$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aXEnRE7qfbE5hw_d8eM-yNqtvWc.roa File: aXEnRE7qfbE5hw_d8eM-yNqtvWc.roa (raw, json) Hash identifier: 0RqRRQh07QDdNJtWVrKKtoOge033ySOXSiDk3E7VnSU= Subject key identifier: 69:71:27:44:4E:EA:7D:B1:39:87:0F:DD:F1:E3:3E:C8:DA:AD:BD:67 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11C3 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aXEnRE7qfbE5hw_d8eM-yNqtvWc.roa Signing time: Mon 26 Aug 2024 05:24:21 +0000 ROA not before: Mon 26 Aug 2024 05:24:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 203.105.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4547 (0x11c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=697127444EEA7DB139870FDDF1E33EC8DAADBD67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:16:be:e9:f7:a5:0d:29:d7:bb:04:15:a8:73: 55:bf:89:24:3f:b8:71:98:a9:b6:d2:96:37:6b:c5: 5e:94:96:6a:69:0e:79:4b:38:90:e7:74:28:d2:eb: 02:db:6a:c0:f9:86:c5:bc:aa:7d:4f:d8:68:a7:5f: 03:c9:c8:18:22:e8:3f:9e:02:7f:11:d0:23:c2:2a: 86:21:c9:7f:27:99:41:7f:07:f5:c3:6d:ed:3d:fa: 72:91:05:1b:58:76:9b:b0:19:d4:f6:9b:bf:59:53: c9:0d:7e:1b:bb:62:8b:14:e5:92:3c:17:2f:a5:31: 72:fa:8d:ec:33:d8:5e:51:84:4b:6e:29:91:e3:cd: 7a:1d:4f:0f:b3:e3:f0:e4:56:89:fa:82:53:fd:e4: 99:be:3c:02:c4:8d:99:d2:93:e8:d2:a6:7a:37:97: 00:e8:30:00:80:21:7b:4a:ab:b1:97:d9:40:af:1b: 31:6d:bb:a7:df:ef:0a:93:a5:23:7f:22:e9:34:ef: f2:b0:43:5e:d9:08:59:56:89:31:ec:ab:62:e9:9b: ea:c3:c5:9c:29:d8:b5:ff:4a:e4:e1:76:ad:c9:25: 16:b1:be:f1:85:3a:1d:d8:50:bd:1f:35:b1:14:f2: 3e:42:88:13:d4:e2:62:0b:68:75:29:ef:bb:08:26: 76:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:71:27:44:4E:EA:7D:B1:39:87:0F:DD:F1:E3:3E:C8:DA:AD:BD:67 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aXEnRE7qfbE5hw_d8eM-yNqtvWc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.105.224.0/24 Signature Algorithm: sha256WithRSAEncryption 71:8b:af:c3:75:65:cf:0b:c8:55:de:3a:17:0c:e3:ce:05:4b: ae:f8:45:03:48:db:79:61:3f:66:2f:fe:b3:5c:a1:54:7d:09: d7:4f:41:95:e3:3e:5d:4a:de:38:f5:e7:b8:b5:02:5b:4c:92: 3a:f0:2e:5d:3e:92:30:5d:b3:f3:3a:8c:a2:e0:53:61:6c:35: 44:17:76:ed:8d:95:c8:12:6a:a7:ed:bb:8d:94:9b:91:8c:38: 89:3b:03:c1:65:4d:bc:9e:60:af:a0:43:dd:0b:d5:5a:40:78: 51:9f:4f:f6:3b:f8:7c:58:8c:83:25:58:c3:da:43:2f:7c:f4: b4:c7:dd:9d:f1:69:e7:de:f9:ef:63:a5:7f:ec:df:ba:c0:41: f4:de:41:68:ec:69:2f:b7:38:98:94:c6:d6:84:86:37:a8:28: 50:d0:0e:b4:ad:a7:4e:a8:b7:02:a3:7a:5a:21:fd:04:ba:35: 3d:e6:9f:97:3a:50:a5:96:c2:a4:72:8a:ce:d1:2b:7e:0e:eb: 07:2f:b6:d4:bf:55:86:b2:68:ba:66:de:67:b8:21:eb:1d:e7: 5b:e2:5d:26:30:9c:95:cc:f3:ac:8c:a4:4e:f4:19:d4:fb:37: 78:57:8a:c8:38:a3:84:76:e4:d7:d3:6f:a8:76:4d:d3:48:22: 56:70:18:da -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEcMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY5NzEyNzQ0NEVFQTdE QjEzOTg3MEZEREYxRTMzRUM4REFBREJENjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBFr7p96UNKde7BBWoc1W/iSQ/uHGYqbbSljdrxV6UlmppDnlL OJDndCjS6wLbasD5hsW8qn1P2GinXwPJyBgi6D+eAn8R0CPCKoYhyX8nmUF/B/XD be09+nKRBRtYdpuwGdT2m79ZU8kNfhu7YosU5ZI8Fy+lMXL6jewz2F5RhEtuKZHj zXodTw+z4/DkVon6glP95Jm+PALEjZnSk+jSpno3lwDoMACAIXtKq7GX2UCvGzFt u6ff7wqTpSN/Iuk07/KwQ17ZCFlWiTHsq2Lpm+rDxZwp2LX/SuThdq3JJRaxvvGF Oh3YUL0fNbEU8j5CiBPU4mILaHUp77sIJnYVAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUaXEnRE7qfbE5hw/d8eM+yNqtvWcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYVhFblJFN3FmYkU1aHdf ZDhlTS15TnF0dldjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AMtp4DANBgkqhkiG9w0BAQsFAAOCAQEAcYuvw3VlzwvIVd46FwzjzgVLrvhFA0jb eWE/Zi/+s1yhVH0J109BleM+XUreOPXnuLUCW0ySOvAuXT6SMF2z8zqMouBTYWw1 RBd27Y2VyBJqp+27jZSbkYw4iTsDwWVNvJ5gr6BD3QvVWkB4UZ9P9jv4fFiMgyVY w9pDL3z0tMfdnfFp597572Olf+zfusBB9N5BaOxpL7c4mJTG1oSGN6goUNAOtK2n Tqi3AqN6WiH9BLo1PeaflzpQpZbCpHKKztErfg7rBy+21L9VhrJoumbeZ7gh6x3n W+JdJjCclczzrIykTvQZ1Ps3eFeKyDijhHbk19NvqHZN00giVnAY2g== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org