$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Zuyat4plQZ7RWe_FvKlo4iaQ-GY.roa File: Zuyat4plQZ7RWe_FvKlo4iaQ-GY.roa (raw, json) Hash identifier: EUD01zFPby91B85AXPDHoqRgEFazRSqpHIkTXesEqPg= Subject key identifier: 66:EC:9A:B7:8A:65:41:9E:D1:59:EF:C5:BC:A9:68:E2:26:90:F8:66 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1231 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Zuyat4plQZ7RWe_FvKlo4iaQ-GY.roa Signing time: Mon 26 Aug 2024 05:24:47 +0000 ROA not before: Mon 26 Aug 2024 05:24:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 135596 IP address blocks: 60.198.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4657 (0x1231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=66EC9AB78A65419ED159EFC5BCA968E22690F866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2c:a9:07:0a:88:6c:5b:0c:fd:fd:c1:a7:c8: 20:bd:3c:e4:86:e2:9c:21:20:54:56:d8:ca:b2:6d: 32:ae:c3:06:2d:88:46:f7:f8:78:4f:5d:8a:2a:ae: 24:5e:b9:95:47:ab:b2:ff:2b:89:3b:0e:f0:33:c3: dc:f0:34:2e:95:a0:a3:74:a4:ca:c6:e6:74:ef:5a: 57:0e:52:f2:58:1d:b9:93:02:6d:3e:ff:6e:2b:34: cd:2a:dc:f4:7b:83:ed:fc:97:f4:1a:ee:ff:0c:1c: 04:56:b4:c4:6f:24:c3:bd:2d:90:4f:88:2a:51:27: c1:43:9c:4b:df:2f:96:bb:f2:61:c2:3f:ef:2f:c8: ca:5b:4c:0f:a6:38:6d:e1:f8:82:be:61:15:dc:6f: f5:f3:2b:c5:fb:9a:f6:e1:a6:5b:be:ff:02:9a:98: 10:e5:5a:96:5f:ed:a0:51:3b:39:57:fc:34:82:5b: d5:17:42:7e:18:bb:0e:77:79:97:6b:79:04:7d:de: 4f:9b:a0:88:6a:a1:57:81:d2:3d:9d:00:b5:fb:d5: aa:ee:e0:a3:b5:46:5e:83:28:e3:99:e6:a1:68:4c: 0e:4c:98:de:1e:21:69:53:21:c3:c7:17:bf:5e:a9: b8:d2:c5:b4:8b:8a:19:e7:4c:ca:0a:9a:d3:b2:0d: 69:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:EC:9A:B7:8A:65:41:9E:D1:59:EF:C5:BC:A9:68:E2:26:90:F8:66 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Zuyat4plQZ7RWe_FvKlo4iaQ-GY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.153.0/24 Signature Algorithm: sha256WithRSAEncryption 86:bb:21:77:20:01:1d:3e:49:be:43:dc:c5:12:0e:aa:7b:f0: ca:5c:36:87:00:62:68:cc:d5:4f:80:1a:c3:67:22:6a:cd:80: 3c:bb:5f:f9:72:54:03:6f:6d:4c:ff:fe:a3:75:ff:8a:6e:89: 36:8d:14:96:f5:ae:71:6b:36:af:21:72:b8:9c:c1:fd:61:e5: 1c:9e:6e:44:c4:de:2c:60:cd:45:e0:3b:ee:3a:c5:a4:88:f7: ab:bf:b5:2f:46:d5:08:62:d0:7c:27:dd:f1:9a:3d:9d:c3:60: 15:b9:ab:50:45:52:04:6a:60:f6:82:ec:fc:94:e3:14:79:af: b8:5e:db:7d:b9:ca:f8:32:59:f6:80:67:14:64:b7:67:c2:90: a0:4d:c5:14:3d:bc:1b:51:b9:d9:f7:d4:48:48:7e:ce:a3:17: 71:b1:3d:98:f5:c3:95:9a:17:34:3a:62:dc:25:d9:67:1a:1d: f2:e5:b7:ab:b3:14:70:0b:73:d9:5c:99:6a:7a:71:cf:68:f5: 92:ce:2d:47:25:8a:9b:c7:68:6f:df:da:a8:6d:41:41:cd:23: e0:8c:c5:1f:10:75:94:90:68:21:f1:62:43:5d:56:03:12:4a: 8a:ed:89:75:44:ac:b2:3a:77:ea:10:eb:d7:42:90:fb:1c:6c: de:2b:f5:f5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEjEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY2RUM5QUI3OEE2NTQx OUVEMTU5RUZDNUJDQTk2OEUyMjY5MEY4NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdLKkHCohsWwz9/cGnyCC9POSG4pwhIFRW2MqybTKuwwYtiEb3 +HhPXYoqriReuZVHq7L/K4k7DvAzw9zwNC6VoKN0pMrG5nTvWlcOUvJYHbmTAm0+ /24rNM0q3PR7g+38l/Qa7v8MHARWtMRvJMO9LZBPiCpRJ8FDnEvfL5a78mHCP+8v yMpbTA+mOG3h+IK+YRXcb/XzK8X7mvbhplu+/wKamBDlWpZf7aBROzlX/DSCW9UX Qn4Yuw53eZdreQR93k+boIhqoVeB0j2dALX71aru4KO1Rl6DKOOZ5qFoTA5MmN4e IWlTIcPHF79eqbjSxbSLihnnTMoKmtOyDWkhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUZuyat4plQZ7RWe/FvKlo4iaQ+GYwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWnV5YXQ0cGxRWjdSV2Vf RnZLbG80aWFRLUdZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzGmTANBgkqhkiG9w0BAQsFAAOCAQEAhrshdyABHT5JvkPcxRIOqnvwylw2hwBi aMzVT4Aaw2cias2APLtf+XJUA29tTP/+o3X/im6JNo0UlvWucWs2ryFyuJzB/WHl HJ5uRMTeLGDNReA77jrFpIj3q7+1L0bVCGLQfCfd8Zo9ncNgFbmrUEVSBGpg9oLs /JTjFHmvuF7bfbnK+DJZ9oBnFGS3Z8KQoE3FFD28G1G52ffUSEh+zqMXcbE9mPXD lZoXNDpi3CXZZxod8uW3q7MUcAtz2VyZanpxz2j1ks4tRyWKm8dob9/aqG1BQc0j 4IzFHxB1lJBoIfFiQ11WAxJKiu2JdUSssjp36hDr10KQ+xxs3iv19Q== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:43 2024 by rpki-client on console-fra.rpki-client.org