$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/J7bht_gMzrB0nl-9axsX3mAPDB4.roa File: J7bht_gMzrB0nl-9axsX3mAPDB4.roa (raw, json) Hash identifier: OlOmSmGUUJuvLK2HPFrT1G4sLkXy7Pem0lyGQAerzqA= Subject key identifier: 27:B6:E1:B7:F8:0C:CE:B0:74:9E:5F:BD:6B:1B:17:DE:60:0F:0C:1E Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11C0 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/J7bht_gMzrB0nl-9axsX3mAPDB4.roa Signing time: Mon 26 Aug 2024 05:24:20 +0000 ROA not before: Mon 26 Aug 2024 05:24:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131634 IP address blocks: 124.108.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4544 (0x11c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=27B6E1B7F80CCEB0749E5FBD6B1B17DE600F0C1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:18:9a:11:54:60:ce:cc:26:1e:64:88:d1:c2: 52:dd:bd:85:fb:a0:11:96:05:16:d2:88:2d:ad:71: a4:ea:c6:55:0b:8e:79:4f:92:b0:c0:c4:5b:fd:67: 11:de:d0:a8:10:dc:e1:98:57:2c:8c:bd:97:3b:e9: e0:c4:c1:43:d6:ea:76:cd:33:b7:a8:2a:b2:f7:1f: 01:71:1d:98:2f:ce:80:7f:77:30:b8:94:7a:82:ae: 27:f9:1e:34:d6:46:b4:3f:38:51:b0:35:b1:b2:67: 25:d8:ae:49:1e:df:2d:29:db:7d:0a:4a:6b:c0:67: 79:b7:3a:f1:eb:4f:de:98:cd:5d:ec:a7:62:aa:a4: 89:36:a6:3c:25:e7:21:8a:54:da:0e:6c:d9:05:65: f0:95:d9:56:39:0d:fb:e4:e9:6b:bf:ee:82:d5:92: ac:64:dc:65:05:f8:ec:13:6e:4c:aa:0b:65:1e:26: 5e:e4:88:5c:22:b4:b1:37:e9:fb:5b:d1:3c:47:d2: f4:22:62:66:b4:d0:93:08:e0:57:d5:3f:5f:00:2e: 3a:cb:05:e4:ce:87:58:f0:c3:0a:f9:e0:e6:64:3a: 68:fb:07:00:2d:be:1b:8b:56:24:7a:cb:ac:89:be: 84:8c:1d:5e:a0:fe:fc:ad:d5:cc:6f:7e:05:81:0d: 79:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:B6:E1:B7:F8:0C:CE:B0:74:9E:5F:BD:6B:1B:17:DE:60:0F:0C:1E X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/J7bht_gMzrB0nl-9axsX3mAPDB4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.160.0/24 Signature Algorithm: sha256WithRSAEncryption 42:b3:c9:e5:a0:3c:b1:84:bd:e5:44:de:b6:46:f8:43:b1:fc: fd:1c:c0:f8:8c:2f:d2:5d:30:7d:cb:a3:12:29:6c:e9:49:5e: 29:75:6c:6a:23:9c:bf:71:c0:d0:a7:06:a6:28:ff:32:e8:81: ce:47:a5:eb:fc:96:7e:f9:90:e9:fb:35:61:ab:ba:c1:ab:27: e6:74:72:e1:a1:31:93:12:c9:75:e7:79:f5:5d:8e:fd:41:be: 66:8d:5e:af:7a:a2:07:27:1a:b5:40:a7:71:5f:e9:21:21:8b: 3d:fe:ba:01:4b:30:8b:ea:48:e8:f7:60:ea:b8:65:24:13:62: 51:74:d5:18:a8:86:a6:f0:10:af:d4:e0:5f:5b:38:05:90:9f: f4:32:5d:db:80:f0:fe:06:e4:f2:7e:8f:b2:ef:f7:bd:16:9b: d7:48:19:65:9f:5c:93:b7:b0:d0:ff:48:3f:38:91:2d:c9:eb: 11:45:10:e9:bd:ca:7a:7a:64:8c:d2:5b:18:57:fb:63:7d:d6: 8f:14:a3:e8:44:91:a8:95:02:e2:66:fa:57:64:fa:10:e9:75: eb:92:c0:e0:78:3b:52:31:74:91:40:73:86:51:4b:78:3d:e5: c5:01:dc:fc:cf:7f:7b:5e:80:c3:e9:f9:8d:d3:e4:e0:cc:07: 72:ef:34:67 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEcAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI3QjZFMUI3RjgwQ0NF QjA3NDlFNUZCRDZCMUIxN0RFNjAwRjBDMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHGJoRVGDOzCYeZIjRwlLdvYX7oBGWBRbSiC2tcaTqxlULjnlP krDAxFv9ZxHe0KgQ3OGYVyyMvZc76eDEwUPW6nbNM7eoKrL3HwFxHZgvzoB/dzC4 lHqCrif5HjTWRrQ/OFGwNbGyZyXYrkke3y0p230KSmvAZ3m3OvHrT96YzV3sp2Kq pIk2pjwl5yGKVNoObNkFZfCV2VY5Dfvk6Wu/7oLVkqxk3GUF+OwTbkyqC2UeJl7k iFwitLE36ftb0TxH0vQiYma00JMI4FfVP18ALjrLBeTOh1jwwwr54OZkOmj7BwAt vhuLViR6y6yJvoSMHV6g/vyt1cxvfgWBDXkNAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUJ7bht/gMzrB0nl+9axsX3mAPDB4wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSjdiaHRfZ016ckIwbmwt OWF4c1gzbUFQREI0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AHxsoDANBgkqhkiG9w0BAQsFAAOCAQEAQrPJ5aA8sYS95UTetkb4Q7H8/RzA+Iwv 0l0wfcujEils6UleKXVsaiOcv3HA0KcGpij/MuiBzkel6/yWfvmQ6fs1Yau6wasn 5nRy4aExkxLJded59V2O/UG+Zo1er3qiBycatUCncV/pISGLPf66AUswi+pI6Pdg 6rhlJBNiUXTVGKiGpvAQr9TgX1s4BZCf9DJd24Dw/gbk8n6Psu/3vRab10gZZZ9c k7ew0P9IPziRLcnrEUUQ6b3KenpkjNJbGFf7Y33WjxSj6ESRqJUC4mb6V2T6EOl1 65LA4Hg7UjF0kUBzhlFLeD3lxQHc/M9/e16Aw+n5jdPk4MwHcu80Zw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org