$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JpTGiyRpBQi-ZZ3ebU370wg2Xy0.roa File: JpTGiyRpBQi-ZZ3ebU370wg2Xy0.roa (raw, json) Hash identifier: 3rYIP7eglPPj15cPTzQ+kCwiCtb0O/wGfGMoFk2Ms5o= Subject key identifier: 26:94:C6:8B:24:69:05:08:BE:65:9D:DE:6D:4D:FB:D3:08:36:5F:2D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1007 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JpTGiyRpBQi-ZZ3ebU370wg2Xy0.roa Signing time: Fri 01 Sep 2023 09:37:38 +0000 ROA not before: Fri 01 Sep 2023 09:37:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 203.77.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4103 (0x1007) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2694C68B24690508BE659DDE6D4DFBD308365F2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3d:bd:09:d6:5b:50:00:e3:6e:bf:d9:ef:11: 9b:9d:a5:98:55:cc:ef:ec:e5:bf:de:8f:0b:81:e3: 32:54:c4:57:08:35:a3:da:e6:bb:cb:76:a5:4b:85: 51:33:63:62:8e:3d:fe:3f:c3:4f:c4:32:d8:5d:d7: cd:17:16:33:d4:34:ab:68:d1:f0:6b:81:37:82:02: d7:7b:32:0e:20:b2:a1:ab:2c:da:33:4a:63:4e:6f: d0:76:bb:c0:46:28:2d:f3:06:82:b7:a6:7c:39:a8: 38:27:7e:7b:68:e5:49:23:c5:8e:4f:68:8c:2a:a8: 68:cf:04:2d:a7:d4:7d:a0:5a:1d:4c:ab:13:8a:96: 32:d5:39:97:35:2e:b4:53:88:43:47:1f:b2:39:a8: c2:dc:e5:74:a8:23:5e:6a:97:1a:3d:93:f2:53:f7: 6b:a0:e6:c0:39:2d:7a:34:09:10:98:ca:9c:88:9a: f7:34:65:fb:14:2e:7d:45:33:12:72:fe:71:53:3c: 38:0e:f1:b3:56:dc:d3:0e:d2:fe:2a:d2:04:4f:9d: 40:7b:75:b1:40:ab:a0:19:7b:4e:cb:a4:e2:3c:58: b0:94:bd:43:b7:97:6e:8e:6e:19:41:4d:b7:aa:54: 9a:0d:cc:0b:56:e1:ff:4e:9d:76:bc:a5:65:8b:05: b4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:94:C6:8B:24:69:05:08:BE:65:9D:DE:6D:4D:FB:D3:08:36:5F:2D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JpTGiyRpBQi-ZZ3ebU370wg2Xy0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.64.0/18 Signature Algorithm: sha256WithRSAEncryption 80:f0:e4:a5:5c:11:ab:c8:d9:f0:6b:c0:ec:cd:e0:65:32:98: 16:bf:dd:98:45:d7:ce:30:73:99:a1:26:3a:5b:e9:df:d5:da: 90:d2:3f:3f:c9:a4:28:f2:cb:42:8f:be:e7:91:ad:2f:28:e4: e0:cd:d8:a6:c4:fb:fa:88:2c:f8:b2:d6:7c:d2:3a:69:95:f1: f2:53:c0:0c:bf:4d:84:43:95:90:9d:54:b9:8a:93:eb:cb:84: 4f:a3:09:7f:5c:dd:ea:2c:79:3c:92:b2:d1:b9:dd:f9:ce:04: 54:f3:51:ba:4f:80:a0:13:b8:52:be:2f:de:35:f6:7d:1c:58: 98:29:41:70:7f:36:b8:16:e9:33:cc:0b:ce:d4:a7:85:54:ee: 73:22:c0:cf:03:81:a3:60:f5:6c:1f:c6:65:85:b7:70:db:51: 40:7c:aa:a3:64:a9:40:fb:c0:8a:4d:05:57:56:93:88:10:e3: 9f:50:37:f1:5d:68:e3:c6:2e:2f:b0:05:29:8b:79:78:74:51: 17:96:05:2e:27:21:b8:c6:ae:0a:0f:ab:42:a3:97:c4:7c:75: d3:87:10:6a:c0:bf:88:42:02:a4:bf:b2:85:f7:3b:ae:e8:28: 4f:96:b8:61:b8:06:52:d5:5c:50:1d:5b:a6:d5:04:5b:2c:a3: bc:24:08:73 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEAcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI2OTRDNjhCMjQ2OTA1 MDhCRTY1OURERTZENERGQkQzMDgzNjVGMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBPb0J1ltQAONuv9nvEZudpZhVzO/s5b/ejwuB4zJUxFcINaPa 5rvLdqVLhVEzY2KOPf4/w0/EMthd180XFjPUNKto0fBrgTeCAtd7Mg4gsqGrLNoz SmNOb9B2u8BGKC3zBoK3pnw5qDgnfnto5UkjxY5PaIwqqGjPBC2n1H2gWh1MqxOK ljLVOZc1LrRTiENHH7I5qMLc5XSoI15qlxo9k/JT92ug5sA5LXo0CRCYypyImvc0 ZfsULn1FMxJy/nFTPDgO8bNW3NMO0v4q0gRPnUB7dbFAq6AZe07LpOI8WLCUvUO3 l26ObhlBTbeqVJoNzAtW4f9OnXa8pWWLBbQZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUJpTGiyRpBQi+ZZ3ebU370wg2Xy0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSnBUR2l5UnBCUWktWloz ZWJVMzcwd2cyWHkwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BstNQDANBgkqhkiG9w0BAQsFAAOCAQEAgPDkpVwRq8jZ8GvA7M3gZTKYFr/dmEXX zjBzmaEmOlvp39XakNI/P8mkKPLLQo++55GtLyjk4M3YpsT7+ogs+LLWfNI6aZXx 8lPADL9NhEOVkJ1UuYqT68uET6MJf1zd6ix5PJKy0bnd+c4EVPNRuk+AoBO4Ur4v 3jX2fRxYmClBcH82uBbpM8wLztSnhVTucyLAzwOBo2D1bB/GZYW3cNtRQHyqo2Sp QPvAik0FV1aTiBDjn1A38V1o48YuL7AFKYt5eHRRF5YFLichuMauCg+rQqOXxHx1 04cQasC/iEICpL+yhfc7rugoT5a4YbgGUtVcUB1bptUEWyyjvCQIcw== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org