$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AMIFAF-tvPfjUb03wDvP5C24Osw.roa File: AMIFAF-tvPfjUb03wDvP5C24Osw.roa (raw, json) Hash identifier: qgKZ4Bvy1aOVBVoxpCenqPyImWVIyk76+SWTE8OD3s0= Subject key identifier: 00:C2:05:00:5F:AD:BC:F7:E3:51:BD:37:C0:3B:CF:E4:2D:B8:3A:CC Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FF2 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AMIFAF-tvPfjUb03wDvP5C24Osw.roa Signing time: Fri 01 Sep 2023 09:37:32 +0000 ROA not before: Fri 01 Sep 2023 09:37:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131628 IP address blocks: 175.99.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4082 (0xff2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=00C205005FADBCF7E351BD37C03BCFE42DB83ACC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:62:82:0c:e1:45:81:06:df:67:d1:f3:6b:5c: 11:8a:78:f4:d3:a8:2b:54:d4:9f:8f:96:55:d7:c0: 13:eb:53:63:61:6f:f9:f8:fe:f2:25:bf:2b:2e:88: d4:0d:e8:c6:b6:8d:24:45:8c:d5:0e:d9:74:30:01: 82:c8:f7:49:f6:7a:7d:d9:a0:e4:02:68:a3:f1:c5: 66:d9:3a:f6:d9:eb:1a:85:db:1d:90:b3:4c:dc:20: a1:2e:76:7a:85:e4:1c:c0:3b:88:13:ff:45:5a:1e: 8e:f4:b1:12:d3:8a:ce:3f:09:ec:45:d5:ba:2b:1b: 71:84:4b:32:f8:25:f5:64:a5:26:a0:f9:f5:b7:e1: 24:85:a9:d0:64:be:5f:b1:ad:e3:4a:57:c1:1b:51: 4c:30:3e:da:b5:33:c8:04:19:2d:37:c8:42:17:ad: c6:1c:8b:5b:a8:0b:55:84:7a:0e:d6:5a:be:d1:97: 79:16:55:a8:bd:ff:94:09:74:69:d1:2c:5f:10:29: d0:95:f9:fb:10:2e:73:4e:3a:b1:92:34:03:a5:1b: 64:79:8a:f0:61:03:81:42:42:6b:54:da:95:d8:c4: 1a:21:04:81:22:4b:79:3d:5b:b4:6f:11:07:36:10: 60:c8:eb:70:d4:19:b5:da:c8:ca:88:a5:24:0f:42: c1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C2:05:00:5F:AD:BC:F7:E3:51:BD:37:C0:3B:CF:E4:2D:B8:3A:CC X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AMIFAF-tvPfjUb03wDvP5C24Osw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.99.192.0/19 Signature Algorithm: sha256WithRSAEncryption 0b:3f:61:1f:c7:fb:01:51:dd:5c:9c:fe:7a:44:e1:b1:ad:b0: 0f:07:20:e6:29:3a:76:cd:7a:f9:6a:92:aa:1b:0a:1d:9a:87: 95:30:15:dc:25:52:52:2c:3c:cb:1a:2a:81:fa:8e:20:06:d5: 6c:07:19:94:92:a3:db:6e:3f:0c:16:a6:f5:19:17:36:17:f2: 82:eb:af:70:49:96:6a:93:d9:c8:57:73:eb:34:4e:29:98:c2: 70:17:8e:ed:ff:c2:1e:bd:e0:46:86:de:49:c8:21:c9:bc:f4: 90:9d:03:d9:63:e6:4a:34:a0:36:5e:f4:1f:34:d7:ab:70:2f: f9:c8:0f:5d:92:04:db:93:74:40:b0:03:fd:fc:b9:fd:98:03: 88:70:db:ef:b3:56:e7:d9:af:5a:6f:8b:c1:9f:e0:bb:4b:e0: 52:da:85:77:2d:02:d1:3b:52:8b:9d:b8:2b:36:00:c2:2d:46: cd:f3:4f:b5:e3:e9:1c:30:49:6f:69:f4:4a:8e:98:9d:50:81: 9d:04:b3:cd:7c:0c:10:ce:ba:cc:28:3f:08:91:aa:30:73:90: 82:de:db:42:91:9d:ff:a0:51:4d:bf:6a:90:26:e2:20:11:a4: 4e:2b:94:14:60:82:36:45:cd:fb:b4:85:a3:1c:25:c4:df:34: ad:fb:8d:4c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD/IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAwQzIwNTAwNUZBREJD RjdFMzUxQkQzN0MwM0JDRkU0MkRCODNBQ0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5YoIM4UWBBt9n0fNrXBGKePTTqCtU1J+PllXXwBPrU2Nhb/n4 /vIlvysuiNQN6Ma2jSRFjNUO2XQwAYLI90n2en3ZoOQCaKPxxWbZOvbZ6xqF2x2Q s0zcIKEudnqF5BzAO4gT/0VaHo70sRLTis4/CexF1borG3GESzL4JfVkpSag+fW3 4SSFqdBkvl+xreNKV8EbUUwwPtq1M8gEGS03yEIXrcYci1uoC1WEeg7WWr7Rl3kW Vai9/5QJdGnRLF8QKdCV+fsQLnNOOrGSNAOlG2R5ivBhA4FCQmtU2pXYxBohBIEi S3k9W7RvEQc2EGDI63DUGbXayMqIpSQPQsFbAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUAMIFAF+tvPfjUb03wDvP5C24OswwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQU1JRkFGLXR2UGZqVWIw M3dEdlA1QzI0T3N3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Ba9jwDANBgkqhkiG9w0BAQsFAAOCAQEACz9hH8f7AVHdXJz+ekThsa2wDwcg5ik6 ds16+WqSqhsKHZqHlTAV3CVSUiw8yxoqgfqOIAbVbAcZlJKj224/DBam9RkXNhfy guuvcEmWapPZyFdz6zROKZjCcBeO7f/CHr3gRobeScghybz0kJ0D2WPmSjSgNl70 HzTXq3Av+cgPXZIE25N0QLAD/fy5/ZgDiHDb77NW59mvWm+LwZ/gu0vgUtqFdy0C 0TtSi524KzYAwi1GzfNPtePpHDBJb2n0So6YnVCBnQSzzXwMEM66zCg/CJGqMHOQ gt7bQpGd/6BRTb9qkCbiIBGkTiuUFGCCNkXN+7SFoxwlxN80rfuNTA== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org