$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GkEsnGNYyBQoE9-EGoxEhX0ju1Y.roa File: GkEsnGNYyBQoE9-EGoxEhX0ju1Y.roa (raw, json) Hash identifier: RRhoz94JdJ2JoA1vUm4eGpspcguRsLI3ljKjbyDrAC8= Subject key identifier: 1A:41:2C:9C:63:58:C8:14:28:13:DF:84:1A:8C:44:85:7D:23:BB:56 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11E5 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GkEsnGNYyBQoE9-EGoxEhX0ju1Y.roa Signing time: Mon 26 Aug 2024 05:24:29 +0000 ROA not before: Mon 26 Aug 2024 05:24:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.67.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4581 (0x11e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1A412C9C6358C8142813DF841A8C44857D23BB56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:cd:85:f7:c4:3c:e8:36:c8:d2:fa:84:1a:03: 9a:83:82:b7:e8:b8:67:96:df:d9:14:df:c4:49:ab: a4:4f:3c:c1:94:5d:83:a3:f0:ca:be:5f:17:27:e7: e1:46:39:2f:a7:73:32:91:b6:6b:f9:7c:7a:cc:45: 95:bb:79:e7:dd:39:9f:0d:76:97:69:25:da:3e:0d: c3:c9:a5:ff:50:7c:b8:fb:35:aa:f9:12:f8:87:c2: 23:f2:d7:a8:81:c6:07:e7:78:89:97:c2:48:d6:0a: 77:3c:ea:c5:c0:e7:26:54:f2:fb:66:be:39:7d:62: ae:4d:0e:93:f6:36:d7:05:91:61:1b:c6:19:11:ad: cf:e5:5e:17:80:2a:93:53:d7:2b:5d:8f:70:0c:db: 83:51:9f:a3:f3:86:f8:36:4c:5e:2e:72:27:0c:16: 0e:94:b4:9f:01:a6:24:0f:bb:99:56:30:39:9f:ee: 2c:31:a3:26:73:0c:eb:9a:b2:b9:69:83:37:68:35: 50:b2:c3:70:57:59:78:48:69:02:56:00:03:f9:61: 4e:d9:12:9a:a6:8c:80:ea:f1:3f:b7:27:0d:cb:fa: 87:5c:8b:09:6a:f3:68:c0:ae:4d:44:73:65:35:27: 27:51:4a:2a:f4:ac:1b:5b:11:0f:c9:5e:20:c1:9b: 85:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:41:2C:9C:63:58:C8:14:28:13:DF:84:1A:8C:44:85:7D:23:BB:56 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GkEsnGNYyBQoE9-EGoxEhX0ju1Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.144.0/20 Signature Algorithm: sha256WithRSAEncryption 4b:f4:5e:df:bf:73:cf:59:d8:dc:78:bb:34:cc:99:7d:74:00: a7:81:db:08:fa:be:30:c7:32:4d:c0:7c:93:3b:74:35:7c:c8: dd:da:ae:f4:d3:4e:03:ad:8e:97:00:d7:d1:6d:5d:36:44:83: 36:af:e3:a6:c6:a7:ea:76:17:e7:c5:e5:df:3b:23:f7:2c:60: a7:b4:ad:01:6a:93:fc:77:9c:43:9a:a7:97:9e:1d:19:52:27: e6:2a:35:7f:94:22:a6:dd:f7:6a:e5:02:32:8a:f3:7e:3a:9b: 72:9c:65:98:f4:76:24:5a:fd:1f:8e:fd:e8:fc:c7:84:72:ec: 97:f2:9f:fb:51:8f:5d:45:c8:46:df:24:0b:45:55:33:aa:7b: 6c:ad:da:46:20:0d:d6:53:95:d3:01:48:40:9e:92:79:ea:2a: d9:97:96:4b:93:02:0b:da:6a:12:e8:e9:ba:72:81:07:6e:85: 79:16:f7:ca:32:a3:de:3c:b2:d5:05:23:60:24:3b:18:02:bd: d2:28:f2:31:08:90:7c:f7:c1:b4:68:a6:91:ce:42:dd:a3:96: 08:9a:2c:84:40:2b:22:b2:43:a2:86:e9:84:84:5a:fb:a3:4f: 1f:6b:bd:87:e8:a8:49:f9:25:cf:e5:2f:9e:04:46:ee:a8:e6: fc:f5:4f:55 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFBNDEyQzlDNjM1OEM4 MTQyODEzREY4NDFBOEM0NDg1N0QyM0JCNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCSzYX3xDzoNsjS+oQaA5qDgrfouGeW39kU38RJq6RPPMGUXYOj 8Mq+Xxcn5+FGOS+nczKRtmv5fHrMRZW7eefdOZ8NdpdpJdo+DcPJpf9QfLj7Nar5 EviHwiPy16iBxgfneImXwkjWCnc86sXA5yZU8vtmvjl9Yq5NDpP2NtcFkWEbxhkR rc/lXheAKpNT1ytdj3AM24NRn6Pzhvg2TF4ucicMFg6UtJ8BpiQPu5lWMDmf7iwx oyZzDOuasrlpgzdoNVCyw3BXWXhIaQJWAAP5YU7ZEpqmjIDq8T+3Jw3L+odciwlq 82jArk1Ec2U1JydRSir0rBtbEQ/JXiDBm4WRAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUGkEsnGNYyBQoE9+EGoxEhX0ju1YwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvR2tFc25HTll5QlFvRTkt RUdveEVoWDBqdTFZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNJDkDANBgkqhkiG9w0BAQsFAAOCAQEAS/Re379zz1nY3Hi7NMyZfXQAp4HbCPq+ MMcyTcB8kzt0NXzI3dqu9NNOA62OlwDX0W1dNkSDNq/jpsan6nYX58Xl3zsj9yxg p7StAWqT/HecQ5qnl54dGVIn5io1f5Qipt33auUCMorzfjqbcpxlmPR2JFr9H479 6PzHhHLsl/Kf+1GPXUXIRt8kC0VVM6p7bK3aRiAN1lOV0wFIQJ6Seeoq2ZeWS5MC C9pqEujpunKBB26FeRb3yjKj3jyy1QUjYCQ7GAK90ijyMQiQfPfBtGimkc5C3aOW CJoshEArIrJDoobphIRa+6NPH2u9h+ioSfklz+UvngRG7qjm/PVPVQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org