$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/P0lzYAV-tMBybINoIk711Fade3M.roa File: P0lzYAV-tMBybINoIk711Fade3M.roa (raw, json) Hash identifier: n2ldAnXsz5NNiQo7pa1KjYzPd2UB6Zp/OceiVb5ieUg= Subject key identifier: 3F:49:73:60:05:7E:B4:C0:72:6C:83:68:22:4E:F5:D4:56:9D:7B:73 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 124C Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/P0lzYAV-tMBybINoIk711Fade3M.roa Signing time: Mon 26 Aug 2024 05:24:52 +0000 ROA not before: Mon 26 Aug 2024 05:24:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4684 (0x124c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3F497360057EB4C0726C8368224EF5D4569D7B73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1a:7c:89:72:d6:ad:79:4c:f6:ef:24:f6:21: 0c:17:4e:4d:6a:fd:80:61:d6:bc:f9:45:ef:5e:5f: fa:0d:0a:36:fe:56:e5:55:2e:3a:03:4a:ef:3e:44: 0f:29:e3:eb:b1:77:ac:84:21:f5:71:f5:08:fe:88: b0:59:b5:8f:ca:81:e5:1b:d9:4c:fc:de:8f:ef:f2: 97:40:ee:92:9a:99:5b:ad:0b:92:23:50:05:4d:33: 61:7f:66:34:28:c8:39:ce:ae:e9:75:48:b6:08:b2: 1d:7a:31:d1:27:02:a1:42:ed:21:c3:ac:a4:77:26: 24:b8:39:8f:c1:71:fa:72:f7:86:9c:b6:6b:d5:ed: c2:8c:8a:7a:dd:c1:d9:d0:5d:12:bb:4c:b6:29:c6: 93:8a:08:ee:5d:59:c9:21:54:37:3f:c5:93:61:95: 08:f8:13:c4:2c:9b:7d:42:60:87:2b:62:08:64:4e: db:1c:2f:47:0e:57:6c:ff:75:28:0c:73:d1:f4:2f: f9:2b:f4:d6:50:6d:b7:0b:d9:e0:23:0e:f7:6d:0c: 88:da:2f:4c:3c:3f:81:cc:f7:29:83:c3:4b:25:17: 46:cc:1b:aa:08:aa:c9:09:0c:63:70:dd:b0:76:3d: f3:2d:58:ea:c5:e0:cd:dd:ee:eb:53:6c:34:e4:43: 94:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:49:73:60:05:7E:B4:C0:72:6C:83:68:22:4E:F5:D4:56:9D:7B:73 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/P0lzYAV-tMBybINoIk711Fade3M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3b:ef:83:35:8c:bc:0f:20:ed:2f:8d:ec:41:80:b7:d0:c3:63: 8f:99:14:d0:86:71:45:62:44:62:49:ad:ec:26:25:07:0c:35: 33:6a:4b:ae:da:ff:34:3b:3e:eb:a0:0b:96:b8:3d:22:68:2f: 67:11:03:a8:9a:01:3a:02:fb:22:15:34:7b:f3:e3:c3:9c:ae: ac:4e:4e:a7:82:13:4a:2e:fa:50:1d:89:65:08:ab:e9:5a:c6: ed:dc:3b:ea:07:84:b6:50:09:47:4e:b0:f3:6e:a9:6b:d9:e2: 56:22:0f:d8:86:f6:96:a6:f9:1f:ae:96:4c:a8:b6:82:e0:38: 66:7c:5b:7c:91:7c:ad:01:7d:7c:0c:8a:1b:0d:51:80:15:bf: d6:5b:48:bf:cd:76:74:60:eb:d4:12:88:8c:02:dd:a3:91:55: 77:a4:e8:7c:97:f1:f6:cc:9f:1a:91:20:7a:e5:36:b0:8b:c8: a8:42:10:bc:a8:f0:e0:f3:8f:cd:54:a4:6b:d8:48:c7:5c:c9: 20:df:a2:e2:ab:12:ab:f1:a6:86:d9:0b:6d:4e:da:81:b2:bb: 13:59:18:80:7b:71:14:1f:8d:81:40:cc:47:b4:ae:5f:45:f1: fb:0e:0b:dc:f3:75:f6:e2:cb:c8:d2:62:7f:e2:07:0d:48:8b: 32:8d:6c:c2 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEkwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNGNDk3MzYwMDU3RUI0 QzA3MjZDODM2ODIyNEVGNUQ0NTY5RDdCNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDGnyJctateUz27yT2IQwXTk1q/YBh1rz5Re9eX/oNCjb+VuVV LjoDSu8+RA8p4+uxd6yEIfVx9Qj+iLBZtY/KgeUb2Uz83o/v8pdA7pKamVutC5Ij UAVNM2F/ZjQoyDnOrul1SLYIsh16MdEnAqFC7SHDrKR3JiS4OY/Bcfpy94actmvV 7cKMinrdwdnQXRK7TLYpxpOKCO5dWckhVDc/xZNhlQj4E8Qsm31CYIcrYghkTtsc L0cOV2z/dSgMc9H0L/kr9NZQbbcL2eAjDvdtDIjaL0w8P4HM9ymDw0slF0bMG6oI qskJDGNw3bB2PfMtWOrF4M3d7utTbDTkQ5StAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUP0lzYAV+tMBybINoIk711Fade3MwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvUDBsellBVi10TUJ5YklO b0lrNzExRmFkZTNNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD ADzHMA0GCSqGSIb3DQEBCwUAA4IBAQA774M1jLwPIO0vjexBgLfQw2OPmRTQhnFF YkRiSa3sJiUHDDUzakuu2v80Oz7roAuWuD0iaC9nEQOomgE6AvsiFTR78+PDnK6s Tk6nghNKLvpQHYllCKvpWsbt3DvqB4S2UAlHTrDzbqlr2eJWIg/YhvaWpvkfrpZM qLaC4DhmfFt8kXytAX18DIobDVGAFb/WW0i/zXZ0YOvUEoiMAt2jkVV3pOh8l/H2 zJ8akSB65Tawi8ioQhC8qPDg84/NVKRr2EjHXMkg36LiqxKr8aaG2QttTtqBsrsT WRiAe3EUH42BQMxHtK5fRfH7Dgvc83X24svI0mJ/4gcNSIsyjWzC -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org