$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UnD1JNmB81SBZoI0_4sz5jwZtJk.roa File: UnD1JNmB81SBZoI0_4sz5jwZtJk.roa (raw, json) Hash identifier: /QKD/LWg1oKKeK0HhpoZejk63FHSUvGyx56wktnHSBQ= Subject key identifier: 52:70:F5:24:D9:81:F3:54:81:66:82:34:FF:8B:33:E6:3C:19:B4:99 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 121F Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UnD1JNmB81SBZoI0_4sz5jwZtJk.roa Signing time: Mon 26 Aug 2024 05:24:42 +0000 ROA not before: Mon 26 Aug 2024 05:24:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 124.8.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4639 (0x121f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5270F524D981F35481668234FF8B33E63C19B499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:85:66:51:17:a1:9e:a1:c7:ff:37:04:59:8f: 3e:b9:19:1f:88:76:d3:80:37:d0:8e:11:58:28:c0: dd:89:ce:d9:87:63:70:a8:fe:1e:0b:c4:82:3b:1e: 75:a9:37:aa:53:de:62:d2:3d:97:fe:1a:3b:77:3c: 76:18:df:4f:3d:d7:94:cc:3f:79:cf:db:96:88:e3: 90:43:3e:59:22:fa:a2:cb:44:fb:d1:f4:24:54:35: a4:01:9d:24:5a:e6:cb:e4:91:5a:12:46:bc:fa:8d: 53:e5:6b:5a:66:54:7a:54:29:8d:36:76:1c:c2:26: 40:8d:3c:57:4d:26:7e:d2:dd:d4:03:22:86:a0:42: 9c:33:2b:e8:47:ec:9b:c6:b4:87:ad:5e:e7:09:78: 6d:88:f7:c8:3e:dc:0e:41:e1:1a:3b:94:f7:70:6a: a0:0e:ee:8a:e0:9d:7b:3f:bd:de:4b:15:c6:b1:6d: 3b:62:8b:b3:96:56:d2:40:6d:1d:5c:d7:38:c2:2a: 1e:13:23:fe:92:5a:23:9b:7d:70:e6:61:b3:b0:cf: 1f:0a:bf:51:7a:76:30:05:91:ec:89:6f:aa:08:3d: 23:d9:2c:24:31:f7:03:b0:9f:3b:db:9a:b6:d5:f3: 2c:76:1d:7f:f1:63:c3:77:18:53:a7:30:2f:30:4e: 4b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:70:F5:24:D9:81:F3:54:81:66:82:34:FF:8B:33:E6:3C:19:B4:99 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UnD1JNmB81SBZoI0_4sz5jwZtJk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.8.0.0/14 Signature Algorithm: sha256WithRSAEncryption 47:48:42:30:2f:44:79:e9:df:5c:3a:57:c4:ce:6b:2c:ef:92: ca:7d:de:e9:3e:95:8f:cb:65:d0:50:f5:01:33:92:dd:e2:4e: 33:20:e8:b2:19:7f:20:14:7e:b0:0a:59:9b:f1:d2:3a:de:aa: 19:83:66:08:2e:1e:5e:26:27:bc:d2:1d:13:85:b4:f7:fc:7f: d3:d6:9e:cb:53:5c:3f:7d:9c:82:50:f6:8c:89:e3:91:a8:1c: d5:33:3b:e2:d3:28:b7:61:68:9c:cf:07:d4:ab:04:31:28:88: b6:58:96:7f:0f:8f:c2:41:99:fa:44:04:d4:b7:f8:54:5f:50: 48:ba:9a:bf:74:b7:38:71:21:23:e0:20:1b:d5:61:d5:49:52: 4e:9f:ca:44:2f:98:c0:8d:98:b0:2a:7a:f7:c2:35:48:b0:fd: d7:4f:86:db:6f:eb:4e:22:ad:84:25:40:e7:65:d6:91:7c:f6: 35:b2:c8:6b:d9:ae:86:de:4d:52:73:cb:a5:df:5e:64:7e:f9: d4:94:3b:1d:10:4d:17:6c:7d:ca:09:77:19:5d:8d:0c:d7:c3: e3:d6:50:74:4e:12:60:00:c5:1f:70:7c:4d:80:e9:b0:6c:3d: a1:bb:7b:5d:1d:f0:47:71:37:88:45:38:f7:6b:13:90:4d:81: bc:58:0c:dc -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEh8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyNzBGNTI0RDk4MUYz NTQ4MTY2ODIzNEZGOEIzM0U2M0MxOUI0OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYhWZRF6Geocf/NwRZjz65GR+IdtOAN9COEVgowN2JztmHY3Co /h4LxII7HnWpN6pT3mLSPZf+Gjt3PHYY308915TMP3nP25aI45BDPlki+qLLRPvR 9CRUNaQBnSRa5svkkVoSRrz6jVPla1pmVHpUKY02dhzCJkCNPFdNJn7S3dQDIoag QpwzK+hH7JvGtIetXucJeG2I98g+3A5B4Ro7lPdwaqAO7orgnXs/vd5LFcaxbTti i7OWVtJAbR1c1zjCKh4TI/6SWiObfXDmYbOwzx8Kv1F6djAFkeyJb6oIPSPZLCQx 9wOwnzvbmrbV8yx2HX/xY8N3GFOnMC8wTktVAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUUnD1JNmB81SBZoI0/4sz5jwZtJkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvVW5EMUpObUI4MVNCWm9J MF80c3o1andadEprLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AnwIMA0GCSqGSIb3DQEBCwUAA4IBAQBHSEIwL0R56d9cOlfEzmss75LKfd7pPpWP y2XQUPUBM5Ld4k4zIOiyGX8gFH6wClmb8dI63qoZg2YILh5eJie80h0ThbT3/H/T 1p7LU1w/fZyCUPaMieORqBzVMzvi0yi3YWiczwfUqwQxKIi2WJZ/D4/CQZn6RATU t/hUX1BIupq/dLc4cSEj4CAb1WHVSVJOn8pEL5jAjZiwKnr3wjVIsP3XT4bbb+tO Iq2EJUDnZdaRfPY1sshr2a6G3k1Sc8ul315kfvnUlDsdEE0XbH3KCXcZXY0M18Pj 1lB0ThJgAMUfcHxNgOmwbD2hu3tdHfBHcTeIRTj3axOQTYG8WAzc -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org