$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BVbNwUETSw5vu4UX_cCD2s2DrlU.roa File: BVbNwUETSw5vu4UX_cCD2s2DrlU.roa (raw, json) Hash identifier: PYUpceePkW/sIT03MlYHsaTLHX5BggEF3AghRSKSaBs= Subject key identifier: 05:56:CD:C1:41:13:4B:0E:6F:BB:85:17:FD:C0:83:DA:CD:83:AE:55 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FC3 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BVbNwUETSw5vu4UX_cCD2s2DrlU.roa Signing time: Fri 01 Sep 2023 09:37:15 +0000 ROA not before: Fri 01 Sep 2023 09:37:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 60.199.212.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4035 (0xfc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0556CDC141134B0E6FBB8517FDC083DACD83AE55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d7:f7:c5:4c:bd:5c:f9:fb:3a:eb:9c:b9:df: 73:de:8e:d5:55:51:43:ef:84:92:db:8f:93:21:00: 95:dd:fe:27:67:71:cf:f0:92:de:61:ff:3b:44:cc: 99:4f:e4:b8:2a:78:fc:1a:0e:d0:fd:90:3c:52:17: 8f:b6:a1:b1:c7:f9:36:d8:78:ba:27:d2:cd:d3:e7: de:a3:9d:58:c4:ec:cf:5a:29:27:cf:2e:ca:53:0e: db:66:df:d4:4b:00:90:08:69:d5:12:a6:04:09:f9: fc:dd:63:9d:ae:49:fc:80:d5:72:15:ed:93:a5:70: 3b:b3:a0:be:05:d6:10:b5:8a:ac:d5:c6:d8:1e:eb: 03:ef:96:9a:84:ed:be:d2:b8:69:f3:dd:dd:f4:3e: 4e:79:6a:fd:88:30:80:32:ab:5c:0a:f9:73:6c:cc: 21:ec:1e:eb:e2:2d:e9:ad:51:03:59:7d:0b:3c:9d: 1c:a6:60:5f:69:09:f4:24:6c:27:52:29:d0:da:86: 1d:1a:cd:31:23:7d:db:66:35:73:2f:5a:46:d4:f0: 77:44:ad:c3:98:de:d9:13:c9:d5:01:97:e1:4a:2b: 85:bb:a1:26:bd:13:e6:af:25:b3:a4:71:55:94:82: 5d:80:db:2f:0d:30:8a:dc:8b:b6:f9:5c:e3:e4:4a: f7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:56:CD:C1:41:13:4B:0E:6F:BB:85:17:FD:C0:83:DA:CD:83:AE:55 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BVbNwUETSw5vu4UX_cCD2s2DrlU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.212.0/24 Signature Algorithm: sha256WithRSAEncryption 69:25:dc:a7:c4:e1:62:f2:03:50:00:84:d0:c5:1b:47:3c:5d: 07:db:53:2b:91:4e:29:93:bb:30:cd:a1:b4:04:cf:3a:f3:ab: 66:37:81:fc:40:44:e6:b0:38:cb:f4:d7:c4:72:31:26:90:33: 68:6e:41:12:74:47:00:41:57:5f:2f:30:da:97:8f:ba:d2:e7: 84:cd:01:13:5e:6d:13:2c:5a:14:d1:6a:58:d8:47:25:07:28: 38:10:a4:ec:5c:bd:28:0f:d6:42:f4:30:3b:0a:7c:fd:8e:49: d0:2b:27:da:db:0c:97:9a:53:88:3c:3a:b3:0f:27:58:2a:e5: c8:fa:f8:43:8e:f7:d4:92:a6:ab:62:ad:33:f9:56:fc:aa:2c: 69:51:0a:0b:b6:22:31:22:e4:a9:24:83:97:de:87:a3:2a:33: 69:6d:de:53:9a:f4:9b:c4:02:4d:b8:4c:16:23:f4:e9:db:5e: 39:bb:8d:94:21:8f:d9:da:56:8b:b0:4d:b0:7b:68:da:7f:8e: bb:a4:da:28:f7:01:d3:de:54:41:fa:fd:8d:a7:86:0a:f7:bc: bc:55:77:a4:58:d5:21:ba:83:85:57:5e:4b:25:1e:a2:ed:c8: 5d:9c:af:c1:d2:00:0f:1b:7d:42:b2:64:30:12:5a:73:38:e4: 30:30:92:fb -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD8MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA1NTZDREMxNDExMzRC MEU2RkJCODUxN0ZEQzA4M0RBQ0Q4M0FFNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC91/fFTL1c+fs665y533PejtVVUUPvhJLbj5MhAJXd/idncc/w kt5h/ztEzJlP5LgqePwaDtD9kDxSF4+2obHH+TbYeLon0s3T596jnVjE7M9aKSfP LspTDttm39RLAJAIadUSpgQJ+fzdY52uSfyA1XIV7ZOlcDuzoL4F1hC1iqzVxtge 6wPvlpqE7b7SuGnz3d30Pk55av2IMIAyq1wK+XNszCHsHuviLemtUQNZfQs8nRym YF9pCfQkbCdSKdDahh0azTEjfdtmNXMvWkbU8HdErcOY3tkTydUBl+FKK4W7oSa9 E+avJbOkcVWUgl2A2y8NMIrci7b5XOPkSvcbAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUBVbNwUETSw5vu4UX/cCD2s2DrlUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQlZiTndVRVRTdzV2dTRV WF9jQ0QyczJEcmxVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzH1DANBgkqhkiG9w0BAQsFAAOCAQEAaSXcp8ThYvIDUACE0MUbRzxdB9tTK5FO KZO7MM2htATPOvOrZjeB/EBE5rA4y/TXxHIxJpAzaG5BEnRHAEFXXy8w2pePutLn hM0BE15tEyxaFNFqWNhHJQcoOBCk7Fy9KA/WQvQwOwp8/Y5J0Csn2tsMl5pTiDw6 sw8nWCrlyPr4Q4731JKmq2KtM/lW/KosaVEKC7YiMSLkqSSDl96HoyozaW3eU5r0 m8QCTbhMFiP06dteObuNlCGP2dpWi7BNsHto2n+Ou6TaKPcB095UQfr9jaeGCve8 vFV3pFjVIbqDhVdeSyUeou3IXZyvwdIADxt9QrJkMBJaczjkMDCS+w== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org