$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aqUiJgiENm89vnP2wVRp9brQCzA.roa File: aqUiJgiENm89vnP2wVRp9brQCzA.roa (raw, json) Hash identifier: byUbAczFBUx+d8Zp/pck5FWEV0N3BXFUyq3Sx5K5+wo= Subject key identifier: 6A:A5:22:26:08:84:36:6F:3D:BE:73:F6:C1:54:69:F5:BA:D0:0B:30 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 100A Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aqUiJgiENm89vnP2wVRp9brQCzA.roa Signing time: Fri 01 Sep 2023 09:37:40 +0000 ROA not before: Fri 01 Sep 2023 09:37:40 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131597 IP address blocks: 219.86.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4106 (0x100a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:40 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6AA522260884366F3DBE73F6C15469F5BAD00B30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2d:df:2b:40:ab:10:8b:a1:7f:34:cc:f7:9c: 43:cf:f6:46:a0:ce:2c:fa:f8:e1:c6:0f:41:21:a8: 50:b5:77:6c:16:70:b6:8e:b5:35:10:f2:eb:1b:a5: 10:99:62:0c:25:8e:02:ef:65:7c:ab:1e:13:e0:ef: a0:7c:7e:ba:ad:cc:bf:be:6e:92:a7:aa:10:b0:42: a0:3f:76:3b:c8:7a:93:32:8f:42:1f:f6:2d:2b:5a: ae:da:72:68:e2:d4:c3:a2:3d:38:f1:7c:1f:9b:d5: 83:59:c1:33:d3:34:b7:c3:0a:4e:06:70:c7:88:a9: ee:09:e6:2b:0d:2d:e7:07:9a:44:a0:6d:0b:25:40: b6:61:da:cc:ac:b2:46:62:5e:1d:82:51:a5:3b:72: dd:19:9b:9a:dd:c7:18:f2:a2:2d:c9:4d:31:ca:b0: 37:76:26:33:08:c5:aa:69:0e:a7:6a:37:ef:f7:31: b3:47:a6:b8:8c:05:20:ad:d7:17:5e:d3:02:85:12: db:48:f0:69:d2:c1:da:2c:1b:3b:8a:95:01:c8:91: e7:2d:0f:20:55:c3:23:21:5b:9a:2e:5c:a3:b8:89: a5:c4:12:bd:1f:b1:c5:79:26:c2:bd:c5:6a:52:45: 98:5c:93:c5:be:33:2b:3c:44:d9:0a:c0:51:ae:a2: f6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A5:22:26:08:84:36:6F:3D:BE:73:F6:C1:54:69:F5:BA:D0:0B:30 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aqUiJgiENm89vnP2wVRp9brQCzA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.86.56.0/21 Signature Algorithm: sha256WithRSAEncryption 11:a2:e1:25:0e:2b:ed:b1:da:09:9f:fd:f4:f9:e5:ad:a9:81: f2:5f:3a:22:40:c3:bf:23:e2:64:21:6e:01:14:e2:f2:81:cd: c0:3c:e7:15:96:3c:b1:94:a0:ff:27:f3:6d:43:6b:c6:35:c5: f5:22:2c:35:a1:a0:80:2b:37:c8:3b:e1:2a:b5:d8:ad:ac:ad: 3a:18:c3:68:e3:72:f8:1b:c1:07:a1:1d:5f:b3:25:c1:b5:b3: 5b:09:07:f3:0a:c3:aa:b4:6e:d0:94:f1:4b:dc:95:5b:93:db: 08:fb:51:e9:92:dc:f6:1c:72:9e:fd:08:49:c3:b5:e5:3b:3d: 18:50:99:1f:dd:94:e4:aa:62:f7:06:99:ae:64:01:e5:4f:32: a0:bd:fa:4d:be:45:ef:c9:94:22:8c:ca:a9:a7:81:fc:ed:42: b4:a9:34:ac:e1:43:72:44:b2:19:39:3e:08:99:fd:77:51:b2: ec:ea:4c:c0:90:78:42:60:36:1d:bc:82:17:03:5b:d4:25:73: 4e:4f:d6:de:fe:a8:e5:c4:3c:1f:6b:f4:11:d0:0f:b1:44:66: 1b:36:bb:ae:1b:f5:d7:4f:63:3a:58:48:43:0b:1e:d0:5b:b9: c4:ee:e7:f9:a5:f7:78:aa:0f:79:7b:2c:f5:bf:fc:89:9d:00: aa:b0:7b:3b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEAowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZBQTUyMjI2MDg4NDM2 NkYzREJFNzNGNkMxNTQ2OUY1QkFEMDBCMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbLd8rQKsQi6F/NMz3nEPP9kagziz6+OHGD0EhqFC1d2wWcLaO tTUQ8usbpRCZYgwljgLvZXyrHhPg76B8frqtzL++bpKnqhCwQqA/djvIepMyj0If 9i0rWq7acmji1MOiPTjxfB+b1YNZwTPTNLfDCk4GcMeIqe4J5isNLecHmkSgbQsl QLZh2sysskZiXh2CUaU7ct0Zm5rdxxjyoi3JTTHKsDd2JjMIxappDqdqN+/3MbNH priMBSCt1xde0wKFEttI8GnSwdosGzuKlQHIkectDyBVwyMhW5ouXKO4iaXEEr0f scV5JsK9xWpSRZhck8W+Mys8RNkKwFGuovY3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUaqUiJgiENm89vnP2wVRp9brQCzAwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYXFVaUpnaUVObTg5dm5Q MndWUnA5YnJRQ3pBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME A9tWODANBgkqhkiG9w0BAQsFAAOCAQEAEaLhJQ4r7bHaCZ/99PnlramB8l86IkDD vyPiZCFuARTi8oHNwDznFZY8sZSg/yfzbUNrxjXF9SIsNaGggCs3yDvhKrXYrayt OhjDaONy+BvBB6EdX7MlwbWzWwkH8wrDqrRu0JTxS9yVW5PbCPtR6ZLc9hxynv0I ScO15Ts9GFCZH92U5Kpi9waZrmQB5U8yoL36Tb5F78mUIozKqaeB/O1CtKk0rOFD ckSyGTk+CJn9d1Gy7OpMwJB4QmA2HbyCFwNb1CVzTk/W3v6o5cQ8H2v0EdAPsURm Gza7rhv1109jOlhIQwse0Fu5xO7n+aX3eKoPeXss9b/8iZ0AqrB7Ow== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org