$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/K8kbqEN9cvmI1IHp1b4p18Anekc.roa File: K8kbqEN9cvmI1IHp1b4p18Anekc.roa (raw, json) Hash identifier: 1EJzWyaRQ/sNcCoRQSY3Igf6kdofJNrYn1eci617JEM= Subject key identifier: 2B:C9:1B:A8:43:7D:72:F9:88:D4:81:E9:D5:BE:29:D7:C0:27:7A:47 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 120C Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/K8kbqEN9cvmI1IHp1b4p18Anekc.roa Signing time: Mon 26 Aug 2024 05:24:39 +0000 ROA not before: Mon 26 Aug 2024 05:24:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 203.105.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4620 (0x120c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2BC91BA8437D72F988D481E9D5BE29D7C0277A47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:65:c9:f6:8e:2b:c2:1a:2f:6f:e1:21:1a:7b: 91:60:b3:7c:b6:4d:40:85:fa:f6:e5:7d:a1:a7:c9: 25:09:77:1c:92:ef:5d:42:93:78:70:1f:d4:af:28: 4f:60:d5:30:7a:94:8c:cb:97:85:84:74:28:75:ef: ce:0c:9c:dc:b9:ba:ba:9c:87:d5:61:ed:d3:f5:0c: 91:64:dc:91:c0:a2:d1:9d:f1:65:89:b2:9f:d6:13: ef:b1:78:c2:5b:63:bf:9a:4e:57:30:3e:aa:bf:de: 91:fe:4e:8f:ef:5d:56:63:9e:a3:60:eb:0b:f7:ca: 9c:61:8b:b5:ab:79:7a:3d:cf:73:c3:7c:21:5f:8c: 47:1e:5c:96:e4:47:76:88:35:17:4d:d4:f7:5d:eb: 15:99:82:a8:9d:68:cf:6c:f3:73:40:a9:1a:56:0f: 2f:67:16:80:6c:a3:57:3d:90:3e:58:cf:74:83:c0: 7e:dc:23:62:22:9c:68:57:62:9d:85:2c:ff:ac:60: bd:b3:cb:12:0d:33:5b:40:9a:9f:4b:8e:bc:cf:ed: fc:06:c6:71:bf:44:22:a7:e2:5b:aa:3e:4e:db:79: 43:27:58:97:04:d2:be:e9:37:63:15:07:24:c7:19: 0e:f8:87:15:23:44:46:43:89:fa:8f:30:09:0b:6f: b7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C9:1B:A8:43:7D:72:F9:88:D4:81:E9:D5:BE:29:D7:C0:27:7A:47 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/K8kbqEN9cvmI1IHp1b4p18Anekc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.105.224.0/19 Signature Algorithm: sha256WithRSAEncryption 71:f5:85:00:76:8d:af:5c:78:40:dd:d1:2c:30:7b:71:3c:6b: 31:fe:8d:96:56:db:3d:6c:50:84:54:59:4c:23:b0:85:98:96: 7f:45:52:55:1e:07:16:5b:e3:d1:9c:de:52:c3:62:9e:57:8f: 2d:a2:c9:ee:bf:32:59:5a:aa:be:e3:10:c6:de:0d:28:12:de: 6a:98:24:b5:8e:3d:9b:e1:13:17:43:67:89:6f:cd:ce:18:61: 83:f1:81:4a:36:76:95:de:5e:8d:87:bb:2b:36:ef:68:73:1e: 21:c2:82:5d:9e:1b:bc:81:2a:8d:ff:4d:27:58:c6:59:89:3a: 88:9c:95:b0:13:75:a9:86:3b:24:9f:0c:e9:d6:8e:57:78:37: 70:f8:6b:4f:6b:8c:df:79:16:02:d4:d0:fb:ec:6d:aa:40:01: 44:17:ef:fb:ac:2e:7f:a8:d9:20:29:8a:ce:1b:8b:0a:29:15: c3:d3:0e:cb:58:30:d2:18:32:96:3a:db:0e:fb:49:4c:a9:ee: f3:a2:8d:90:c2:e4:3c:53:cc:bc:63:b7:43:97:32:79:80:1f: 02:84:6e:03:2a:f3:e1:f9:59:35:3e:12:7f:d1:67:25:44:dd: 88:e0:b4:4e:69:13:c4:d3:ea:e2:55:28:9d:ae:77:5d:20:52: 01:3b:79:67 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEgwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJCQzkxQkE4NDM3RDcy Rjk4OEQ0ODFFOUQ1QkUyOUQ3QzAyNzdBNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD1Zcn2jivCGi9v4SEae5Fgs3y2TUCF+vblfaGnySUJdxyS711C k3hwH9SvKE9g1TB6lIzLl4WEdCh1784MnNy5urqch9Vh7dP1DJFk3JHAotGd8WWJ sp/WE++xeMJbY7+aTlcwPqq/3pH+To/vXVZjnqNg6wv3ypxhi7WreXo9z3PDfCFf jEceXJbkR3aINRdN1Pdd6xWZgqidaM9s83NAqRpWDy9nFoBso1c9kD5Yz3SDwH7c I2IinGhXYp2FLP+sYL2zyxINM1tAmp9LjrzP7fwGxnG/RCKn4luqPk7beUMnWJcE 0r7pN2MVByTHGQ74hxUjREZDifqPMAkLb7d/AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUK8kbqEN9cvmI1IHp1b4p18AnekcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSzhrYnFFTjljdm1JMUlI cDFiNHAxOEFuZWtjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Bctp4DANBgkqhkiG9w0BAQsFAAOCAQEAcfWFAHaNr1x4QN3RLDB7cTxrMf6Nllbb PWxQhFRZTCOwhZiWf0VSVR4HFlvj0ZzeUsNinlePLaLJ7r8yWVqqvuMQxt4NKBLe apgktY49m+ETF0NniW/Nzhhhg/GBSjZ2ld5ejYe7KzbvaHMeIcKCXZ4bvIEqjf9N J1jGWYk6iJyVsBN1qYY7JJ8M6daOV3g3cPhrT2uM33kWAtTQ++xtqkABRBfv+6wu f6jZICmKzhuLCikVw9MOy1gw0hgyljrbDvtJTKnu86KNkMLkPFPMvGO3Q5cyeYAf AoRuAyrz4flZNT4Sf9FnJUTdiOC0TmkTxNPq4lUona53XSBSATt5Zw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org