$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D3_JRpzSuYIYZ1giWizWOfg5l2U.roa File: D3_JRpzSuYIYZ1giWizWOfg5l2U.roa (raw, json) Hash identifier: 5y7MA3Z6qaWDNCsPJpKBKOsZMpY7eJorMeY5vZNYbJs= Subject key identifier: 0F:7F:C9:46:9C:D2:B9:82:18:67:58:22:5A:2C:D6:39:F8:39:97:65 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F9F Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D3_JRpzSuYIYZ1giWizWOfg5l2U.roa Signing time: Fri 01 Sep 2023 09:37:04 +0000 ROA not before: Fri 01 Sep 2023 09:37:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131628 IP address blocks: 175.99.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3999 (0xf9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0F7FC9469CD2B982186758225A2CD639F8399765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fe:66:29:26:af:cb:f9:e3:71:94:89:cf:cf: b3:ec:55:3b:a7:5c:1b:d8:b8:f1:62:15:14:ca:87: d9:4b:ec:61:70:6e:16:da:71:fb:ae:07:22:26:1e: 34:b6:f2:97:a4:b2:ef:aa:35:da:6b:68:e2:cb:7d: 25:0f:2d:df:1e:6e:57:93:78:4b:18:10:44:bf:fd: 63:82:61:33:c5:31:68:1e:59:33:7c:79:5f:5a:b0: f6:cb:9e:39:91:76:da:a4:94:34:38:82:c5:51:3f: 67:4f:03:b2:80:e4:f4:bb:55:37:ae:38:fa:d4:40: f6:88:62:cc:59:87:e7:9e:76:c8:18:b3:f5:3c:eb: 02:23:dc:86:16:76:82:aa:10:c9:20:68:fe:c8:21: 0a:e7:73:2f:24:43:e5:04:81:c8:ea:b6:ff:24:50: 1c:dd:27:c5:93:65:36:f1:a6:2e:9b:7a:a1:11:35: 04:90:a8:da:e5:d2:c0:de:05:5f:b9:17:a4:eb:f8: e6:cc:25:f0:f6:69:b1:e2:fb:83:20:b7:6d:4b:5e: 94:31:c7:77:6d:b1:7e:26:2c:81:cc:82:65:2e:02: b8:fa:16:49:f4:af:10:32:d2:57:e3:f8:67:71:4f: 4c:ab:65:cf:3c:0c:8e:ba:f3:6b:b6:5f:05:3b:ee: 79:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:7F:C9:46:9C:D2:B9:82:18:67:58:22:5A:2C:D6:39:F8:39:97:65 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D3_JRpzSuYIYZ1giWizWOfg5l2U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.99.224.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:32:15:cc:11:f6:fe:2f:ae:8e:fe:34:20:2e:93:5a:7b:dc: d3:f3:67:61:90:56:60:96:0a:83:1c:da:38:d7:0c:34:f7:71: 3e:c8:2b:52:bf:a3:a0:3d:b3:05:ca:c7:d2:40:a1:06:67:0e: 50:2f:4a:5a:34:d0:2f:7c:c6:74:e5:bd:39:8f:f5:26:ca:e6: 3f:34:92:65:d8:4d:d7:36:2b:e6:91:e0:2c:7e:ab:1a:c8:86: 1a:70:f6:18:ba:88:3f:4f:ef:04:fa:7c:91:a5:ab:8b:0b:2f: f3:fa:4c:da:c3:43:22:ce:8d:74:fa:64:b0:ec:96:5e:64:b7: 6a:80:58:13:e5:72:f1:b6:7f:1a:cc:62:26:97:64:a6:77:02: d2:10:f2:d7:b1:d1:81:dd:66:9e:e7:82:6a:2b:11:c7:ba:79: 6e:74:17:e9:fb:6c:09:9a:ce:05:ae:09:98:7a:72:26:4b:1a: b7:4a:23:73:95:bf:29:fd:99:c9:d7:30:8b:02:6f:be:10:98: ee:16:a0:6c:15:67:9a:ac:a4:ae:fb:e7:74:33:e5:31:8e:cf: 27:b5:a0:4d:e4:32:37:6d:4b:d5:89:e3:88:7b:d2:15:9d:bb: b0:3a:ea:98:17:28:bc:e5:98:81:9c:d7:f4:51:cb:68:c6:2a: 7a:b0:03:00 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD58wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBGN0ZDOTQ2OUNEMkI5 ODIxODY3NTgyMjVBMkNENjM5RjgzOTk3NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb/mYpJq/L+eNxlInPz7PsVTunXBvYuPFiFRTKh9lL7GFwbhba cfuuByImHjS28peksu+qNdpraOLLfSUPLd8ebleTeEsYEES//WOCYTPFMWgeWTN8 eV9asPbLnjmRdtqklDQ4gsVRP2dPA7KA5PS7VTeuOPrUQPaIYsxZh+eedsgYs/U8 6wIj3IYWdoKqEMkgaP7IIQrncy8kQ+UEgcjqtv8kUBzdJ8WTZTbxpi6beqERNQSQ qNrl0sDeBV+5F6Tr+ObMJfD2abHi+4Mgt21LXpQxx3dtsX4mLIHMgmUuArj6Fkn0 rxAy0lfj+GdxT0yrZc88DI6682u2XwU77nl/AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUD3/JRpzSuYIYZ1giWizWOfg5l2UwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvRDNfSlJwelN1WUlZWjFn aVdpeldPZmc1bDJVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AK9j4DANBgkqhkiG9w0BAQsFAAOCAQEAPTIVzBH2/i+ujv40IC6TWnvc0/NnYZBW YJYKgxzaONcMNPdxPsgrUr+joD2zBcrH0kChBmcOUC9KWjTQL3zGdOW9OY/1Jsrm PzSSZdhN1zYr5pHgLH6rGsiGGnD2GLqIP0/vBPp8kaWriwsv8/pM2sNDIs6NdPpk sOyWXmS3aoBYE+Vy8bZ/GsxiJpdkpncC0hDy17HRgd1mnueCaisRx7p5bnQX6fts CZrOBa4JmHpyJksat0ojc5W/Kf2ZydcwiwJvvhCY7hagbBVnmqykrvvndDPlMY7P J7WgTeQyN21L1YnjiHvSFZ27sDrqmBcovOWYgZzX9FHLaMYqerADAA== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org