$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Fl5IDhzlpRtv-S6aTiOvt1j0tmg.roa File: Fl5IDhzlpRtv-S6aTiOvt1j0tmg.roa (raw, json) Hash identifier: 1Il2bkgDoIaqH56YE5eSXyeVr4fDpdlfy0WM6q+axTI= Subject key identifier: 16:5E:48:0E:1C:E5:A5:1B:6F:F9:2E:9A:4E:23:AF:B7:58:F4:B6:68 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1244 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Fl5IDhzlpRtv-S6aTiOvt1j0tmg.roa Signing time: Mon 26 Aug 2024 05:24:50 +0000 ROA not before: Mon 26 Aug 2024 05:24:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131628 IP address blocks: 175.97.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4676 (0x1244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=165E480E1CE5A51B6FF92E9A4E23AFB758F4B668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:51:b8:16:d9:a1:bb:bd:16:6e:be:00:f1:e9: 73:87:67:7a:61:dd:76:da:fa:8a:e0:bf:b1:94:1a: 29:d4:a9:37:1a:12:92:c6:69:4a:fb:0d:9e:23:5e: 47:1f:83:db:1e:49:6e:db:f4:72:62:60:cf:8b:c4: c1:01:78:18:b0:4f:6d:d9:57:39:b9:30:5b:d4:d3: 4b:ff:cd:2e:a3:f9:ed:b4:3d:76:8d:00:fa:d0:e3: 91:a1:51:b9:df:94:51:b8:52:44:5b:28:2e:7d:ca: 7b:dc:d2:fc:1a:a9:ae:f3:4d:5f:78:8b:99:c8:02: 3a:63:60:7c:a9:e8:09:8f:0c:84:fc:2e:ff:05:6d: 5e:9b:a6:aa:19:b8:19:24:ba:f5:1d:b7:e7:14:0d: cc:e6:ad:bf:72:45:8b:eb:af:ad:7e:75:d9:b1:82: 8f:04:9a:44:c8:08:82:49:8c:d4:5e:cc:a6:02:a6: 29:40:2d:48:a6:9b:30:1f:66:5e:4f:15:3f:46:ed: d7:4e:c1:cf:bf:38:b9:3e:ed:ef:5f:e4:75:d9:d6: 77:c6:6c:49:a2:64:8f:fe:a5:e4:ed:a2:18:74:9b: 75:59:e7:da:d0:0a:1e:2f:ce:0e:f8:5e:4e:86:55: e7:da:42:0e:cb:9d:1d:a8:31:28:6c:c3:27:fe:e2: 94:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:5E:48:0E:1C:E5:A5:1B:6F:F9:2E:9A:4E:23:AF:B7:58:F4:B6:68 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Fl5IDhzlpRtv-S6aTiOvt1j0tmg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.97.192.0/20 Signature Algorithm: sha256WithRSAEncryption 6a:aa:29:e7:ab:2c:1c:c0:3b:ff:54:75:b8:cd:53:5c:9b:f3: 9b:c8:64:3e:d5:c2:4d:d0:71:56:70:9d:3f:3f:bb:ac:91:a4: 85:42:52:7e:4b:df:67:8a:18:42:74:d5:8b:a7:9f:d2:a1:d9: 3b:07:6e:00:35:08:98:2e:26:07:e7:ae:1b:66:80:0b:2e:6a: c7:74:29:73:f7:32:e9:7f:82:42:0f:01:4b:d7:03:d2:49:6b: 26:36:d7:95:5f:05:fb:77:41:38:af:20:78:14:81:19:ca:37: 89:5b:1b:86:c1:53:24:49:4a:a3:06:6d:c9:7a:28:1f:0e:c1: 0a:e9:eb:4d:ad:2d:bc:d1:7d:34:ee:ca:1d:ed:6e:3a:ce:d2: 92:0a:38:8b:dd:5e:f5:c9:6c:1d:e9:98:b6:64:0e:4f:f5:d9: 69:cc:fb:1d:b9:e4:40:af:25:3f:4b:a1:26:b8:9a:bb:61:ab: 2d:68:0e:95:ce:7b:24:a6:3d:a4:53:45:eb:89:bc:2a:7f:c3: 8a:32:e6:f9:aa:6d:fb:6a:56:3c:56:f4:be:ac:04:05:3e:86: be:49:2a:8d:ac:21:26:60:cf:29:44:b4:89:fe:1e:45:11:b4: 9e:c6:aa:18:32:76:d2:a1:5a:81:8f:20:81:f5:77:9c:62:25: 83:2c:27:77 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2NUU0ODBFMUNFNUE1 MUI2RkY5MkU5QTRFMjNBRkI3NThGNEI2NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCRUbgW2aG7vRZuvgDx6XOHZ3ph3Xba+orgv7GUGinUqTcaEpLG aUr7DZ4jXkcfg9seSW7b9HJiYM+LxMEBeBiwT23ZVzm5MFvU00v/zS6j+e20PXaN APrQ45GhUbnflFG4UkRbKC59ynvc0vwaqa7zTV94i5nIAjpjYHyp6AmPDIT8Lv8F bV6bpqoZuBkkuvUdt+cUDczmrb9yRYvrr61+ddmxgo8EmkTICIJJjNRezKYCpilA LUimmzAfZl5PFT9G7ddOwc+/OLk+7e9f5HXZ1nfGbEmiZI/+peTtohh0m3VZ59rQ Ch4vzg74Xk6GVefaQg7LnR2oMShswyf+4pQxAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUFl5IDhzlpRtv+S6aTiOvt1j0tmgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvRmw1SURoemxwUnR2LVM2 YVRpT3Z0MWowdG1nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BK9hwDANBgkqhkiG9w0BAQsFAAOCAQEAaqop56ssHMA7/1R1uM1TXJvzm8hkPtXC TdBxVnCdPz+7rJGkhUJSfkvfZ4oYQnTVi6ef0qHZOwduADUImC4mB+euG2aACy5q x3Qpc/cy6X+CQg8BS9cD0klrJjbXlV8F+3dBOK8geBSBGco3iVsbhsFTJElKowZt yXooHw7BCunrTa0tvNF9NO7KHe1uOs7Skgo4i91e9clsHemYtmQOT/XZacz7Hbnk QK8lP0uhJriau2GrLWgOlc57JKY9pFNF64m8Kn/DijLm+apt+2pWPFb0vqwEBT6G vkkqjawhJmDPKUS0if4eRRG0nsaqGDJ20qFagY8ggfV3nGIlgywndw== -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:35 2024 by rpki-client on console-fra.rpki-client.org