$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ud37pb2WWBr-UYTgQf5ZaIkpigs.roa File: Ud37pb2WWBr-UYTgQf5ZaIkpigs.roa (raw, json) Hash identifier: KG0q8l0C02BU5biaFdHY184HXSAMkb2PBBp16Y2HGqo= Subject key identifier: 51:DD:FB:A5:BD:96:58:1A:FE:51:84:E0:41:FE:59:68:89:29:8A:0B Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F77 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ud37pb2WWBr-UYTgQf5ZaIkpigs.roa Signing time: Fri 01 Sep 2023 09:36:52 +0000 ROA not before: Fri 01 Sep 2023 09:36:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 60.199.171.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3959 (0xf77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:36:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=51DDFBA5BD96581AFE5184E041FE596889298A0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:29:8c:b7:55:d3:9a:e7:f2:2b:6b:f8:4e:ad: 52:d8:a7:cb:d6:b8:9f:c7:cb:94:9f:58:88:4c:8c: 98:52:5e:af:63:62:95:c3:31:b9:a6:72:af:2f:0c: 9a:9d:f1:a8:9b:27:01:46:0e:16:de:75:91:d3:76: a5:e3:84:b3:fd:f4:25:db:73:d2:cb:60:e2:93:04: 9d:93:b9:13:96:f0:c5:8e:f3:14:bd:b9:50:57:00: 7a:02:7d:4e:2d:7b:7f:2c:4f:04:7f:a6:88:c5:96: 30:27:d4:68:dd:86:32:a7:fd:03:43:96:f4:58:d6: 86:f8:ee:c4:66:c1:0c:11:49:6a:ba:11:db:f4:22: 0d:5d:81:34:f2:32:7a:40:db:4b:6e:39:9c:6a:32: c7:97:9e:6c:2b:12:cd:bf:62:e3:6f:2e:96:51:c9: 73:68:ac:c3:92:18:15:08:c8:6d:cd:95:4f:32:62: 2b:4a:d5:73:7e:d9:b1:b8:8f:c3:66:2a:82:1e:5b: 80:67:d9:d2:c8:9d:5b:d2:91:3b:c5:a0:64:4f:41: 34:51:dd:b1:f6:75:3d:9c:af:5e:65:85:ff:48:2b: 59:e7:47:27:f5:a0:bc:36:81:19:da:5f:1d:21:9d: f1:cd:65:3b:a5:4b:7f:f2:6e:cb:b1:3a:e7:e8:5d: 40:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:DD:FB:A5:BD:96:58:1A:FE:51:84:E0:41:FE:59:68:89:29:8A:0B X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ud37pb2WWBr-UYTgQf5ZaIkpigs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.171.0/24 Signature Algorithm: sha256WithRSAEncryption 72:9c:8c:da:48:08:bf:9b:c1:e5:a2:23:8b:07:da:99:fb:16: 1f:21:75:3e:67:37:58:83:31:fb:f8:23:8c:35:ef:5f:d5:3c: 0f:9f:01:82:b0:31:53:e2:1f:58:d1:22:c0:0a:f1:4a:56:3c: b1:0a:f4:e8:ab:35:23:1c:6f:7e:16:1c:af:a6:5b:d7:d4:23: 7c:ee:6b:ac:4b:83:63:aa:57:9c:b9:38:8c:f8:70:2b:99:f0: 6b:15:aa:10:3f:fb:46:1a:fc:b3:df:42:1a:b0:0c:ac:2d:15: 96:f4:5e:35:85:4c:e1:14:00:d1:4b:94:42:f9:e0:74:69:0e: 6b:ae:2d:c2:7c:51:cf:4b:ea:b5:1b:66:af:3f:af:45:25:10: d2:ab:c9:f3:7c:47:44:f4:2f:c1:b9:e8:f7:5a:ca:17:0a:77: c8:17:64:02:b2:91:69:26:36:0a:60:3a:d9:15:b5:60:6e:8a: 7c:69:3f:b6:be:a1:85:9a:1f:f6:51:f8:7b:5a:04:41:89:03: c4:cc:cf:94:eb:ab:3f:c8:57:6f:67:d0:66:34:ad:19:51:17: 91:51:9b:cd:ae:9c:ef:09:eb:4e:46:ab:51:0f:31:af:b3:75: 1c:6f:61:89:b4:e5:a2:50:ce:93:17:79:d9:9a:1f:b3:25:0f: 16:e0:dd:13 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD3cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM2NTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDUxRERGQkE1QkQ5NjU4 MUFGRTUxODRFMDQxRkU1OTY4ODkyOThBMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCKYy3VdOa5/Ira/hOrVLYp8vWuJ/Hy5SfWIhMjJhSXq9jYpXD Mbmmcq8vDJqd8aibJwFGDhbedZHTdqXjhLP99CXbc9LLYOKTBJ2TuROW8MWO8xS9 uVBXAHoCfU4te38sTwR/pojFljAn1GjdhjKn/QNDlvRY1ob47sRmwQwRSWq6Edv0 Ig1dgTTyMnpA20tuOZxqMseXnmwrEs2/YuNvLpZRyXNorMOSGBUIyG3NlU8yYitK 1XN+2bG4j8NmKoIeW4Bn2dLInVvSkTvFoGRPQTRR3bH2dT2cr15lhf9IK1nnRyf1 oLw2gRnaXx0hnfHNZTulS3/ybsuxOufoXUB1AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUUd37pb2WWBr+UYTgQf5ZaIkpigswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvVWQzN3BiMldXQnItVVlU Z1FmNVphSWtwaWdzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHqzANBgkqhkiG9w0BAQsFAAOCAQEAcpyM2kgIv5vB5aIjiwfamfsWHyF1Pmc3 WIMx+/gjjDXvX9U8D58BgrAxU+IfWNEiwArxSlY8sQr06Ks1IxxvfhYcr6Zb19Qj fO5rrEuDY6pXnLk4jPhwK5nwaxWqED/7Rhr8s99CGrAMrC0VlvReNYVM4RQA0UuU QvngdGkOa64twnxRz0vqtRtmrz+vRSUQ0qvJ83xHRPQvwbno91rKFwp3yBdkArKR aSY2CmA62RW1YG6KfGk/tr6hhZof9lH4e1oEQYkDxMzPlOurP8hXb2fQZjStGVEX kVGbza6c7wnrTkarUQ8xr7N1HG9hibTlolDOkxd52ZofsyUPFuDdEw== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org