$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X1sFErl3L5ZqJy3KhT5feb89vsk.roa File: X1sFErl3L5ZqJy3KhT5feb89vsk.roa (raw, json) Hash identifier: Rw+uK4A8Mx8RjAOgrj0cjXn07Jn603aRi6vashCfuOs= Subject key identifier: 5F:5B:05:12:B9:77:2F:96:6A:27:2D:CA:85:3E:5F:79:BF:3D:BE:C9 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F6C Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X1sFErl3L5ZqJy3KhT5feb89vsk.roa Signing time: Fri 01 Sep 2023 09:36:48 +0000 ROA not before: Fri 01 Sep 2023 09:36:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 211.79.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3948 (0xf6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:36:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5F5B0512B9772F966A272DCA853E5F79BF3DBEC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:89:55:78:d4:42:2c:da:b1:55:a6:25:1c:bd: 46:d6:d4:d3:9d:90:4c:fa:75:5e:2f:18:6c:ff:6e: f2:23:4a:c1:a5:60:ac:6d:77:46:15:7c:0f:95:d2: ba:8e:ba:5f:6e:60:89:ce:e6:70:a2:ff:15:84:f0: d8:21:a8:48:30:ee:7e:46:87:2e:78:b9:2a:fa:4b: a1:13:5d:ea:cb:bd:2a:ca:88:75:e0:36:57:5e:07: 34:9c:8e:02:81:85:94:3b:77:6b:69:6e:56:3b:3d: 71:cf:ad:7d:75:23:2b:da:01:fc:f7:4b:b9:d5:fd: 55:17:15:3e:10:10:fe:a0:11:fe:3e:7a:cd:13:10: 3f:01:30:4e:2b:68:c4:05:f0:4c:5d:65:8d:e7:0c: 06:ec:17:c0:71:b1:52:95:2e:eb:ab:39:a1:2c:f8: 4d:f7:27:c4:59:91:f5:04:59:ec:3e:28:35:06:37: 5f:c1:be:30:70:39:85:eb:b4:1f:a0:75:a2:39:07: 81:51:1b:e9:ee:46:89:45:1e:6f:5d:60:15:10:a2: 80:ea:1e:31:07:14:b6:f3:1b:1b:79:ae:d7:37:f7: 91:a0:9f:61:78:b6:9d:27:83:1f:2f:f2:c8:e0:19: b9:0b:b2:de:03:a1:b9:c1:5b:c4:e4:93:25:bf:26: e1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5B:05:12:B9:77:2F:96:6A:27:2D:CA:85:3E:5F:79:BF:3D:BE:C9 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X1sFErl3L5ZqJy3KhT5feb89vsk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.0.0/19 Signature Algorithm: sha256WithRSAEncryption 26:31:64:20:4f:9f:f7:12:4b:23:5b:49:18:ba:14:a6:86:14: b9:94:80:a0:4d:f5:24:43:2b:83:01:d5:0a:6a:95:5f:85:41: 65:7f:ba:fb:8a:59:af:65:79:53:65:ae:20:0c:0a:de:5b:62: a2:f3:d1:71:39:d6:9a:10:ed:6c:57:58:47:5f:63:81:8d:ef: 15:aa:ea:5c:07:c9:2f:f9:f3:2f:61:3b:a0:03:f7:2a:8a:de: bd:67:0c:5a:f6:8a:ba:27:9c:e5:bf:af:64:03:3f:ba:46:f4: 96:0a:35:40:3b:7c:c7:6d:9b:92:be:dc:fe:17:e3:11:b8:49: 4f:5b:cc:ca:62:f4:ae:da:48:3f:b0:25:0b:a9:4d:f9:08:d1: 5b:10:ee:c3:72:79:e2:f5:f3:fd:58:1e:d2:53:ab:09:1c:ff: a0:02:ff:cd:97:c2:c6:6e:8d:c3:86:01:2f:41:42:69:e5:af: 57:35:15:78:a5:06:5f:92:c0:2f:c1:9d:9a:46:17:74:f9:a7: be:cd:54:ea:34:89:f3:df:e2:d3:8a:f0:8f:04:73:87:73:27: 09:0a:04:6d:dd:85:e1:2e:4c:12:82:46:89:c5:42:bb:ad:e2: 1c:81:1b:02:df:1a:06:b6:65:85:91:c9:64:8c:11:06:93:8a: 86:a6:51:70 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD2wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM2NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVGNUIwNTEyQjk3NzJG OTY2QTI3MkRDQTg1M0U1Rjc5QkYzREJFQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbiVV41EIs2rFVpiUcvUbW1NOdkEz6dV4vGGz/bvIjSsGlYKxt d0YVfA+V0rqOul9uYInO5nCi/xWE8NghqEgw7n5Ghy54uSr6S6ETXerLvSrKiHXg NldeBzScjgKBhZQ7d2tpblY7PXHPrX11IyvaAfz3S7nV/VUXFT4QEP6gEf4+es0T ED8BME4raMQF8ExdZY3nDAbsF8BxsVKVLuurOaEs+E33J8RZkfUEWew+KDUGN1/B vjBwOYXrtB+gdaI5B4FRG+nuRolFHm9dYBUQooDqHjEHFLbzGxt5rtc395Ggn2F4 tp0ngx8v8sjgGbkLst4DobnBW8TkkyW/JuH9AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUX1sFErl3L5ZqJy3KhT5feb89vskwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWDFzRkVybDNMNVpxSnkz S2hUNWZlYjg5dnNrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdNPADANBgkqhkiG9w0BAQsFAAOCAQEAJjFkIE+f9xJLI1tJGLoUpoYUuZSAoE31 JEMrgwHVCmqVX4VBZX+6+4pZr2V5U2WuIAwK3ltiovPRcTnWmhDtbFdYR19jgY3v FarqXAfJL/nzL2E7oAP3KorevWcMWvaKuiec5b+vZAM/ukb0lgo1QDt8x22bkr7c /hfjEbhJT1vMymL0rtpIP7AlC6lN+QjRWxDuw3J54vXz/Vge0lOrCRz/oAL/zZfC xm6Nw4YBL0FCaeWvVzUVeKUGX5LAL8GdmkYXdPmnvs1U6jSJ89/i04rwjwRzh3Mn CQoEbd2F4S5MEoJGicVCu63iHIEbAt8aBrZlhZHJZIwRBpOKhqZRcA== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org