$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TkDt3qBWCRXbd6VfHFGtnn0e554.roa File: TkDt3qBWCRXbd6VfHFGtnn0e554.roa (raw, json) Hash identifier: SlOHMkCF6d8N0zVZPXW1suHDGDtRYgF7mysWSDcXQQQ= Subject key identifier: 4E:40:ED:DE:A0:56:09:15:DB:77:A5:5F:1C:51:AD:9E:7D:1E:E7:9E Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1242 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TkDt3qBWCRXbd6VfHFGtnn0e554.roa Signing time: Mon 26 Aug 2024 05:24:50 +0000 ROA not before: Mon 26 Aug 2024 05:24:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.17.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4674 (0x1242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4E40EDDEA0560915DB77A55F1C51AD9E7D1EE79E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:83:ef:f4:4d:e3:fe:f4:98:57:f9:de:94:4e: b5:c8:51:df:11:d2:c3:ba:73:b9:7e:12:e0:ae:2f: d2:9f:8b:5d:35:0c:6a:50:8c:22:9c:5d:2f:ce:7a: e1:8a:9e:2a:86:cb:4d:d2:bd:4a:8b:ef:7b:49:0d: a6:d0:24:be:0d:a4:5d:85:3a:8d:45:b1:78:13:f7: d9:11:33:63:68:3f:a4:e7:8d:7e:a9:81:eb:7e:1c: 97:20:84:4a:b4:8c:01:61:38:92:51:4f:4f:e7:54: 91:7b:57:16:bc:12:7f:05:43:fa:bb:84:6e:c7:61: 54:ab:a4:ae:ad:36:b2:37:19:f7:45:4c:da:eb:8c: 7e:09:fd:44:26:a7:c9:86:9c:85:de:ef:28:6a:55: dd:ee:53:2f:df:d6:45:33:09:fd:16:fe:7f:c4:b0: 65:f4:76:68:eb:c1:e9:5c:31:1f:cd:73:8f:0a:2a: ec:2d:47:84:2d:a6:73:c3:7b:c2:0a:37:d9:e4:43: b2:1b:3c:c2:4f:71:aa:2b:e1:73:74:ad:ec:7e:ea: 2e:15:7b:c1:35:14:d7:88:c1:ac:e1:3a:1c:19:ab: c1:50:db:3c:90:6f:3f:cd:ed:ff:9b:84:01:05:92: 2f:d5:a1:ee:ca:d9:e6:2d:98:c5:a7:f3:ca:7d:3f: 04:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:40:ED:DE:A0:56:09:15:DB:77:A5:5F:1C:51:AD:9E:7D:1E:E7:9E X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TkDt3qBWCRXbd6VfHFGtnn0e554.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.0.0/17 Signature Algorithm: sha256WithRSAEncryption 2f:63:fe:92:2a:31:ed:1c:a5:e7:ef:33:f9:26:7a:8a:83:2f: 8e:72:91:a2:1d:50:5a:7a:60:3c:cd:ce:0c:0a:cf:5f:b9:72: d3:d8:a0:9f:2e:0d:51:cd:b5:73:25:db:04:33:21:13:2c:6d: 02:d2:c4:ed:f5:b1:1b:58:eb:10:fa:ad:31:4e:b4:b0:36:b4: 5a:18:7b:91:c1:cd:7f:3b:7c:80:13:91:6e:e1:ca:46:ed:4f: 80:63:35:1a:97:25:ae:b1:d6:2d:6b:40:24:d5:42:d4:18:34: da:18:28:36:12:3e:fe:ce:79:23:91:d3:2c:4a:a2:1d:4d:c3: 7d:14:05:10:2b:b6:e9:e6:d4:33:44:4f:31:0b:bc:89:61:6d: 33:f7:22:79:00:de:a3:3f:02:18:25:40:68:f3:a5:5c:df:1b: c3:ca:02:44:3b:f2:ed:b8:61:04:86:88:8c:08:d3:79:27:29: e6:1b:d8:b0:9f:bc:25:81:80:90:6f:a1:59:9a:94:0c:b0:72: ef:79:b4:ef:d1:26:9b:cb:eb:ce:84:b0:0d:52:51:c2:c1:14: 7c:a8:db:eb:5f:92:f4:df:bd:73:e1:c6:11:0c:80:50:e2:fc: 36:35:6a:e0:98:9d:cf:12:77:92:90:af:16:88:b2:be:c5:84: 8a:6d:3f:c3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEkIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRFNDBFRERFQTA1NjA5 MTVEQjc3QTU1RjFDNTFBRDlFN0QxRUU3OUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtg+/0TeP+9JhX+d6UTrXIUd8R0sO6c7l+EuCuL9Kfi101DGpQ jCKcXS/OeuGKniqGy03SvUqL73tJDabQJL4NpF2FOo1FsXgT99kRM2NoP6TnjX6p get+HJcghEq0jAFhOJJRT0/nVJF7Vxa8En8FQ/q7hG7HYVSrpK6tNrI3GfdFTNrr jH4J/UQmp8mGnIXe7yhqVd3uUy/f1kUzCf0W/n/EsGX0dmjrwelcMR/Nc48KKuwt R4QtpnPDe8IKN9nkQ7IbPMJPcaor4XN0rex+6i4Ve8E1FNeIwazhOhwZq8FQ2zyQ bz/N7f+bhAEFki/Voe7K2eYtmMWn88p9PwQrAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUTkDt3qBWCRXbd6VfHFGtnn0e554wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvVGtEdDNxQldDUlhiZDZW ZkhGR3RubjBlNTU0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B9IRADANBgkqhkiG9w0BAQsFAAOCAQEAL2P+kiox7Ryl5+8z+SZ6ioMvjnKRoh1Q WnpgPM3ODArPX7ly09igny4NUc21cyXbBDMhEyxtAtLE7fWxG1jrEPqtMU60sDa0 Whh7kcHNfzt8gBORbuHKRu1PgGM1GpclrrHWLWtAJNVC1Bg02hgoNhI+/s55I5HT LEqiHU3DfRQFECu26ebUM0RPMQu8iWFtM/cieQDeoz8CGCVAaPOlXN8bw8oCRDvy 7bhhBIaIjAjTeScp5hvYsJ+8JYGAkG+hWZqUDLBy73m079Emm8vrzoSwDVJRwsEU fKjb61+S9N+9c+HGEQyAUOL8NjVq4JidzxJ3kpCvFoiyvsWEim0/ww== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org