$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GJuNtVwkU7if_CA_sOvoETC3_7k.roa File: GJuNtVwkU7if_CA_sOvoETC3_7k.roa (raw, json) Hash identifier: YhAFuT/WxoDzY65pyeq63jy/GVbS6ZCSQ/NamzSNDK8= Subject key identifier: 18:9B:8D:B5:5C:24:53:B8:9F:FC:20:3F:B0:EB:E8:11:30:B7:FF:B9 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1220 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GJuNtVwkU7if_CA_sOvoETC3_7k.roa Signing time: Mon 26 Aug 2024 05:24:42 +0000 ROA not before: Mon 26 Aug 2024 05:24:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 203.65.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4640 (0x1220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=189B8DB55C2453B89FFC203FB0EBE81130B7FFB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6c:99:a0:d4:be:e8:71:60:ac:9d:99:ea:e5: ff:6d:8c:c5:ba:1e:20:3c:81:d2:f4:6e:d2:ed:7a: 53:ce:b2:bf:7e:06:55:eb:b7:35:2b:1d:8b:72:81: 6b:96:28:90:c6:33:97:56:68:e0:bd:c0:7a:bd:a9: 66:d6:a6:ff:5c:b1:06:4e:43:e8:a8:be:af:a3:ab: 7f:27:4f:f8:ff:95:0b:63:ce:28:e5:d6:be:e9:02: 69:87:72:db:81:15:31:d6:a8:81:b5:5e:c5:1c:d5: 1e:aa:47:74:4c:f1:de:59:f4:f6:cf:5f:e5:e7:dc: 8c:1b:ad:bb:13:18:29:54:ac:fc:28:3c:6e:9a:47: 3f:50:2d:15:59:29:34:35:d7:bc:71:c6:ff:01:6f: 66:40:7f:43:6f:ae:61:a2:ed:78:d9:f6:61:64:58: 88:87:9f:2d:d2:f9:60:8c:0e:21:95:ea:14:19:c3: a5:ea:69:74:cb:fe:33:8d:55:5c:b9:c8:bf:93:8e: ff:dc:1a:fb:6d:1f:3e:ef:68:d2:59:84:f3:5f:82: c2:51:17:5b:93:22:42:90:a9:6b:90:14:ae:22:83: 3c:09:96:f4:96:43:83:a2:61:5c:63:a9:7b:97:85: af:4f:82:cf:5f:97:83:11:05:17:b1:d5:42:0f:bc: 2a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:9B:8D:B5:5C:24:53:B8:9F:FC:20:3F:B0:EB:E8:11:30:B7:FF:B9 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GJuNtVwkU7if_CA_sOvoETC3_7k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.65.160.0/19 Signature Algorithm: sha256WithRSAEncryption 3d:86:6c:00:c2:f6:2b:af:51:e3:d5:e7:a9:07:89:ba:af:e2: fb:cc:9f:e2:a4:1b:6c:c9:09:dd:7e:dd:e9:0d:18:20:90:3d: df:6e:a3:5c:bc:0e:52:4e:ca:ed:90:4f:94:13:3b:45:4b:9c: 1e:1c:7c:3d:7a:f2:37:9d:a7:0d:d5:8d:14:30:1d:45:62:82: 15:72:c3:32:77:e8:e9:ff:7d:f3:70:a0:b3:82:5f:ee:a1:64: 52:85:db:83:68:cc:33:9e:84:cb:1f:dd:9d:4b:96:20:f7:3e: 0e:5e:2f:18:fc:28:f4:55:a2:57:81:c4:10:be:6f:93:7d:1e: d6:b7:84:50:26:b8:5d:1b:f4:c7:04:21:a6:4e:a5:b5:44:21: ab:2f:56:3e:e0:a5:1e:08:82:dd:9f:82:3d:57:40:bf:82:90: 3e:0d:c6:9a:01:51:0d:68:f7:2d:6f:a1:4e:16:13:72:e0:eb: 8f:24:0a:1e:a5:25:2f:2f:44:c1:03:4b:83:60:70:24:e5:f8: e6:9b:92:f4:9c:d7:33:2b:d4:00:5b:ad:38:ab:66:82:d5:d2: b0:6a:eb:1c:e0:85:34:8c:ba:f3:d3:2b:ea:f9:48:81:a3:2b: a1:64:30:30:d0:20:d5:73:a7:6a:97:b8:32:5d:b9:cf:3c:a6: a1:e2:b4:f6 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE4OUI4REI1NUMyNDUz Qjg5RkZDMjAzRkIwRUJFODExMzBCN0ZGQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6bJmg1L7ocWCsnZnq5f9tjMW6HiA8gdL0btLtelPOsr9+BlXr tzUrHYtygWuWKJDGM5dWaOC9wHq9qWbWpv9csQZOQ+iovq+jq38nT/j/lQtjzijl 1r7pAmmHctuBFTHWqIG1XsUc1R6qR3RM8d5Z9PbPX+Xn3IwbrbsTGClUrPwoPG6a Rz9QLRVZKTQ117xxxv8Bb2ZAf0NvrmGi7XjZ9mFkWIiHny3S+WCMDiGV6hQZw6Xq aXTL/jONVVy5yL+Tjv/cGvttHz7vaNJZhPNfgsJRF1uTIkKQqWuQFK4igzwJlvSW Q4OiYVxjqXuXha9Pgs9fl4MRBRex1UIPvCrrAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUGJuNtVwkU7if/CA/sOvoETC3/7kwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvR0p1TnRWd2tVN2lmX0NB X3NPdm9FVEMzXzdrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BctBoDANBgkqhkiG9w0BAQsFAAOCAQEAPYZsAML2K69R49XnqQeJuq/i+8yf4qQb bMkJ3X7d6Q0YIJA9326jXLwOUk7K7ZBPlBM7RUucHhx8PXryN52nDdWNFDAdRWKC FXLDMnfo6f9983Cgs4Jf7qFkUoXbg2jMM56Eyx/dnUuWIPc+Dl4vGPwo9FWiV4HE EL5vk30e1reEUCa4XRv0xwQhpk6ltUQhqy9WPuClHgiC3Z+CPVdAv4KQPg3GmgFR DWj3LW+hThYTcuDrjyQKHqUlLy9EwQNLg2BwJOX45puS9JzXMyvUAFutOKtmgtXS sGrrHOCFNIy689Mr6vlIgaMroWQwMNAg1XOnape4Ml25zzymoeK09g== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org