$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HpbunP6qDRiBjKx6XWTY-UzIqh0.roa File: HpbunP6qDRiBjKx6XWTY-UzIqh0.roa (raw, json) Hash identifier: aPV2SMP681i+lgeqUvnN9cXQngjVOC/zueSZnbD7PRE= Subject key identifier: 1E:96:EE:9C:FE:AA:0D:18:81:8C:AC:7A:5D:64:D8:F9:4C:C8:AA:1D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F7F Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HpbunP6qDRiBjKx6XWTY-UzIqh0.roa Signing time: Fri 01 Sep 2023 09:36:55 +0000 ROA not before: Fri 01 Sep 2023 09:36:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24158 IP address blocks: 203.105.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3967 (0xf7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:36:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1E96EE9CFEAA0D18818CAC7A5D64D8F94CC8AA1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:40:46:6a:8f:88:da:7b:30:b2:12:02:99:4d: 1e:5c:dd:2d:6f:12:56:13:a7:f9:aa:55:4c:a2:c8: b7:06:70:35:23:0e:05:e7:a6:6a:27:16:03:2d:52: e2:80:3c:1d:9c:72:5a:21:a7:2b:d9:5c:31:9f:5d: f5:2b:3b:52:83:08:b3:ff:14:d6:be:70:af:66:ea: 7a:57:dc:ad:fa:1c:7f:0a:c3:d4:b5:b5:b1:e3:44: ee:da:62:de:e4:6f:08:c0:fb:f1:91:83:81:47:c2: 02:e2:c8:ee:58:ee:26:6b:0f:4d:05:46:16:2a:4e: 47:ee:30:f1:b8:c5:8e:95:d7:03:e2:61:c5:e2:5d: dd:0f:60:24:c2:35:ef:0d:df:41:1f:c9:ed:b3:be: 6b:c6:48:1b:42:04:b6:76:d3:e0:0c:28:f9:b0:96: a1:bd:cf:89:e6:19:d9:57:d0:2d:67:f7:74:5c:63: 9a:da:37:fb:aa:b7:00:84:40:08:cd:1e:b3:e2:22: 6f:c2:83:c8:f1:65:74:30:9e:ff:77:da:2d:ad:98: ef:b4:1a:1c:f8:5b:bd:32:b7:e4:29:e2:30:24:d4: 77:1a:21:f5:99:fe:64:df:3d:41:38:91:c2:f0:e6: 54:bb:48:95:22:9e:35:7a:b4:41:91:04:49:47:29: 51:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:96:EE:9C:FE:AA:0D:18:81:8C:AC:7A:5D:64:D8:F9:4C:C8:AA:1D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/HpbunP6qDRiBjKx6XWTY-UzIqh0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.105.239.0/24 Signature Algorithm: sha256WithRSAEncryption 55:0d:75:a5:86:6a:7e:af:2d:80:45:a8:3d:f9:53:92:ee:73: d8:cc:e6:b1:a5:28:54:b5:a4:fe:88:4f:cf:eb:88:e3:31:2d: c1:51:27:db:d9:39:7c:9c:7d:88:22:46:a8:63:1a:74:1b:5e: 59:c4:0f:bb:dc:ad:b9:4f:0f:68:3c:a8:50:b6:88:60:27:76: 26:43:3c:2c:e6:7c:ed:4b:19:8d:0a:39:0d:e4:66:84:71:79: a1:36:0a:70:0b:32:57:be:c1:b9:4e:d0:7f:a1:ee:9e:e3:24: c7:e4:a1:2c:98:0e:23:99:78:18:ca:11:f3:c8:e0:9b:ea:6f: 77:3b:03:5a:14:87:12:76:db:f5:14:3f:5a:92:2c:33:48:ab: 53:b6:d8:8b:b1:d8:73:c7:e9:b3:86:d0:cd:cd:4d:72:95:f6: 21:81:fb:d7:c1:4c:27:8f:e6:44:b7:8b:7e:d5:97:f6:62:79: a0:65:3f:59:4f:0a:f3:0c:a7:47:4f:fd:09:f6:3e:bd:44:7c: 9d:56:b9:3f:11:c3:97:2e:a0:bd:ed:5c:53:7e:f0:55:68:51: d0:4c:c4:ee:40:41:02:61:38:d8:a5:3d:df:ea:eb:38:bc:0a: 77:02:99:6b:43:1f:0b:e3:b2:d1:1d:f3:79:59:db:02:9b:c6: 99:58:42:51 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM2NTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFFOTZFRTlDRkVBQTBE MTg4MThDQUM3QTVENjREOEY5NENDOEFBMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2QEZqj4jaezCyEgKZTR5c3S1vElYTp/mqVUyiyLcGcDUjDgXn pmonFgMtUuKAPB2cclohpyvZXDGfXfUrO1KDCLP/FNa+cK9m6npX3K36HH8Kw9S1 tbHjRO7aYt7kbwjA+/GRg4FHwgLiyO5Y7iZrD00FRhYqTkfuMPG4xY6V1wPiYcXi Xd0PYCTCNe8N30Efye2zvmvGSBtCBLZ20+AMKPmwlqG9z4nmGdlX0C1n93RcY5ra N/uqtwCEQAjNHrPiIm/Cg8jxZXQwnv932i2tmO+0Ghz4W70yt+Qp4jAk1HcaIfWZ /mTfPUE4kcLw5lS7SJUinjV6tEGRBElHKVHTAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUHpbunP6qDRiBjKx6XWTY+UzIqh0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSHBidW5QNnFEUmlCakt4 NlhXVFktVXpJcWgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AMtp7zANBgkqhkiG9w0BAQsFAAOCAQEAVQ11pYZqfq8tgEWoPflTku5z2MzmsaUo VLWk/ohPz+uI4zEtwVEn29k5fJx9iCJGqGMadBteWcQPu9ytuU8PaDyoULaIYCd2 JkM8LOZ87UsZjQo5DeRmhHF5oTYKcAsyV77BuU7Qf6HunuMkx+ShLJgOI5l4GMoR 88jgm+pvdzsDWhSHEnbb9RQ/WpIsM0irU7bYi7HYc8fps4bQzc1NcpX2IYH718FM J4/mRLeLftWX9mJ5oGU/WU8K8wynR0/9CfY+vUR8nVa5PxHDly6gve1cU37wVWhR 0EzE7kBBAmE42KU93+rrOLwKdwKZa0MfC+Oy0R3zeVnbApvGmVhCUQ== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:02 2024 by rpki-client on console-fra.rpki-client.org