$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FBp9KQA8itaHjW7GB7m1anPvZxQ.roa File: FBp9KQA8itaHjW7GB7m1anPvZxQ.roa (raw, json) Hash identifier: SbVEQ1xbOaNUwPl2UESDjskaxGPPlZ9tBZ3Y+LVDQJY= Subject key identifier: 14:1A:7D:29:00:3C:8A:D6:87:8D:6E:C6:07:B9:B5:6A:73:EF:67:14 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1224 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FBp9KQA8itaHjW7GB7m1anPvZxQ.roa Signing time: Mon 26 Aug 2024 05:24:44 +0000 ROA not before: Mon 26 Aug 2024 05:24:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.224.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4644 (0x1224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=141A7D29003C8AD6878D6EC607B9B56A73EF6714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:58:e1:10:41:1d:ca:71:0a:8b:57:5f:de:06: e4:65:48:19:cb:77:de:8c:bb:3a:5b:dc:17:8c:d8: 42:f6:65:f0:a3:a3:b3:18:34:58:49:55:59:4a:04: 8e:33:bc:78:d7:5c:ab:cb:fd:fd:88:43:92:6a:6c: 08:1a:13:e6:f9:01:8b:a9:e4:0b:8b:79:28:59:34: 9a:b9:19:50:eb:2c:c8:21:87:a2:0b:ee:f6:c4:57: 2b:2f:50:bf:8e:23:5d:1c:99:5b:15:dc:53:17:da: 32:8f:53:8a:5b:b1:c3:0e:d7:f1:03:76:4b:f3:f0: 09:2f:e7:d7:4b:77:c2:5c:8e:f0:66:7a:d3:e6:61: cf:b6:e7:e2:87:88:9b:bb:1d:0b:4c:70:80:a4:b6: f4:49:32:f9:c2:d4:c4:3f:c2:7e:9b:00:c6:79:f4: 8e:fb:9a:b7:7c:85:7b:dd:a3:43:f1:5d:5e:7c:eb: d4:68:6b:5d:e5:b6:75:69:0b:2a:35:88:8c:bc:6b: 49:59:78:e3:39:b7:f6:d6:e6:4c:32:e3:3c:5f:a6: 6c:bc:02:38:59:2b:15:53:fc:01:85:9f:7f:a4:2e: be:6c:60:ac:75:f5:f2:c9:31:8d:f6:63:cc:17:30: 9c:3d:04:28:ad:ce:16:0b:42:43:aa:6a:5c:1b:f5: fc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:1A:7D:29:00:3C:8A:D6:87:8D:6E:C6:07:B9:B5:6A:73:EF:67:14 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FBp9KQA8itaHjW7GB7m1anPvZxQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.224.0/24 Signature Algorithm: sha256WithRSAEncryption 38:1b:34:c5:24:43:ee:69:b5:dd:5f:3d:cf:a8:0d:52:9f:6c: 86:9f:ba:89:98:02:cb:d0:0d:2d:c8:94:8c:33:e0:97:f7:d7: 56:37:f1:d2:3d:d5:e2:a6:c2:f4:dd:91:71:4f:8b:2b:42:ce: 83:15:78:25:22:dd:4a:b5:29:1f:02:bb:ad:a7:97:07:10:5b: 75:fc:ff:80:df:29:b6:ee:91:23:f3:40:4d:1e:69:d4:20:9a: f5:30:e5:42:70:f9:4d:69:1f:3d:2f:48:d8:17:cc:18:da:ff: 4e:14:c0:d9:0d:2b:75:7b:08:5a:2c:29:4f:c1:5c:0f:06:e5: 7d:bc:6e:85:9b:a1:b9:7b:74:53:76:d7:0d:c4:6b:29:7d:d7: a0:7c:0e:96:98:f0:ab:b2:f2:f3:26:c3:8f:7b:6d:d7:d9:eb: 7b:e6:6f:74:8b:15:56:97:e8:94:06:10:b0:a6:e8:9e:1d:0d: c0:34:1e:4f:5c:f6:2c:65:6a:fa:03:c5:ac:c0:f0:44:03:37: 91:04:0e:d5:17:cf:62:21:2f:56:83:70:09:77:99:26:ea:91: f7:8e:e0:28:1c:ab:b0:cd:19:c5:1c:1b:ee:c2:de:c6:7e:cc: d0:ad:94:47:1c:df:85:7b:e5:42:1d:c7:7e:7d:af:e6:73:2b: 9f:7c:10:11 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0MUE3RDI5MDAzQzhB RDY4NzhENkVDNjA3QjlCNTZBNzNFRjY3MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeWOEQQR3KcQqLV1/eBuRlSBnLd96Muzpb3BeM2EL2ZfCjo7MY NFhJVVlKBI4zvHjXXKvL/f2IQ5JqbAgaE+b5AYup5AuLeShZNJq5GVDrLMghh6IL 7vbEVysvUL+OI10cmVsV3FMX2jKPU4pbscMO1/EDdkvz8Akv59dLd8JcjvBmetPm Yc+25+KHiJu7HQtMcICktvRJMvnC1MQ/wn6bAMZ59I77mrd8hXvdo0PxXV5869Ro a13ltnVpCyo1iIy8a0lZeOM5t/bW5kwy4zxfpmy8AjhZKxVT/AGFn3+kLr5sYKx1 9fLJMY32Y8wXMJw9BCitzhYLQkOqalwb9fyFAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUFBp9KQA8itaHjW7GB7m1anPvZxQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvRkJwOUtRQThpdGFIalc3 R0I3bTFhblB2WnhRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzH4DANBgkqhkiG9w0BAQsFAAOCAQEAOBs0xSRD7mm13V89z6gNUp9shp+6iZgC y9ANLciUjDPgl/fXVjfx0j3V4qbC9N2RcU+LK0LOgxV4JSLdSrUpHwK7raeXBxBb dfz/gN8ptu6RI/NATR5p1CCa9TDlQnD5TWkfPS9I2BfMGNr/ThTA2Q0rdXsIWiwp T8FcDwblfbxuhZuhuXt0U3bXDcRrKX3XoHwOlpjwq7Ly8ybDj3tt19nre+ZvdIsV VpfolAYQsKbonh0NwDQeT1z2LGVq+gPFrMDwRAM3kQQO1RfPYiEvVoNwCXeZJuqR 947gKByrsM0ZxRwb7sLexn7M0K2URxzfhXvlQh3Hfn2v5nMrn3wQEQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org