$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IG5BgGAxJ8Nli3hNwI9m9XNDtOw.roa File: IG5BgGAxJ8Nli3hNwI9m9XNDtOw.roa (raw, json) Hash identifier: MYq0Ynze0gaJJGLzHI4q8QHXzKbw1IaxrP99zTAkwPI= Subject key identifier: 20:6E:41:80:60:31:27:C3:65:8B:78:4D:C0:8F:66:F5:73:43:B4:EC Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11DD Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IG5BgGAxJ8Nli3hNwI9m9XNDtOw.roa Signing time: Mon 26 Aug 2024 05:24:28 +0000 ROA not before: Mon 26 Aug 2024 05:24:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.176.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4573 (0x11dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=206E4180603127C3658B784DC08F66F57343B4EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b4:d8:82:92:25:f0:f4:61:93:f0:b4:eb:e1: dc:bd:8f:be:05:cc:82:03:c5:0a:e0:db:7c:17:0a: fe:8e:34:22:0a:5c:43:ff:d1:b1:90:46:2e:b7:32: d9:35:a2:27:13:d7:87:9e:3e:ad:ee:72:8b:91:c5: f8:bb:86:ca:77:45:55:fc:d2:41:42:e5:11:9f:26: d6:d5:97:38:5a:4a:44:5d:ee:03:16:d9:13:73:72: 3e:e5:dd:b1:d9:79:03:f0:70:bd:61:ae:5c:5e:3a: 8e:65:b4:0e:b4:02:8d:67:79:38:56:e2:4b:76:bb: 37:28:72:c7:c3:69:60:35:bf:be:ba:73:4c:a9:47: b5:00:0c:bc:75:f4:36:c5:57:9d:50:2d:42:65:7e: 94:b5:be:ba:bf:4b:1d:b5:12:08:69:fd:57:47:9b: d9:b4:d7:45:bd:46:96:cd:ef:71:d5:2e:7a:71:35: df:db:26:f9:d2:b6:a7:e2:15:8e:c0:d2:f7:97:81: 52:29:c5:0e:8d:ae:53:72:54:56:1f:a8:be:8e:21: 6f:cf:b9:a3:4a:93:4c:83:c5:cb:2b:64:c7:75:28: 67:73:94:44:99:8f:77:0d:6c:f1:d1:3e:45:a1:c6: c9:54:01:e5:d0:9b:d2:2c:92:34:84:30:29:74:fe: 1a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:6E:41:80:60:31:27:C3:65:8B:78:4D:C0:8F:66:F5:73:43:B4:EC X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IG5BgGAxJ8Nli3hNwI9m9XNDtOw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.176.0/24 Signature Algorithm: sha256WithRSAEncryption 73:56:4a:5f:f9:91:a1:54:28:6d:d4:66:ad:38:54:55:4f:f7: 0c:82:4f:00:e1:f5:af:83:ff:02:cc:f7:c5:bf:fe:23:48:18: af:0a:d5:06:d0:61:63:8d:b1:da:c4:40:37:ca:98:ec:b0:4b: fe:a4:05:0b:78:0f:c3:a2:73:41:b7:b0:4f:ab:e3:bc:0f:30: 8f:be:16:17:49:74:00:79:81:49:e7:57:ae:c1:2e:fc:76:87: f4:7e:c0:4e:7b:81:c2:a4:69:d9:54:66:28:ea:60:ce:a9:77: 94:7b:8a:dd:cb:a8:7b:6c:32:c7:16:3b:2f:48:dd:4d:65:a0: 8b:c1:ec:df:db:8e:f4:a1:21:ff:23:04:b9:60:dd:40:62:3f: e6:28:6d:09:2a:e8:f3:4a:03:5e:07:7a:3c:30:f7:a1:da:9b: a6:1c:bf:50:72:dd:5a:d0:fc:84:53:ef:57:dd:54:05:78:fb: 2b:c5:df:2e:29:d5:7d:12:6d:40:71:d2:c1:cc:2f:7f:00:35: 21:e9:7f:bc:d1:1c:32:b1:87:73:b7:74:47:b0:97:1b:a5:c3: ed:c7:ca:44:58:57:31:43:87:3a:5e:6a:69:bb:88:58:73:8e: 38:28:c7:30:4d:8c:58:63:bc:e5:c0:f3:72:81:d0:49:56:5c: a5:36:4c:0d -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEd0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIwNkU0MTgwNjAzMTI3 QzM2NThCNzg0REMwOEY2NkY1NzM0M0I0RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9tNiCkiXw9GGT8LTr4dy9j74FzIIDxQrg23wXCv6ONCIKXEP/ 0bGQRi63Mtk1oicT14eePq3ucouRxfi7hsp3RVX80kFC5RGfJtbVlzhaSkRd7gMW 2RNzcj7l3bHZeQPwcL1hrlxeOo5ltA60Ao1neThW4kt2uzcocsfDaWA1v766c0yp R7UADLx19DbFV51QLUJlfpS1vrq/Sx21Eghp/VdHm9m010W9RpbN73HVLnpxNd/b JvnStqfiFY7A0veXgVIpxQ6NrlNyVFYfqL6OIW/PuaNKk0yDxcsrZMd1KGdzlESZ j3cNbPHRPkWhxslUAeXQm9IskjSEMCl0/hotAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUIG5BgGAxJ8Nli3hNwI9m9XNDtOwwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSUc1QmdHQXhKOE5saTNo TndJOW05WE5EdE93LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHsDANBgkqhkiG9w0BAQsFAAOCAQEAc1ZKX/mRoVQobdRmrThUVU/3DIJPAOH1 r4P/Asz3xb/+I0gYrwrVBtBhY42x2sRAN8qY7LBL/qQFC3gPw6JzQbewT6vjvA8w j74WF0l0AHmBSedXrsEu/HaH9H7ATnuBwqRp2VRmKOpgzql3lHuK3cuoe2wyxxY7 L0jdTWWgi8Hs39uO9KEh/yMEuWDdQGI/5ihtCSro80oDXgd6PDD3odqbphy/UHLd WtD8hFPvV91UBXj7K8XfLinVfRJtQHHSwcwvfwA1Iel/vNEcMrGHc7d0R7CXG6XD 7cfKRFhXMUOHOl5qabuIWHOOOCjHME2MWGO85cDzcoHQSVZcpTZMDQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org