f6:b2:f5:d7:b1: e2:aa:84:cf:4f:ca:94:85:ea:bd:05:5a:e0:38:3a:b7:e1:25: f4:e6:99:84:4f:e7:46:d5:d3:e0:25:8a:62:e0:4a:e7:be:8d: b7:51:38:c7:92:68:0f:8f:7c:2f:5f:b9:74:25:2c:22:e2:77: c9:bd:30:7d -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEhcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU1RTgwRUM5NzgzMUIy RjVENEIzNzJBMENCRDIzRTk2RUE4NjVCOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7DfpRLj2+os7FmMbu1d09BS1oORz/z06iPyarjdJ0VRBfnSDe U9Ib9UxP5CiHwyOOAq/4AAc3m4x5ywvrJtlAEbS9EFWc057ysAnTd7GNmaJX0Hix IbMvvGaMfHzdVuA87Eh2DSbGl/RZfhUhHQc2Z9IlZpHL/sWho0AXOMBM9dUOXj2F DyxulDmG9ilxVeXLh+uLn7AXSPvZK9M7Z1yUBDSxH5Hg36cBuJM5otgg6YXWc2IZ 6w6A/Nbjlz1TjCX6Gf7G81lONNezz+lPfbXU7QDkD8sNNPRrMg175+yrnZvCKMhy bgIQs6dU9RYK2L7/ZYEAXvAB3UdlrTJ+9GbVAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU5egOyXgxsvXUs3Kgy9I+luqGW4wwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNWVnT3lYZ3hzdlhVczNL Z3k5SS1sdXFHVzR3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AjzGJDANBgkqhkiG9w0BAQsFAAOCAQEAcVrFR5oGUJqB1KGMeDvgrEU08wqir0kj fJbKUZYdfTGJrKzT0eQVwZ3pQoFVisCgXLV0v0Wb4XMo3/QuUKCb4eHi6pXGJB2i WoCQMVlK8KTaLhIUupPvCeuapTXffvtoYmccLMYvvRqhdYcFkQ1FwEVyd7moA5Hm agxSeUEAYlWAOA/OMVSpWtwg2tRifW7sc382GOY7bWnjxmkv49hNzZJ6nzhcQg3f a7WQ6syFMmCWlj67YVKnBqWKtYXzj8Renvay9dex4qqEz0/KlIXqvQVa4Dg6t+El 9OaZhE/nRtXT4CWKYuBK576Nt1E4x5JoD498L1+5dCUsIuJ3yb0wfQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org