$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JSr1AhKbarhzwbA88YmkclTTBQc.roa File: JSr1AhKbarhzwbA88YmkclTTBQc.roa (raw, json) Hash identifier: gl8WrrwPN52ayWGdqwBdvZUq3oVdHDXLdXZdpXhMLio= Subject key identifier: 25:2A:F5:02:12:9B:6A:B8:73:C1:B0:3C:F1:89:A4:72:54:D3:05:07 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11FC Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JSr1AhKbarhzwbA88YmkclTTBQc.roa Signing time: Mon 26 Aug 2024 05:24:35 +0000 ROA not before: Mon 26 Aug 2024 05:24:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.140.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4604 (0x11fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=252AF502129B6AB873C1B03CF189A47254D30507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f8:24:dc:d5:30:6f:8e:e6:ff:d0:9a:0f:2f: 28:ec:70:e2:f5:d4:58:1f:7c:54:36:1e:c1:26:58: f3:ef:37:f9:f4:36:95:9a:2d:a9:c9:da:ef:93:1a: 1b:f0:83:b6:32:8c:d5:c8:0e:f8:9f:e6:9c:a0:40: a3:81:b2:ab:0d:99:75:66:be:b2:53:62:5a:7c:41: 1b:57:b5:5d:fa:ba:e6:29:95:a7:e0:60:3f:b8:2b: 85:e4:fc:db:9e:a3:c6:7a:cd:02:4a:f7:b4:5c:9c: ed:c1:52:fe:78:45:98:f9:34:7b:2b:a5:b4:ab:65: c8:71:05:d8:a6:35:fd:a6:8d:4f:da:e7:84:10:a5: 3b:66:29:a3:f8:6d:36:3f:cb:6a:e8:ea:0d:ba:50: d6:03:4d:1c:36:e4:99:f3:e3:b2:5d:34:d5:a2:28: d5:3b:d5:2b:e2:b9:2f:a3:14:2a:4f:64:df:82:02: da:0b:a5:88:85:69:b8:ff:aa:a4:fc:59:e4:f1:57: 3b:b3:8b:7f:07:30:f2:b1:bf:6b:46:28:d8:74:c5: 3d:f7:93:1f:d3:6c:72:d6:8a:b6:44:dc:24:59:36: 57:5b:02:b9:87:90:c3:78:5d:ee:1e:08:46:3f:0c: 3f:c7:e0:4c:0d:c3:e1:08:f4:9b:91:94:9c:b6:45: 72:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:2A:F5:02:12:9B:6A:B8:73:C1:B0:3C:F1:89:A4:72:54:D3:05:07 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JSr1AhKbarhzwbA88YmkclTTBQc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.140.0/24 Signature Algorithm: sha256WithRSAEncryption 02:5f:8a:28:99:ae:ed:5e:7d:22:ef:b9:63:6d:87:72:73:c5: 16:7a:fd:1d:13:1b:b1:dc:8f:28:30:32:64:ce:5b:55:15:27: ba:df:ed:09:5f:54:27:fe:6c:ec:60:88:3e:1f:f5:26:51:c4: 70:37:d8:9b:96:fa:5a:7d:df:47:81:a2:ed:55:09:a4:61:ab: b8:c1:39:6a:de:ba:4c:06:14:2e:43:23:20:8a:0c:6d:5e:08: af:c1:d3:81:a2:22:1b:28:04:33:f0:f1:8f:d3:5e:14:34:d0: 73:c8:50:f8:30:ca:d1:2b:0f:ce:ec:22:28:0e:15:ef:18:19: 9c:4e:52:0e:37:08:e6:23:c0:c9:fa:b1:d2:5f:e6:9b:2a:eb: 54:2d:0e:82:aa:75:98:e3:26:5b:af:2d:a2:90:b6:d0:c0:e2: 33:cd:5b:87:9a:23:82:38:c7:00:d1:e0:dd:cc:8c:19:2b:84: 48:d0:a2:72:40:e7:7b:58:f5:3c:41:d3:9c:a3:d5:ec:70:e9: ba:22:c2:17:21:47:ee:f9:70:13:ba:e1:42:20:e9:83:8e:c5: 91:9d:1d:c3:c3:46:3c:b9:81:c5:d6:d2:91:6a:e5:22:b3:4e: 38:99:81:7c:b8:6c:d6:cc:6d:42:7e:e6:97:1b:59:55:f0:b1: e0:40:44:3c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEfwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI1MkFGNTAyMTI5QjZB Qjg3M0MxQjAzQ0YxODlBNDcyNTREMzA1MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ+CTc1TBvjub/0JoPLyjscOL11FgffFQ2HsEmWPPvN/n0NpWa LanJ2u+TGhvwg7YyjNXIDvif5pygQKOBsqsNmXVmvrJTYlp8QRtXtV36uuYplafg YD+4K4Xk/Nueo8Z6zQJK97RcnO3BUv54RZj5NHsrpbSrZchxBdimNf2mjU/a54QQ pTtmKaP4bTY/y2ro6g26UNYDTRw25Jnz47JdNNWiKNU71SviuS+jFCpPZN+CAtoL pYiFabj/qqT8WeTxVzuzi38HMPKxv2tGKNh0xT33kx/TbHLWirZE3CRZNldbArmH kMN4Xe4eCEY/DD/H4EwNw+EI9JuRlJy2RXIPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUJSr1AhKbarhzwbA88YmkclTTBQcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSlNyMUFoS2Jhcmh6d2JB ODhZbWtjbFRUQlFjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHjDANBgkqhkiG9w0BAQsFAAOCAQEAAl+KKJmu7V59Iu+5Y22HcnPFFnr9HRMb sdyPKDAyZM5bVRUnut/tCV9UJ/5s7GCIPh/1JlHEcDfYm5b6Wn3fR4Gi7VUJpGGr uME5at66TAYULkMjIIoMbV4Ir8HTgaIiGygEM/Dxj9NeFDTQc8hQ+DDK0SsPzuwi KA4V7xgZnE5SDjcI5iPAyfqx0l/mmyrrVC0Ogqp1mOMmW68topC20MDiM81bh5oj gjjHANHg3cyMGSuESNCickDne1j1PEHTnKPV7HDpuiLCFyFH7vlwE7rhQiDpg47F kZ0dw8NGPLmBxdbSkWrlIrNOOJmBfLhs1sxtQn7mlxtZVfCx4EBEPA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org