$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ha0JjFmTBtl8R_rK8LGjzS-qP4c.roa File: Ha0JjFmTBtl8R_rK8LGjzS-qP4c.roa (raw, json) Hash identifier: lIfTtRfr7CAXVV7746FOZvG6ovRDi19WNPD+T3rJr7g= Subject key identifier: 1D:AD:09:8C:59:93:06:D9:7C:47:FA:CA:F0:B1:A3:CD:2F:AA:3F:87 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11D3 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ha0JjFmTBtl8R_rK8LGjzS-qP4c.roa Signing time: Mon 26 Aug 2024 05:24:25 +0000 ROA not before: Mon 26 Aug 2024 05:24:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 203.77.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4563 (0x11d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1DAD098C599306D97C47FACAF0B1A3CD2FAA3F87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:66:98:65:ab:ce:25:d0:5f:aa:2c:2f:8b:c0: cc:e9:0d:11:f8:4f:76:75:de:cb:3d:c3:ad:59:7a: 8c:5b:50:7d:23:16:55:98:27:07:bf:6c:60:f5:42: 78:5d:a4:f6:bf:58:f5:13:71:30:6a:9b:08:6c:cf: ec:8f:4b:c8:09:8f:e5:43:f9:97:cd:68:fb:35:18: 10:2c:99:42:c1:8f:e1:7e:29:45:f7:ea:ea:db:81: 89:3b:53:d7:12:60:72:24:18:ac:bd:35:ea:52:c3: 70:3d:cc:07:5c:51:05:95:ec:f6:e8:03:63:e9:89: 4e:4a:4c:c7:af:1b:1d:39:1a:f9:95:4b:ab:db:96: 7c:25:69:89:2d:38:0f:1b:19:0a:50:f8:54:5d:21: 02:e7:3c:a5:2a:72:a7:8b:25:a1:2d:f1:10:63:bb: 74:50:59:2e:a6:73:99:f2:38:f7:b2:ed:5d:87:76: de:aa:b4:ae:bb:17:8c:d4:76:da:d8:46:8e:70:43: 55:e0:49:f6:ab:25:85:ff:9d:0b:64:2b:86:5c:a4: 8f:4e:d8:76:28:70:a2:80:94:3c:59:73:2c:0d:9d: 20:00:2f:c6:eb:49:4f:48:9c:5f:bc:2d:e5:7b:87: ef:65:64:a6:d6:47:78:6f:b8:b7:f4:dd:de:4a:55: 3c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AD:09:8C:59:93:06:D9:7C:47:FA:CA:F0:B1:A3:CD:2F:AA:3F:87 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ha0JjFmTBtl8R_rK8LGjzS-qP4c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.0.0/18 Signature Algorithm: sha256WithRSAEncryption 17:31:05:ba:55:a0:51:e5:0f:df:76:d3:a5:28:1c:11:71:a7: 18:9f:1b:4e:43:aa:68:9c:ec:15:f1:e9:bb:c1:88:77:e0:5b: 23:ba:ac:e1:22:5b:72:72:75:92:6f:5a:35:d1:37:8f:bb:63: 22:47:53:60:d7:d8:30:ba:38:c2:e3:1a:fb:17:69:12:c8:93: f4:32:52:1f:64:7c:5d:7b:3f:b3:9f:53:86:5f:c2:ec:71:ce: 07:7e:4b:c7:1e:06:64:c0:0d:4a:a6:52:c0:39:17:96:33:53: cb:67:f5:23:a1:42:eb:0a:60:34:f3:92:57:de:60:d6:be:db: 52:26:c6:9e:2e:ab:ee:1b:5b:76:ab:dd:f1:70:c0:34:84:80: f1:ea:54:cf:ec:53:7b:6d:45:69:1b:85:fc:76:b1:23:12:d4: dc:14:77:21:f4:fd:7d:a3:a1:96:24:21:c3:cb:ac:81:40:ae: 8c:dd:d5:d2:1d:12:0b:58:f4:33:e6:ec:92:c9:fe:d8:e0:7c: af:cf:90:a2:20:11:39:b4:b1:e7:62:34:aa:9c:ff:74:b4:d6: 68:c4:bc:dd:5d:88:37:12:63:0a:73:a9:90:1f:69:62:23:32: 8a:af:da:8f:cc:8a:fe:c9:13:ee:7c:e4:88:8a:e9:cd:c4:bd: 99:65:e8:a8 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEdMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFEQUQwOThDNTk5MzA2 RDk3QzQ3RkFDQUYwQjFBM0NEMkZBQTNGODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYZphlq84l0F+qLC+LwMzpDRH4T3Z13ss9w61ZeoxbUH0jFlWY Jwe/bGD1QnhdpPa/WPUTcTBqmwhsz+yPS8gJj+VD+ZfNaPs1GBAsmULBj+F+KUX3 6urbgYk7U9cSYHIkGKy9NepSw3A9zAdcUQWV7PboA2PpiU5KTMevGx05GvmVS6vb lnwlaYktOA8bGQpQ+FRdIQLnPKUqcqeLJaEt8RBju3RQWS6mc5nyOPey7V2Hdt6q tK67F4zUdtrYRo5wQ1XgSfarJYX/nQtkK4ZcpI9O2HYocKKAlDxZcywNnSAAL8br SU9InF+8LeV7h+9lZKbWR3hvuLf03d5KVTwRAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUHa0JjFmTBtl8R/rK8LGjzS+qP4cwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSGEwSmpGbVRCdGw4Ul9y SzhMR2p6Uy1xUDRjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BstNADANBgkqhkiG9w0BAQsFAAOCAQEAFzEFulWgUeUP33bTpSgcEXGnGJ8bTkOq aJzsFfHpu8GId+BbI7qs4SJbcnJ1km9aNdE3j7tjIkdTYNfYMLo4wuMa+xdpEsiT 9DJSH2R8XXs/s59Thl/C7HHOB35Lxx4GZMANSqZSwDkXljNTy2f1I6FC6wpgNPOS V95g1r7bUibGni6r7htbdqvd8XDANISA8epUz+xTe21FaRuF/HaxIxLU3BR3IfT9 faOhliQhw8usgUCujN3V0h0SC1j0M+bsksn+2OB8r8+QoiARObSx52I0qpz/dLTW aMS83V2INxJjCnOpkB9pYiMyiq/aj8yK/skT7nzkiIrpzcS9mWXoqA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org