$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b2FVlxhlnX4IHTghHzRVcSUnuxQ.roa File: b2FVlxhlnX4IHTghHzRVcSUnuxQ.roa (raw, json) Hash identifier: ZVoe/tg61f1B46cKJDVRbWXkJdn+gCy62+DvbY2/5DE= Subject key identifier: 6F:61:55:97:18:65:9D:7E:08:1D:38:21:1F:34:55:71:25:27:BB:14 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11B8 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b2FVlxhlnX4IHTghHzRVcSUnuxQ.roa Signing time: Mon 26 Aug 2024 05:24:18 +0000 ROA not before: Mon 26 Aug 2024 05:24:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.67.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4536 (0x11b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6F61559718659D7E081D38211F3455712527BB14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3f:a4:f9:80:04:b5:2a:15:ba:78:c8:fd:4c: a9:32:a0:f9:69:5c:32:e1:53:05:77:a5:ec:71:7b: 9b:3e:a1:4d:1c:fd:77:3f:18:e0:ba:26:e8:6a:97: e2:29:62:05:ea:b1:07:59:c3:65:a6:f0:4e:ee:cb: 56:bb:97:86:8d:ae:b8:fc:8e:ff:b0:58:c0:c5:53: c8:3f:98:24:e4:2b:e2:fa:05:1c:d2:ea:b6:fb:77: cd:f4:18:13:c9:42:68:8d:82:4f:63:22:62:18:99: 5f:5c:62:37:c4:c4:c2:c5:17:ae:25:5b:f1:8e:82: b0:a8:83:95:90:68:29:a2:19:3d:43:4f:a4:52:f6: 94:50:a5:e9:04:da:08:6c:f2:c0:eb:7d:7f:cd:0d: 42:51:cc:a6:fe:46:f9:12:d4:cf:e8:87:b2:b6:b6: a2:f2:1b:c6:95:ca:f5:f4:1f:5a:2f:48:77:5a:95: 62:68:7d:ba:bb:4e:67:4c:a8:df:7c:88:04:66:12: de:44:20:e1:01:f3:1e:42:19:89:84:44:16:cd:52: 90:62:90:c3:dd:8a:da:97:88:09:82:4a:52:6a:62: 7e:0a:cf:a1:d3:a2:44:68:b6:2d:29:76:09:7a:cf: ed:32:b7:ac:89:4b:7d:ec:ef:94:23:0c:26:17:f0: 3b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:61:55:97:18:65:9D:7E:08:1D:38:21:1F:34:55:71:25:27:BB:14 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b2FVlxhlnX4IHTghHzRVcSUnuxQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.160.0/19 Signature Algorithm: sha256WithRSAEncryption 7c:a8:9c:07:40:69:97:25:da:14:e9:a7:94:ab:c5:ce:6c:9d: db:03:d3:88:cd:11:e1:34:79:30:a4:68:01:19:61:10:d5:4d: b9:a2:9e:9c:41:29:cb:83:18:30:5f:78:4a:8e:0b:f7:94:b1: 29:3e:27:1a:2c:8b:0b:62:b2:69:02:cb:25:ce:12:be:37:d0: 39:2c:5d:52:e5:52:28:76:96:4c:4e:cd:36:88:87:88:45:de: 33:8b:15:c1:05:95:b8:71:fb:1a:ac:c1:3b:f1:3e:ed:5c:eb: 6a:3e:9d:4c:58:bb:3f:48:48:4b:80:32:24:52:e5:44:93:c4: 5f:d1:89:c9:68:47:fb:ff:57:86:c9:a2:44:96:01:88:8d:d2: fe:90:21:df:33:14:b3:af:50:da:12:ac:c5:11:ee:4e:4c:53: ff:02:65:28:7d:3b:58:37:9b:38:81:d9:fd:76:47:c0:e3:e3: 98:aa:2b:12:ab:05:e5:6d:d0:50:83:1f:61:89:ad:e0:b0:d7: af:01:fe:8c:e3:73:45:3e:78:79:ec:9c:1b:61:e6:9d:43:ad: b9:4c:02:58:69:16:1f:2a:aa:29:0b:8b:4c:40:05:d3:48:6c: 83:99:fc:32:72:96:57:b1:fe:24:8a:34:67:9c:45:16:b0:8e: ab:99:d2:2e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEbgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZGNjE1NTk3MTg2NTlE N0UwODFEMzgyMTFGMzQ1NTcxMjUyN0JCMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLP6T5gAS1KhW6eMj9TKkyoPlpXDLhUwV3pexxe5s+oU0c/Xc/ GOC6Juhql+IpYgXqsQdZw2Wm8E7uy1a7l4aNrrj8jv+wWMDFU8g/mCTkK+L6BRzS 6rb7d830GBPJQmiNgk9jImIYmV9cYjfExMLFF64lW/GOgrCog5WQaCmiGT1DT6RS 9pRQpekE2ghs8sDrfX/NDUJRzKb+RvkS1M/oh7K2tqLyG8aVyvX0H1ovSHdalWJo fbq7TmdMqN98iARmEt5EIOEB8x5CGYmERBbNUpBikMPditqXiAmCSlJqYn4Kz6HT okRoti0pdgl6z+0yt6yJS33s75QjDCYX8DuvAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUb2FVlxhlnX4IHTghHzRVcSUnuxQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYjJGVmx4aGxuWDRJSFRn aEh6UlZjU1VudXhRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdJDoDANBgkqhkiG9w0BAQsFAAOCAQEAfKicB0BplyXaFOmnlKvFzmyd2wPTiM0R 4TR5MKRoARlhENVNuaKenEEpy4MYMF94So4L95SxKT4nGiyLC2KyaQLLJc4SvjfQ OSxdUuVSKHaWTE7NNoiHiEXeM4sVwQWVuHH7GqzBO/E+7Vzraj6dTFi7P0hIS4Ay JFLlRJPEX9GJyWhH+/9XhsmiRJYBiI3S/pAh3zMUs69Q2hKsxRHuTkxT/wJlKH07 WDebOIHZ/XZHwOPjmKorEqsF5W3QUIMfYYmt4LDXrwH+jONzRT54eeycG2HmnUOt uUwCWGkWHyqqKQuLTEAF00hsg5n8MnKWV7H+JIo0Z5xFFrCOq5nSLg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org