$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bXetWT8-vGIO4glaX4QgmTXjg50.roa File: bXetWT8-vGIO4glaX4QgmTXjg50.roa (raw, json) Hash identifier: sOXUqqC47o22nrOCqfAwm0adfqBhy9E9gSw+5kO2twE= Subject key identifier: 6D:77:AD:59:3F:3E:BC:62:0E:E2:09:5A:5F:84:20:99:35:E3:83:9D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FA1 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bXetWT8-vGIO4glaX4QgmTXjg50.roa Signing time: Fri 01 Sep 2023 09:37:04 +0000 ROA not before: Fri 01 Sep 2023 09:37:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131611 IP address blocks: 124.9.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4001 (0xfa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6D77AD593F3EBC620EE2095A5F84209935E3839D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:60:40:0d:f9:45:ed:ab:19:e4:16:4e:ab:38: 46:0b:dc:2a:fc:e7:48:08:17:78:88:fc:e1:29:e2: f4:bd:8e:84:83:1f:39:5c:7c:06:92:e9:62:9e:94: ee:e9:f6:8e:b8:9b:41:e2:98:61:ef:bb:33:77:57: ca:f1:82:78:f1:fb:76:2d:2e:38:87:1d:eb:5a:75: 59:6f:9c:68:fc:af:7b:bf:fa:fb:b6:e4:79:24:25: 3f:ad:0f:24:14:0f:c6:26:77:02:ba:f6:be:06:81: f8:3a:e3:f3:33:87:21:68:20:d5:1f:a3:c6:ba:70: 38:cc:92:98:d0:18:49:0a:11:87:06:68:4a:20:14: d5:8d:cd:d1:19:a9:d9:17:7e:c0:9b:1d:47:9e:c5: c1:09:a2:92:1a:93:59:43:d7:dd:5f:a7:09:13:38: 09:60:a1:a0:39:2b:4a:fe:ae:a3:a3:84:30:63:12: 12:83:e4:1f:e3:13:96:dc:a8:7a:00:23:8d:14:4c: 64:35:69:97:40:c6:0d:50:2a:d3:bb:01:3a:91:ec: 10:66:60:41:ed:7c:88:2c:13:3a:cd:dd:b6:cf:bb: 0c:99:37:63:a7:10:ae:d3:22:78:32:2c:41:35:b4: c3:db:74:4d:bd:7b:43:ce:1c:70:a7:c0:f7:25:e3: cd:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:77:AD:59:3F:3E:BC:62:0E:E2:09:5A:5F:84:20:99:35:E3:83:9D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bXetWT8-vGIO4glaX4QgmTXjg50.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.9.64.0/19 Signature Algorithm: sha256WithRSAEncryption 86:02:c6:6b:5a:03:ed:ef:0d:5a:d3:85:6a:32:27:04:47:8f: 20:09:31:13:78:6f:f0:ee:23:44:bd:d4:6d:f8:17:54:a7:e4: 4e:eb:d9:89:e0:7e:6b:fc:39:49:0f:7c:3e:b7:b4:19:29:77: cf:98:89:28:08:d0:ba:82:75:d4:01:63:b5:28:f7:53:76:56: f8:88:e3:8f:40:20:f3:24:55:31:1c:3d:a8:1d:e0:31:80:df: 83:25:52:8f:82:f9:02:63:72:f4:b9:4c:17:9d:aa:9e:7d:4c: d4:f6:86:ca:12:70:f3:00:c1:3b:08:52:e5:e4:9f:c2:1d:1a: 05:9d:f5:c6:81:41:63:9e:52:e4:c3:f0:90:2f:ce:d9:ff:65: be:29:dc:e9:4c:4f:0f:1e:57:e3:fb:ed:a2:aa:8b:e2:f6:23: 6b:dc:f2:2d:30:ba:96:f7:70:6b:a6:70:6a:28:ef:e6:2e:3c: af:11:56:6e:16:11:d1:d2:39:09:75:a4:12:33:18:fd:54:f8: b2:fb:43:74:34:d7:2e:60:64:12:a9:ca:99:e5:dc:d8:39:59: 6b:92:9e:28:eb:53:58:8c:88:02:ea:09:cd:24:2e:41:1f:f1: cb:20:0a:df:62:e5:91:89:67:56:fb:74:f4:2c:b1:78:59:10: 53:75:54:35 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD6EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZENzdBRDU5M0YzRUJD NjIwRUUyMDk1QTVGODQyMDk5MzVFMzgzOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZYEAN+UXtqxnkFk6rOEYL3Cr850gIF3iI/OEp4vS9joSDHzlc fAaS6WKelO7p9o64m0HimGHvuzN3V8rxgnjx+3YtLjiHHetadVlvnGj8r3u/+vu2 5HkkJT+tDyQUD8YmdwK69r4Ggfg64/MzhyFoINUfo8a6cDjMkpjQGEkKEYcGaEog FNWNzdEZqdkXfsCbHUeexcEJopIak1lD191fpwkTOAlgoaA5K0r+rqOjhDBjEhKD 5B/jE5bcqHoAI40UTGQ1aZdAxg1QKtO7ATqR7BBmYEHtfIgsEzrN3bbPuwyZN2On EK7TIngyLEE1tMPbdE29e0POHHCnwPcl481RAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUbXetWT8+vGIO4glaX4QgmTXjg50wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYlhldFdUOC12R0lPNGds YVg0UWdtVFhqZzUwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BXwJQDANBgkqhkiG9w0BAQsFAAOCAQEAhgLGa1oD7e8NWtOFajInBEePIAkxE3hv 8O4jRL3UbfgXVKfkTuvZieB+a/w5SQ98Pre0GSl3z5iJKAjQuoJ11AFjtSj3U3ZW +Ijjj0Ag8yRVMRw9qB3gMYDfgyVSj4L5AmNy9LlMF52qnn1M1PaGyhJw8wDBOwhS 5eSfwh0aBZ31xoFBY55S5MPwkC/O2f9lvinc6UxPDx5X4/vtoqqL4vYja9zyLTC6 lvdwa6Zwaijv5i48rxFWbhYR0dI5CXWkEjMY/VT4svtDdDTXLmBkEqnKmeXc2DlZ a5KeKOtTWIyIAuoJzSQuQR/xyyAK32LlkYlnVvt09CyxeFkQU3VUNQ== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:42 2024 by rpki-client on console-fra.rpki-client.org