$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FDZ2Mm43uzpB47X1Kn6f_RjPUP8.roa File: FDZ2Mm43uzpB47X1Kn6f_RjPUP8.roa (raw, json) Hash identifier: JABOhr6ySnZSgcJMQaddJzZT/6/hQ0rx/U2JcuElgHY= Subject key identifier: 14:36:76:32:6E:37:BB:3A:41:E3:B5:F5:2A:7E:9F:FD:18:CF:50:FF Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FBF Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FDZ2Mm43uzpB47X1Kn6f_RjPUP8.roa Signing time: Fri 01 Sep 2023 09:37:14 +0000 ROA not before: Fri 01 Sep 2023 09:37:14 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 2001:4540::/27 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4031 (0xfbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:14 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=143676326E37BB3A41E3B5F52A7E9FFD18CF50FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:33:c8:84:be:7b:e1:53:43:dd:53:87:c4:bc: 4d:36:0c:49:c4:bc:86:52:b5:f1:e8:64:ee:de:7f: 3f:ea:a1:cf:f7:28:58:69:11:8b:2c:c5:93:b9:89: 14:71:7a:d2:2b:22:2c:e5:9f:b7:50:64:c1:82:c6: cf:0e:c5:d7:32:17:47:89:35:34:b9:4a:8a:c2:b9: b8:ae:d8:97:65:b3:dc:7d:4c:9d:32:7a:c2:b8:0a: 38:de:66:89:e7:3c:f6:42:95:73:2f:aa:a5:ad:d5: 14:ae:31:d5:01:97:9d:fe:46:14:60:5f:4c:6c:59: 1d:8d:9d:d9:76:76:d6:66:bf:fe:0f:8b:b5:75:7a: db:e2:fc:9e:63:90:53:96:67:5f:a4:bf:30:e7:cd: ff:01:96:6b:f4:8c:ae:73:27:88:d4:d3:c8:b1:28: 72:aa:d9:31:bd:34:bf:f1:30:05:90:d3:84:10:6a: 1f:73:85:bd:c1:bb:e3:aa:6c:18:6f:2d:38:17:e0: 0b:26:da:41:d9:2d:61:3d:69:26:7b:14:04:62:61: 54:b9:63:1f:cf:4d:f0:e9:03:53:42:f0:20:b0:84: 75:c3:60:de:d9:2c:c7:92:a1:ea:64:a6:d8:26:61: 77:18:6b:f2:a1:ef:b3:d2:34:29:8e:a2:88:33:e7: 86:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:36:76:32:6E:37:BB:3A:41:E3:B5:F5:2A:7E:9F:FD:18:CF:50:FF X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FDZ2Mm43uzpB47X1Kn6f_RjPUP8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4540::/27 Signature Algorithm: sha256WithRSAEncryption 37:aa:4d:02:18:f7:24:04:ab:6d:b6:bb:1d:df:44:12:93:97: 71:71:36:a3:c1:2a:44:b5:0d:3b:fa:4f:19:10:e0:26:92:ab: 09:10:53:7f:5a:e3:0d:ef:5d:d9:91:4a:b0:bd:83:51:5f:54: fe:3d:fd:54:00:d4:ec:ae:0c:df:ee:a0:a9:be:39:05:86:34: 66:ed:75:93:ec:90:6d:5d:a5:d9:68:2b:56:73:86:ad:a0:05: bc:d5:5e:0b:61:fc:cd:10:10:c3:d7:f0:20:d3:7f:91:32:b3: 04:68:17:9e:63:d0:a2:4d:cb:a6:e4:bd:a6:4e:c0:87:b5:ed: 07:1e:f2:7e:c7:d6:10:d5:e0:fe:0a:1a:c0:65:ff:62:07:91: f4:8f:77:38:50:0d:3a:7a:5c:1c:32:07:eb:9b:d4:68:14:68: 23:44:2d:f7:85:ad:f0:f2:e7:bb:f6:fd:9b:a6:0d:f9:50:d4: 18:af:2b:71:47:b0:d9:63:ad:f8:01:1d:d2:30:76:5d:a3:f5: ee:87:1b:15:e2:d8:31:ef:2d:c5:58:88:1b:32:c5:0d:69:28: d0:84:43:2a:a1:92:47:c6:d2:94:0e:49:bb:53:0d:39:c6:e7: d0:cb:d7:f1:f0:78:2c:82:84:90:ac:c5:51:27:63:f8:95:17: 7b:62:f9:ac -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICD78wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE0MzY3NjMyNkUzN0JC M0E0MUUzQjVGNTJBN0U5RkZEMThDRjUwRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeM8iEvnvhU0PdU4fEvE02DEnEvIZStfHoZO7efz/qoc/3KFhp EYssxZO5iRRxetIrIizln7dQZMGCxs8OxdcyF0eJNTS5SorCubiu2Jdls9x9TJ0y esK4CjjeZonnPPZClXMvqqWt1RSuMdUBl53+RhRgX0xsWR2Nndl2dtZmv/4Pi7V1 etvi/J5jkFOWZ1+kvzDnzf8Blmv0jK5zJ4jU08ixKHKq2TG9NL/xMAWQ04QQah9z hb3Bu+OqbBhvLTgX4Asm2kHZLWE9aSZ7FARiYVS5Yx/PTfDpA1NC8CCwhHXDYN7Z LMeSoepkptgmYXcYa/Kh77PSNCmOoogz54ZPAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUFDZ2Mm43uzpB47X1Kn6f/RjPUP8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvRkRaMk1tNDN1enBCNDdY MUtuNmZfUmpQVVA4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF BSABRUAwDQYJKoZIhvcNAQELBQADggEBADeqTQIY9yQEq222ux3fRBKTl3FxNqPB KkS1DTv6TxkQ4CaSqwkQU39a4w3vXdmRSrC9g1FfVP49/VQA1OyuDN/uoKm+OQWG NGbtdZPskG1dpdloK1Zzhq2gBbzVXgth/M0QEMPX8CDTf5EyswRoF55j0KJNy6bk vaZOwIe17Qce8n7H1hDV4P4KGsBl/2IHkfSPdzhQDTp6XBwyB+ub1GgUaCNELfeF rfDy57v2/ZumDflQ1BivK3FHsNljrfgBHdIwdl2j9e6HGxXi2DHvLcVYiBsyxQ1p KNCEQyqhkkfG0pQOSbtTDTnG59DL1/HweCyChJCsxVEnY/iVF3ti+aw= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org