$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/C-DVNgnTz4Gl8uzTZf1bueQJ_3A.roa File: C-DVNgnTz4Gl8uzTZf1bueQJ_3A.roa (raw, json) Hash identifier: BvWxlwVY1U6EHxojil/m5pVYJyBDZnUsRaSH0fS8Umw= Subject key identifier: 0B:E0:D5:36:09:D3:CF:81:A5:F2:EC:D3:65:FD:5B:B9:E4:09:FF:70 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11F0 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/C-DVNgnTz4Gl8uzTZf1bueQJ_3A.roa Signing time: Mon 26 Aug 2024 05:24:32 +0000 ROA not before: Mon 26 Aug 2024 05:24:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.168.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4592 (0x11f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0BE0D53609D3CF81A5F2ECD365FD5BB9E409FF70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:52:84:1e:0a:6c:6f:b1:d8:90:6e:7c:5e:51: 9a:cb:fc:b4:41:6f:68:92:9d:84:b0:a6:83:14:67: 9e:c5:5e:0a:57:8a:e8:2b:fd:41:71:70:7b:37:94: ce:b9:28:be:88:dc:7b:5a:e2:f0:3d:a7:3f:be:40: ad:4b:c1:b2:2d:3f:1c:60:5c:6a:df:4f:3d:fb:0c: 96:22:cd:8b:de:c9:1d:20:14:f9:1d:9f:10:68:14: 15:8f:69:62:48:61:4c:4b:e7:5e:fa:f9:81:9b:69: 5c:ff:39:97:cf:e9:ff:0f:b3:5a:14:7d:ef:04:7b: a2:4c:b8:94:db:91:00:7b:75:8f:be:d8:cf:5b:a4: ec:b0:be:89:63:d2:7f:9f:17:0d:91:b9:14:f7:6b: 4d:dd:37:92:36:b1:52:9c:a7:e4:f4:08:91:d1:c0: 79:10:5d:53:4a:fd:64:60:d3:f9:72:0e:56:ae:ac: 4c:9d:c4:8c:28:62:d4:1c:aa:e2:85:6a:6d:04:28: 56:2b:f8:8d:b2:40:42:de:46:16:75:2f:c8:bd:6b: 2f:be:11:2c:ee:70:e4:b8:f4:62:e3:2f:d1:80:0d: 9b:88:ea:e5:98:62:e8:33:78:fb:77:ca:80:27:ed: 68:da:b4:4d:2a:7f:4e:fc:f1:17:e8:13:be:28:7c: 5c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:E0:D5:36:09:D3:CF:81:A5:F2:EC:D3:65:FD:5B:B9:E4:09:FF:70 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/C-DVNgnTz4Gl8uzTZf1bueQJ_3A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.168.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:ae:45:2e:5f:52:89:00:a9:d1:d6:42:5a:55:62:d1:9a:70: 0a:ae:70:47:a5:dc:04:77:0d:ca:b8:9f:26:c5:6e:ab:8b:70: f5:38:a0:1e:73:e6:aa:3a:08:be:35:04:ff:b6:cc:e6:e8:63: 96:3b:ac:76:99:4f:b0:4f:e6:f6:bb:f4:1f:46:47:5d:ee:fc: c3:2c:f2:c4:2c:dc:ba:2f:73:ab:8e:ac:3b:ff:e4:ef:6a:25: 7a:97:ab:09:db:9d:bf:6b:65:51:d4:a9:9c:ba:02:c8:8e:58: 5d:30:07:5c:11:c6:1f:ec:07:c5:88:58:6e:3c:e7:f1:75:e7: 51:0b:43:e5:8f:3c:2f:71:0d:ad:23:7c:73:c2:8f:00:f0:4d: 67:f4:b5:97:a6:64:a3:81:bd:85:4f:98:ef:b7:22:a0:0f:11: d2:0a:fa:c0:5b:12:99:b0:a3:86:59:6f:d6:dc:e0:17:5d:68: ba:d2:ba:ce:da:2f:9e:1c:1a:96:fe:b1:b9:21:1c:52:0a:c7: dc:a9:fc:9d:4b:5a:0f:a4:bd:e5:31:e6:5d:4e:55:4f:aa:1c: 09:24:09:5b:57:4b:cf:33:31:21:03:94:b4:c6:d1:0e:d9:3d: 10:fd:6b:2f:0e:44:90:f6:da:17:05:f0:91:a0:33:2a:e8:c0: e1:d9:ae:71 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEfAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBCRTBENTM2MDlEM0NG ODFBNUYyRUNEMzY1RkQ1QkI5RTQwOUZGNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4UoQeCmxvsdiQbnxeUZrL/LRBb2iSnYSwpoMUZ57FXgpXiugr /UFxcHs3lM65KL6I3Hta4vA9pz++QK1LwbItPxxgXGrfTz37DJYizYveyR0gFPkd nxBoFBWPaWJIYUxL5176+YGbaVz/OZfP6f8Ps1oUfe8Ee6JMuJTbkQB7dY++2M9b pOywvolj0n+fFw2RuRT3a03dN5I2sVKcp+T0CJHRwHkQXVNK/WRg0/lyDlaurEyd xIwoYtQcquKFam0EKFYr+I2yQELeRhZ1L8i9ay++ESzucOS49GLjL9GADZuI6uWY YugzePt3yoAn7WjatE0qf0788RfoE74ofFxRAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUC+DVNgnTz4Gl8uzTZf1bueQJ/3AwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQy1EVk5nblR6NEdsOHV6 VFpmMWJ1ZVFKXzNBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHqDANBgkqhkiG9w0BAQsFAAOCAQEAb65FLl9SiQCp0dZCWlVi0ZpwCq5wR6Xc BHcNyrifJsVuq4tw9TigHnPmqjoIvjUE/7bM5uhjljusdplPsE/m9rv0H0ZHXe78 wyzyxCzcui9zq46sO//k72oleperCdudv2tlUdSpnLoCyI5YXTAHXBHGH+wHxYhY bjzn8XXnUQtD5Y88L3ENrSN8c8KPAPBNZ/S1l6Zko4G9hU+Y77cioA8R0gr6wFsS mbCjhllv1tzgF11outK6ztovnhwalv6xuSEcUgrH3Kn8nUtaD6S95THmXU5VT6oc CSQJW1dLzzMxIQOUtMbRDtk9EP1rLw5EkPbaFwXwkaAzKujA4dmucQ== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:12 2024 by rpki-client on console-ams.rpki-client.org