$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZBSPGMJpFmGZujbRodG1u0J0XDU.roa File: ZBSPGMJpFmGZujbRodG1u0J0XDU.roa (raw, json) Hash identifier: 3lgOcQMiE50j8Qxrm4uTsDwc6p6LiSzm7JWbOoFP7G4= Subject key identifier: 64:14:8F:18:C2:69:16:61:99:BA:36:D1:A1:D1:B5:BB:42:74:5C:35 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1210 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZBSPGMJpFmGZujbRodG1u0J0XDU.roa Signing time: Mon 26 Aug 2024 05:24:40 +0000 ROA not before: Mon 26 Aug 2024 05:24:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 103.224.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4624 (0x1210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=64148F18C269166199BA36D1A1D1B5BB42745C35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f3:3f:91:75:9c:38:1e:86:90:ee:87:82:76: ec:8f:73:56:7a:7b:03:1d:57:6c:98:ec:9e:4b:6e: 9e:da:92:9c:a9:31:7e:e1:2b:aa:0e:02:1d:94:26: ed:71:eb:51:11:fc:58:d8:09:d3:0f:3a:23:ed:d0: 62:12:c0:46:97:08:48:e4:46:e4:82:dc:10:be:f5: f9:0b:f8:a1:6b:2e:44:7a:c4:0d:5b:72:3a:e6:60: 1f:06:92:f5:62:8e:7c:8b:26:b8:09:e3:9a:55:b7: 76:d6:d7:c3:df:34:f2:7e:40:b0:ef:ef:bf:ed:4f: 2d:6c:b5:8b:3a:23:d1:52:4a:8f:eb:29:69:6c:57: 62:7d:71:d7:b6:77:29:c7:27:9b:86:95:85:b8:73: 13:08:18:f5:db:de:65:93:fe:cf:57:fb:7a:b7:8a: 56:0e:d1:a0:68:95:25:c5:e0:ef:c2:d5:51:83:45: 1e:6f:55:a2:b8:7b:15:9f:10:03:82:9a:a5:38:98: e2:b0:55:53:0f:b7:0c:09:ff:6c:d1:11:e4:a8:7b: 46:39:93:74:74:76:21:a9:54:fd:3b:ee:d6:db:ae: 23:37:26:4f:33:aa:69:69:25:3c:62:db:32:83:92: 14:6e:ca:d0:d9:6c:d5:ed:02:fa:aa:57:af:bd:f1: bc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:14:8F:18:C2:69:16:61:99:BA:36:D1:A1:D1:B5:BB:42:74:5C:35 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZBSPGMJpFmGZujbRodG1u0J0XDU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.224.132.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:aa:b2:f5:36:9d:56:2d:87:84:a5:f9:eb:e9:6c:d4:99:6d: b9:ed:de:25:6b:28:76:12:5e:76:70:41:1a:dd:04:1e:56:cb: dd:36:61:fd:4a:cb:01:c4:a4:77:28:29:32:b6:7c:41:ec:49: 1d:72:ce:62:52:9d:88:7b:e8:a8:e1:ae:f6:9f:9d:e0:47:96: bf:56:51:ac:2a:e4:5c:bc:f3:a7:72:72:a5:c4:50:04:2d:1f: 94:ff:08:3e:3d:a8:6f:9d:13:98:83:d7:71:85:f9:f4:c8:3f: 8b:92:d3:be:da:09:92:6f:f8:b0:64:9f:45:cc:1a:d4:3f:88: d1:5b:d4:65:bf:73:cf:1a:2e:d7:43:68:c8:ae:a5:3c:ad:4c: 13:e4:44:5c:4a:83:e8:95:2a:00:43:c8:7a:77:5c:a6:b9:74: 70:e7:e3:fc:37:14:d9:b2:f4:f3:f7:1b:ea:c5:4e:fa:94:e7: 13:f3:d6:cf:02:31:7c:26:75:f3:aa:6e:d2:44:66:6b:61:72: 31:3b:8f:af:e9:4b:62:a2:f6:dd:5b:e2:c6:70:ca:1c:74:13: ea:4d:1c:e7:ea:05:27:4d:ca:b5:37:b5:0c:68:11:68:24:38: 36:22:a4:7e:28:64:cf:31:d2:b2:c4:04:fe:33:ea:0e:78:f0: 9e:62:b0:d7 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0MTQ4RjE4QzI2OTE2 NjE5OUJBMzZEMUExRDFCNUJCNDI3NDVDMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDr8z+RdZw4HoaQ7oeCduyPc1Z6ewMdV2yY7J5Lbp7akpypMX7h K6oOAh2UJu1x61ER/FjYCdMPOiPt0GISwEaXCEjkRuSC3BC+9fkL+KFrLkR6xA1b cjrmYB8GkvVijnyLJrgJ45pVt3bW18PfNPJ+QLDv77/tTy1stYs6I9FSSo/rKWls V2J9cde2dynHJ5uGlYW4cxMIGPXb3mWT/s9X+3q3ilYO0aBolSXF4O/C1VGDRR5v VaK4exWfEAOCmqU4mOKwVVMPtwwJ/2zREeSoe0Y5k3R0diGpVP077tbbriM3Jk8z qmlpJTxi2zKDkhRuytDZbNXtAvqqV6+98bzNAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUZBSPGMJpFmGZujbRodG1u0J0XDUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWkJTUEdNSnBGbUdadWpi Um9kRzF1MEowWERVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmfghDANBgkqhkiG9w0BAQsFAAOCAQEAP6qy9TadVi2HhKX56+ls1Jltue3eJWso dhJednBBGt0EHlbL3TZh/UrLAcSkdygpMrZ8QexJHXLOYlKdiHvoqOGu9p+d4EeW v1ZRrCrkXLzzp3JypcRQBC0flP8IPj2ob50TmIPXcYX59Mg/i5LTvtoJkm/4sGSf Rcwa1D+I0VvUZb9zzxou10NoyK6lPK1ME+REXEqD6JUqAEPIendcprl0cOfj/DcU 2bL08/cb6sVO+pTnE/PWzwIxfCZ186pu0kRma2FyMTuPr+lLYqL23VvixnDKHHQT 6k0c5+oFJ03KtTe1DGgRaCQ4NiKkfihkzzHSssQE/jPqDnjwnmKw1w== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org