$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6r4LqfhZcX-TEiZU0liXdwfoeHY.roa File: 6r4LqfhZcX-TEiZU0liXdwfoeHY.roa (raw, json) Hash identifier: Ec9S2hGVExQr5kEL5Ce90b1qA/+WcE84tvob/+T503g= Subject key identifier: EA:BE:0B:A9:F8:59:71:7F:93:12:26:54:D2:58:97:77:07:E8:78:76 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11C4 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6r4LqfhZcX-TEiZU0liXdwfoeHY.roa Signing time: Mon 26 Aug 2024 05:24:21 +0000 ROA not before: Mon 26 Aug 2024 05:24:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 2001:4546:1000:8f00::/56 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4548 (0x11c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EABE0BA9F859717F93122654D258977707E87876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:96:23:b4:b2:ff:8e:db:0a:d1:e1:3a:13:5f: d9:c5:25:4a:97:35:58:15:7b:67:ab:da:3a:86:37: 84:bc:c3:12:f0:fa:e1:cb:5f:a0:1c:33:91:a5:7f: dd:f1:a1:46:82:6b:88:c0:51:d5:4f:c2:17:5f:cb: f0:fb:ad:c8:10:1f:da:21:4c:89:29:68:57:d7:9d: 44:32:89:d0:24:f9:2c:48:dc:b2:2b:df:dd:e0:6f: 6d:8d:c0:1d:0d:1f:48:37:5c:c1:08:52:dc:85:e0: ca:aa:0c:42:3f:72:58:41:c6:9b:bf:85:52:7d:a6: 42:4f:d6:e6:76:40:05:62:d2:75:58:84:ca:07:31: e3:64:31:e9:42:a3:e9:cb:e0:98:59:ab:bf:23:66: 63:8f:5e:04:9a:fe:ea:ab:dd:b7:c4:85:0c:ed:33: cb:f5:fa:29:d2:4b:f6:cc:f4:a8:30:0c:69:5d:68: 73:ef:71:27:01:0c:79:5e:b5:2c:10:ec:84:82:08: 12:4e:9c:ae:c6:56:b3:ee:3b:04:14:be:cd:a1:42: 3b:dc:82:63:7f:7e:25:e3:13:86:eb:64:93:61:ef: 83:99:15:fc:3c:41:bd:da:ec:a5:dd:47:27:b4:d2: 12:f5:fd:d1:a8:24:5a:ca:e4:e1:58:6b:07:a0:67: b3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:BE:0B:A9:F8:59:71:7F:93:12:26:54:D2:58:97:77:07:E8:78:76 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6r4LqfhZcX-TEiZU0liXdwfoeHY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4546:1000:8f00::/56 Signature Algorithm: sha256WithRSAEncryption 19:d3:39:94:4a:0d:20:8f:d6:e2:68:e4:65:14:21:fc:78:2a: 46:56:c3:8e:76:07:eb:3b:1b:68:b9:d8:ed:9e:34:c2:77:2a: d9:f2:0e:38:64:d4:f7:ed:15:5b:8b:4b:9c:34:dc:ed:f0:75: c3:e7:60:88:d0:9e:90:d4:0c:23:21:a3:b2:ea:68:ad:93:9b: f0:30:c2:98:f6:1d:e0:1b:04:d1:c8:5a:14:01:fd:13:1c:ba: 24:e6:25:aa:c3:55:cf:49:62:a7:76:44:d6:be:81:6f:c0:0c: 3b:95:66:e7:c9:97:98:0f:c9:f7:be:46:20:d5:75:e6:ce:54: a6:5d:07:82:94:c8:58:30:00:be:63:da:08:51:21:4c:89:dd: 61:e4:6b:a7:cf:3a:25:8c:42:ab:27:c7:78:ed:ca:41:fe:9a: a3:0d:a5:1c:16:78:68:82:61:15:c5:d1:fa:12:29:e6:bd:67: a0:b4:7f:ae:69:e0:d5:33:37:c1:98:bb:7d:e8:7d:24:98:32: 6e:4e:8e:56:48:3e:b7:ef:40:bf:a8:33:e8:d9:4a:14:26:7f: f5:de:96:d5:a0:e7:a6:e2:77:11:e0:f9:c1:9c:72:d6:81:cc: 10:22:c9:2b:fd:17:ce:8a:7f:2e:17:36:19:ed:0a:f2:8d:6d: ee:5b:83:ba -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICEcQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVBQkUwQkE5Rjg1OTcx N0Y5MzEyMjY1NEQyNTg5Nzc3MDdFODc4NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLliO0sv+O2wrR4ToTX9nFJUqXNVgVe2er2jqGN4S8wxLw+uHL X6AcM5Glf93xoUaCa4jAUdVPwhdfy/D7rcgQH9ohTIkpaFfXnUQyidAk+SxI3LIr 393gb22NwB0NH0g3XMEIUtyF4MqqDEI/clhBxpu/hVJ9pkJP1uZ2QAVi0nVYhMoH MeNkMelCo+nL4JhZq78jZmOPXgSa/uqr3bfEhQztM8v1+inSS/bM9KgwDGldaHPv cScBDHletSwQ7ISCCBJOnK7GVrPuOwQUvs2hQjvcgmN/fiXjE4brZJNh74OZFfw8 Qb3a7KXdRye00hL1/dGoJFrK5OFYawegZ7M7AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU6r4LqfhZcX+TEiZU0liXdwfoeHYwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNnI0THFmaFpjWC1URWla VTBsaVhkd2ZvZUhZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAjBggrBgEFBQcBBwEB/wQUMBIwEAQCAAIwCgMI ACABRUYQAI8wDQYJKoZIhvcNAQELBQADggEBABnTOZRKDSCP1uJo5GUUIfx4KkZW w452B+s7G2i52O2eNMJ3KtnyDjhk1PftFVuLS5w03O3wdcPnYIjQnpDUDCMho7Lq aK2Tm/Awwpj2HeAbBNHIWhQB/RMcuiTmJarDVc9JYqd2RNa+gW/ADDuVZufJl5gP yfe+RiDVdebOVKZdB4KUyFgwAL5j2ghRIUyJ3WHka6fPOiWMQqsnx3jtykH+mqMN pRwWeGiCYRXF0foSKea9Z6C0f65p4NUzN8GYu33ofSSYMm5OjlZIPrfvQL+oM+jZ ShQmf/XeltWg56bidxHg+cGcctaBzBAiySv9F86Kfy4XNhntCvKNbe5bg7o= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:43 2024 by rpki-client on console-fra.rpki-client.org