$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9iHnN-laLNFtns4sgSRHFA-kKCE.roa File: 9iHnN-laLNFtns4sgSRHFA-kKCE.roa (raw, json) Hash identifier: Ph1dhRYv8+9cMNJwOcMDmiz+Zvl/Ofm9XwT3saoG+Kw= Subject key identifier: F6:21:E7:37:E9:5A:2C:D1:6D:9E:CE:2C:81:24:47:14:0F:A4:28:21 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1238 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9iHnN-laLNFtns4sgSRHFA-kKCE.roa Signing time: Mon 26 Aug 2024 05:24:48 +0000 ROA not before: Mon 26 Aug 2024 05:24:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.63.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4664 (0x1238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F621E737E95A2CD16D9ECE2C812447140FA42821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8c:7a:4d:a9:93:a9:d2:aa:49:71:bc:a3:e6: a1:d5:36:16:d6:d4:2b:0f:42:16:0b:b1:98:cb:1a: 8b:5c:a8:0c:55:7b:9d:59:b3:22:6d:fd:e0:6e:33: 79:3f:e3:1c:fa:cb:8a:6b:62:12:3b:49:e8:ce:65: b3:95:3e:b5:3c:3e:77:25:1f:cd:8a:fc:26:13:b6: 8a:e8:fe:8f:fc:92:90:6c:6d:56:7d:7b:7b:59:0a: 44:bf:67:5e:b9:19:ee:58:5a:fc:23:ca:d1:aa:c1: f0:92:34:ab:49:c3:a2:86:9d:e0:50:f5:f0:5a:d1: b3:cd:06:58:e3:64:e3:bb:0d:b3:8f:b6:7f:d0:35: 3a:53:ea:5d:cc:00:a4:3c:58:21:58:71:45:03:1c: ee:5e:d0:23:ad:c4:4a:7c:34:8e:fc:ba:4d:1d:6e: 67:84:e6:33:e8:5c:35:5f:a7:d0:eb:c1:64:94:74: 40:47:7f:d7:d1:57:0f:0d:5c:47:88:2e:77:97:d9: e0:c8:1c:46:56:d1:66:c8:fc:25:5c:87:b4:3c:2d: 94:a2:ba:f2:cd:d6:7b:07:66:02:8f:6a:25:b0:24: e5:4f:56:c1:ba:27:07:29:4f:58:f4:db:e1:e5:b3: b5:ad:cd:4e:a4:66:72:70:8f:1b:f2:7d:d1:c1:e1: c0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:21:E7:37:E9:5A:2C:D1:6D:9E:CE:2C:81:24:47:14:0F:A4:28:21 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9iHnN-laLNFtns4sgSRHFA-kKCE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.128.0/19 Signature Algorithm: sha256WithRSAEncryption 59:a7:34:5d:da:fd:f4:58:5f:9a:aa:ad:2e:86:43:e9:da:43: cb:9b:f6:93:26:a2:bb:99:83:57:c7:23:da:54:bf:8c:33:1b: ab:56:4c:e5:14:aa:0c:5f:ed:89:2e:ed:44:81:42:1a:fd:83: f3:6d:42:92:0d:06:cc:d1:f1:b8:5b:96:05:55:f7:ee:ba:8f: 11:4d:a3:0f:54:e2:5c:12:a6:51:6b:34:c2:06:b6:de:94:da: 2a:e6:ca:ea:2f:f4:b8:02:64:58:37:dd:73:ce:5c:09:43:79: 9d:ea:8b:21:a8:7c:f5:32:45:03:af:35:e3:85:66:5a:ae:e0: 8b:16:cb:53:f6:48:b8:f0:b3:69:f7:db:57:a6:02:30:e3:47: 25:bc:a0:85:59:c1:e1:d1:18:8c:e9:91:99:5a:f5:1b:5a:ea: 6a:10:af:94:3a:92:9b:d6:4f:50:c1:e9:7c:75:35:39:3b:69: 7c:0d:81:84:a5:a1:b2:b3:e8:1f:35:b6:ad:00:f9:e2:ee:c2: 91:20:41:d4:12:af:92:f6:c4:8e:25:2d:54:8f:c1:66:f4:d5: 81:9f:28:d1:a8:d2:1f:e4:29:bc:da:95:b9:23:4b:eb:73:41: c2:47:b5:4c:bf:20:51:e1:2c:82:59:7e:97:33:75:4a:8d:be: 3b:95:10:77 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEjgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY2MjFFNzM3RTk1QTJD RDE2RDlFQ0UyQzgxMjQ0NzE0MEZBNDI4MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHjHpNqZOp0qpJcbyj5qHVNhbW1CsPQhYLsZjLGotcqAxVe51Z syJt/eBuM3k/4xz6y4prYhI7SejOZbOVPrU8PnclH82K/CYTtoro/o/8kpBsbVZ9 e3tZCkS/Z165Ge5YWvwjytGqwfCSNKtJw6KGneBQ9fBa0bPNBljjZOO7DbOPtn/Q NTpT6l3MAKQ8WCFYcUUDHO5e0COtxEp8NI78uk0dbmeE5jPoXDVfp9DrwWSUdEBH f9fRVw8NXEeILneX2eDIHEZW0WbI/CVch7Q8LZSiuvLN1nsHZgKPaiWwJOVPVsG6 JwcpT1j02+Hls7WtzU6kZnJwjxvyfdHB4cBDAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU9iHnN+laLNFtns4sgSRHFA+kKCEwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvOWlIbk4tbGFMTkZ0bnM0 c2dTUkhGQS1rS0NFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdI/gDANBgkqhkiG9w0BAQsFAAOCAQEAWac0Xdr99FhfmqqtLoZD6dpDy5v2kyai u5mDV8cj2lS/jDMbq1ZM5RSqDF/tiS7tRIFCGv2D821Ckg0GzNHxuFuWBVX37rqP EU2jD1TiXBKmUWs0wga23pTaKubK6i/0uAJkWDfdc85cCUN5neqLIah89TJFA681 44VmWq7gixbLU/ZIuPCzaffbV6YCMONHJbyghVnB4dEYjOmRmVr1G1rqahCvlDqS m9ZPUMHpfHU1OTtpfA2BhKWhsrPoHzW2rQD54u7CkSBB1BKvkvbEjiUtVI/BZvTV gZ8o0ajSH+QpvNqVuSNL63NBwke1TL8gUeEsgll+lzN1So2+O5UQdw== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:12 2024 by rpki-client on console-ams.rpki-client.org