$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SAt1yubjNi3Hm9zlDMs-ZKdz6bU.roa File: SAt1yubjNi3Hm9zlDMs-ZKdz6bU.roa (raw, json) Hash identifier: u0eUKPo+dOmd40/8DmVAvQPWmWw9OX4CJ974gMv5g2c= Subject key identifier: 48:0B:75:CA:E6:E3:36:2D:C7:9B:DC:E5:0C:CB:3E:64:A7:73:E9:B5 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11FF Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SAt1yubjNi3Hm9zlDMs-ZKdz6bU.roa Signing time: Mon 26 Aug 2024 05:24:36 +0000 ROA not before: Mon 26 Aug 2024 05:24:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.62.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4607 (0x11ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=480B75CAE6E3362DC79BDCE50CCB3E64A773E9B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0a:52:69:8a:9a:ff:bc:c6:16:f5:c2:9c:3b: 43:a5:d9:de:fb:0e:a8:a0:5a:4b:77:35:fa:24:47: d0:1a:af:2a:bf:cb:03:8a:ee:58:de:31:f2:05:f9: ea:25:8d:dd:92:9b:c5:19:5b:00:97:c8:51:c0:d0: 03:39:bc:15:8f:76:6b:67:59:19:6a:09:9c:34:f5: 4b:38:bb:ed:7a:81:f9:3f:7a:ae:06:dd:57:41:19: b1:5e:f6:d9:42:67:c2:0b:22:a9:c6:5a:a1:87:e6: 89:85:53:c0:e4:71:84:f7:54:6f:5c:a3:fc:0a:f2: 59:a4:f2:2d:7d:52:35:c9:aa:99:eb:09:53:f2:21: 29:2e:50:6d:bf:40:a2:ac:69:bf:07:45:1f:20:7e: bc:e9:e6:fb:ad:21:70:cd:31:0a:aa:49:db:75:ae: 5a:be:fc:5c:9b:ac:68:51:d0:38:a2:a2:95:36:2b: 83:a5:69:f4:fa:0c:85:13:82:3a:5a:5f:70:28:f8: b5:ac:f0:1a:65:08:c2:de:e6:af:43:d5:a5:fe:9a: e1:ec:c1:04:4d:1d:ec:28:2b:21:40:b2:09:1b:66: ba:5c:1b:9b:3c:62:d9:bd:3d:18:12:d2:67:c9:6e: ee:4b:d9:47:b5:a4:01:13:1f:8d:e3:33:72:b5:c7: db:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0B:75:CA:E6:E3:36:2D:C7:9B:DC:E5:0C:CB:3E:64:A7:73:E9:B5 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SAt1yubjNi3Hm9zlDMs-ZKdz6bU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.32.0/19 Signature Algorithm: sha256WithRSAEncryption 95:2e:3c:4a:1e:1e:b2:78:c3:08:9d:c4:11:ca:14:5a:0b:48: 38:d6:77:d3:08:39:2e:6c:11:6b:cf:46:3a:0d:1f:5c:5d:f5: 07:de:5f:4c:7d:6a:e8:75:d2:9c:87:f5:e7:92:14:e7:c5:da: a9:70:b7:e4:2e:2a:32:9b:bd:4a:3d:b6:25:71:da:35:2d:d3: 75:8c:b0:9c:b1:00:36:31:30:11:b9:83:1e:eb:1f:50:c4:e1: f1:07:35:1d:7c:29:90:3b:7c:85:70:f0:c4:9a:2e:24:5d:ed: 43:ff:7a:2f:4b:91:1d:ff:b5:20:a1:3b:cc:bc:6d:0d:0b:52: 96:a3:bc:2d:23:a6:a9:60:5f:2f:41:48:a7:be:36:c2:27:e7: 31:d5:5c:dc:ad:4b:e7:a8:05:01:f1:4e:00:8f:8e:21:8b:90: 4c:ad:aa:24:be:74:12:37:d4:97:b4:74:38:60:ca:e0:1e:9e: bd:0a:a9:61:97:90:a1:6e:68:cf:3f:01:d5:6b:cb:01:30:64: 95:64:57:79:f7:c0:fa:16:9c:6d:4d:43:0d:70:4f:f6:f8:72: 2d:9e:cc:ab:c2:4a:25:09:c1:f5:93:18:13:82:1e:6f:f9:23: cd:a7:61:f7:b8:aa:13:ec:08:18:5a:7f:ab:1a:ad:95:06:fd: 1f:2b:35:1a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEf8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ4MEI3NUNBRTZFMzM2 MkRDNzlCRENFNTBDQ0IzRTY0QTc3M0U5QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrClJpipr/vMYW9cKcO0Ol2d77DqigWkt3NfokR9Aaryq/ywOK 7ljeMfIF+eoljd2Sm8UZWwCXyFHA0AM5vBWPdmtnWRlqCZw09Us4u+16gfk/eq4G 3VdBGbFe9tlCZ8ILIqnGWqGH5omFU8DkcYT3VG9co/wK8lmk8i19UjXJqpnrCVPy ISkuUG2/QKKsab8HRR8gfrzp5vutIXDNMQqqSdt1rlq+/FybrGhR0DiiopU2K4Ol afT6DIUTgjpaX3Ao+LWs8BplCMLe5q9D1aX+muHswQRNHewoKyFAsgkbZrpcG5s8 Ytm9PRgS0mfJbu5L2Ue1pAETH43jM3K1x9vpAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUSAt1yubjNi3Hm9zlDMs+ZKdz6bUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvU0F0MXl1YmpOaTNIbTl6 bERNcy1aS2R6NmJVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdI+IDANBgkqhkiG9w0BAQsFAAOCAQEAlS48Sh4esnjDCJ3EEcoUWgtIONZ30wg5 LmwRa89GOg0fXF31B95fTH1q6HXSnIf155IU58XaqXC35C4qMpu9Sj22JXHaNS3T dYywnLEANjEwEbmDHusfUMTh8Qc1HXwpkDt8hXDwxJouJF3tQ/96L0uRHf+1IKE7 zLxtDQtSlqO8LSOmqWBfL0FIp742wifnMdVc3K1L56gFAfFOAI+OIYuQTK2qJL50 EjfUl7R0OGDK4B6evQqpYZeQoW5ozz8B1WvLATBklWRXeffA+hacbU1DDXBP9vhy LZ7Mq8JKJQnB9ZMYE4Ieb/kjzadh97iqE+wIGFp/qxqtlQb9Hys1Gg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org