$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8hc_rFwRQbEBnk3JssKHtbFxKbc.roa File: 8hc_rFwRQbEBnk3JssKHtbFxKbc.roa (raw, json) Hash identifier: NpfO6AjOm14r/ccO5KcILA55UfU1hd/kWax65uB8eCY= Subject key identifier: F2:17:3F:AC:5C:11:41:B1:01:9E:4D:C9:B2:C2:87:B5:B1:71:29:B7 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11BB Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8hc_rFwRQbEBnk3JssKHtbFxKbc.roa Signing time: Mon 26 Aug 2024 05:24:19 +0000 ROA not before: Mon 26 Aug 2024 05:24:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.17.112.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4539 (0x11bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F2173FAC5C1141B1019E4DC9B2C287B5B17129B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fc:5a:b9:bd:68:c7:20:36:c0:92:b3:a0:11: 88:76:9d:6e:34:0c:f2:32:ff:6e:f7:6a:59:7f:ea: 1e:c5:71:b3:2c:49:61:6f:ad:41:e5:09:06:bb:c9: 3a:6a:c3:44:fc:c1:c4:85:38:28:0d:db:9a:9b:19: 55:04:fa:ba:1a:6c:1a:62:f4:c3:74:b8:4c:c7:d5: b5:bf:2d:13:e4:a5:33:b7:50:f7:51:f5:cd:7b:2a: 75:a6:3e:4a:cf:17:a7:7b:8c:f9:e5:88:9b:c9:af: 28:fe:70:90:1c:f1:1e:68:32:ee:83:62:33:77:7e: 77:d5:6d:76:d1:9d:1d:82:67:35:07:62:25:35:db: 19:24:83:c7:29:83:6d:cb:0c:98:aa:0c:99:cc:1a: 70:47:46:bf:09:7d:28:98:97:b6:b1:c8:6a:09:96: 9f:3d:b5:37:cf:a5:8f:a0:a2:a8:68:32:03:54:6c: 2a:05:bf:78:bc:00:f3:94:30:8e:71:c5:69:ff:ec: de:ac:01:75:87:2e:ab:86:0c:8f:44:0f:5b:89:30: 48:b9:ac:6b:23:e4:0c:e2:49:29:cd:2f:ac:60:e0: dc:c6:4c:36:a0:93:42:f5:12:81:a5:79:4d:41:3f: 50:86:1c:d4:51:b2:1a:b6:a5:dc:9f:33:d9:8d:3f: 75:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:17:3F:AC:5C:11:41:B1:01:9E:4D:C9:B2:C2:87:B5:B1:71:29:B7 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8hc_rFwRQbEBnk3JssKHtbFxKbc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.112.0/20 Signature Algorithm: sha256WithRSAEncryption 4b:16:6b:36:17:6e:86:39:50:ae:7c:29:92:e3:32:63:c8:43: 88:75:3a:a5:14:f8:bb:58:ad:f3:db:23:ff:eb:f3:66:d3:8c: da:46:30:1d:5b:32:28:73:4d:b6:62:e5:c9:33:f3:8e:93:62: 0f:ee:c2:87:53:50:dd:27:0e:37:61:46:b2:e6:55:7e:98:04: 62:fb:99:03:b7:c8:aa:14:1d:cc:42:a2:c6:bb:1f:1b:97:80: 0b:2c:60:9b:0a:db:83:ee:c8:94:dc:95:a2:2d:79:ec:e6:9e: 1b:7c:b4:77:8a:78:fc:d7:58:68:66:b0:43:2b:fa:50:35:bd: d7:a5:7a:93:49:66:78:20:c9:13:56:79:2f:f3:c4:84:27:fa: d1:b9:a0:58:7b:e3:21:69:a3:56:6e:5a:6f:c1:cf:fb:49:0e: 33:dc:b6:47:27:8d:04:38:29:ee:2f:d4:10:84:f5:54:6f:65: b5:23:d7:df:8f:62:b5:22:c2:94:12:d8:d3:7d:ea:a1:8e:4c: 73:37:d1:12:37:89:8f:af:dc:d8:99:d6:ed:28:28:5a:e4:d8: d0:8e:ad:8c:d9:e5:61:66:71:f5:11:fa:37:98:77:2e:eb:e1: d0:e6:03:ef:1d:83:bc:66:31:e5:0f:0e:97:fb:41:ef:7e:de: 18:60:04:24 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEbswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYyMTczRkFDNUMxMTQx QjEwMTlFNERDOUIyQzI4N0I1QjE3MTI5QjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx/Fq5vWjHIDbAkrOgEYh2nW40DPIy/273all/6h7FcbMsSWFv rUHlCQa7yTpqw0T8wcSFOCgN25qbGVUE+roabBpi9MN0uEzH1bW/LRPkpTO3UPdR 9c17KnWmPkrPF6d7jPnliJvJryj+cJAc8R5oMu6DYjN3fnfVbXbRnR2CZzUHYiU1 2xkkg8cpg23LDJiqDJnMGnBHRr8JfSiYl7axyGoJlp89tTfPpY+goqhoMgNUbCoF v3i8APOUMI5xxWn/7N6sAXWHLquGDI9ED1uJMEi5rGsj5AziSSnNL6xg4NzGTDag k0L1EoGleU1BP1CGHNRRshq2pdyfM9mNP3WZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU8hc/rFwRQbEBnk3JssKHtbFxKbcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvOGhjX3JGd1JRYkVCbmsz SnNzS0h0YkZ4S2JjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNIRcDANBgkqhkiG9w0BAQsFAAOCAQEASxZrNhduhjlQrnwpkuMyY8hDiHU6pRT4 u1it89sj/+vzZtOM2kYwHVsyKHNNtmLlyTPzjpNiD+7Ch1NQ3ScON2FGsuZVfpgE YvuZA7fIqhQdzEKixrsfG5eACyxgmwrbg+7IlNyVoi157OaeG3y0d4p4/NdYaGaw Qyv6UDW916V6k0lmeCDJE1Z5L/PEhCf60bmgWHvjIWmjVm5ab8HP+0kOM9y2RyeN BDgp7i/UEIT1VG9ltSPX349itSLClBLY033qoY5MczfREjeJj6/c2JnW7SgoWuTY 0I6tjNnlYWZx9RH6N5h3Luvh0OYD7x2DvGYx5Q8Ol/tB737eGGAEJA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org