$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aPxVZ-HTKPuSMEkPfM5TFW9vRpM.roa File: aPxVZ-HTKPuSMEkPfM5TFW9vRpM.roa (raw, json) Hash identifier: 85QUZnXaJkCtE9QtHrRijMIoIF92/kHT6DLvvMyclFE= Subject key identifier: 68:FC:55:67:E1:D3:28:FB:92:30:49:0F:7C:CE:53:15:6F:6F:46:93 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1008 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aPxVZ-HTKPuSMEkPfM5TFW9vRpM.roa Signing time: Fri 01 Sep 2023 09:37:39 +0000 ROA not before: Fri 01 Sep 2023 09:37:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 60.199.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4104 (0x1008) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=68FC5567E1D328FB9230490F7CCE53156F6F4693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:43:eb:0b:4c:d7:4c:86:ab:be:27:b8:a8:99: 8b:23:4b:e6:72:ee:d2:9d:70:3c:63:fa:3c:54:72: 59:94:05:c0:0a:e5:10:09:c5:4d:0b:89:9f:18:b2: 47:08:ad:1d:af:51:7c:f2:38:d9:07:65:3d:4c:2c: 81:d0:3f:e0:3c:7c:a0:4d:c2:7e:08:43:59:01:ab: 20:aa:a8:28:26:16:1e:fb:42:87:b8:61:9c:df:d0: 1a:2b:33:99:e7:fd:a5:2f:ec:38:37:ad:cc:0f:48: 47:70:9a:64:9e:0c:56:62:41:14:a2:01:a0:39:a7: 0c:0e:8d:58:37:bc:a8:44:cf:1c:a1:fc:4a:75:8a: 9b:f6:d3:8a:e6:6f:b0:fa:33:a6:1f:d2:fe:e9:02: 32:13:58:fa:df:36:b6:e3:4f:1c:3d:bc:43:39:e0: 11:67:e3:2a:45:ee:05:d1:74:49:3a:2f:ea:d3:ba: 02:ec:50:32:a4:04:c9:81:a1:72:e7:d0:59:09:64: 41:60:f1:ec:b6:89:51:f1:5a:98:37:20:08:1f:d9: be:52:2b:88:61:78:51:72:e1:df:d1:e4:ec:b7:cc: e9:eb:db:0f:0f:86:bf:bb:0e:a0:ef:ea:4e:fe:fa: b8:3b:15:e6:cd:ea:44:2e:ea:32:92:2d:2b:57:d6: 10:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FC:55:67:E1:D3:28:FB:92:30:49:0F:7C:CE:53:15:6F:6F:46:93 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aPxVZ-HTKPuSMEkPfM5TFW9vRpM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:b0:a7:50:84:c7:97:8c:68:eb:73:b1:e8:b6:5a:bc:bb:b6: ae:09:50:c4:ee:f9:2e:0d:b9:23:62:6f:13:12:4f:48:bc:a7: 59:03:bd:ef:75:44:d0:36:c7:9f:f9:12:1e:5e:d9:a4:fd:62: 2f:e5:bb:e0:c5:3a:eb:10:fb:fe:48:31:00:4c:f9:20:19:94: 7f:fe:c3:cc:19:ae:0e:df:37:5b:44:9c:10:e0:28:52:f0:1c: b4:ab:17:9f:57:c2:7f:7e:a8:2b:7a:03:c9:b3:aa:a2:32:63: 45:5b:bf:50:ba:f0:53:78:3a:51:c0:82:00:93:c3:dd:41:5b: f8:03:a6:3a:e5:d6:6c:ac:77:f8:d7:33:dd:1a:01:a8:ab:2e: 38:92:ce:17:91:ab:dc:2e:da:05:d2:7f:fe:71:51:e9:1a:dd: c1:4b:14:8f:a6:96:e6:83:62:83:ed:fb:a3:b3:f9:2e:95:a0: c4:c7:32:1a:80:7e:1c:8a:b9:5c:9c:5d:0a:ee:48:0b:1c:72: f2:e4:c9:bf:ca:8a:e9:46:a2:27:f6:be:8f:53:91:6e:d2:70: 83:49:02:f7:1c:b1:2d:d9:38:93:30:6f:36:76:5a:56:19:e7: 74:43:b7:e1:77:9b:27:0d:84:5a:4b:53:0a:af:d5:c5:d0:82: f9:71:d9:82 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEAgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY4RkM1NTY3RTFEMzI4 RkI5MjMwNDkwRjdDQ0U1MzE1NkY2RjQ2OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxQ+sLTNdMhqu+J7iomYsjS+Zy7tKdcDxj+jxUclmUBcAK5RAJ xU0LiZ8YskcIrR2vUXzyONkHZT1MLIHQP+A8fKBNwn4IQ1kBqyCqqCgmFh77Qoe4 YZzf0BorM5nn/aUv7Dg3rcwPSEdwmmSeDFZiQRSiAaA5pwwOjVg3vKhEzxyh/Ep1 ipv204rmb7D6M6Yf0v7pAjITWPrfNrbjTxw9vEM54BFn4ypF7gXRdEk6L+rTugLs UDKkBMmBoXLn0FkJZEFg8ey2iVHxWpg3IAgf2b5SK4hheFFy4d/R5Oy3zOnr2w8P hr+7DqDv6k7++rg7FebN6kQu6jKSLStX1hDpAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUaPxVZ+HTKPuSMEkPfM5TFW9vRpMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYVB4VlotSFRLUHVTTUVr UGZNNVRGVzl2UnBNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD ADzHMA0GCSqGSIb3DQEBCwUAA4IBAQBDsKdQhMeXjGjrc7Hotlq8u7auCVDE7vku DbkjYm8TEk9IvKdZA73vdUTQNsef+RIeXtmk/WIv5bvgxTrrEPv+SDEATPkgGZR/ /sPMGa4O3zdbRJwQ4ChS8By0qxefV8J/fqgregPJs6qiMmNFW79QuvBTeDpRwIIA k8PdQVv4A6Y65dZsrHf41zPdGgGoqy44ks4XkavcLtoF0n/+cVHpGt3BSxSPppbm g2KD7fujs/kulaDExzIagH4cirlcnF0K7kgLHHLy5Mm/yorpRqIn9r6PU5Fu0nCD SQL3HLEt2TiTMG82dlpWGed0Q7fhd5snDYRaS1MKr9XF0IL5cdmC -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:02 2024 by rpki-client on console-fra.rpki-client.org