$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cPCrsk-gGaQdwFFxyRu7lJzGBGU.roa File: cPCrsk-gGaQdwFFxyRu7lJzGBGU.roa (raw, json) Hash identifier: T1UpCVD98s4OrcaIavnUwBN0PlMx6EhtMR1JVLtZiCg= Subject key identifier: 70:F0:AB:B2:4F:A0:19:A4:1D:C0:51:71:C9:1B:BB:94:9C:C6:04:65 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1223 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cPCrsk-gGaQdwFFxyRu7lJzGBGU.roa Signing time: Mon 26 Aug 2024 05:24:43 +0000 ROA not before: Mon 26 Aug 2024 05:24:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 203.211.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4643 (0x1223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=70F0ABB24FA019A41DC05171C91BBB949CC60465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f6:ec:9d:06:47:28:d6:d2:2e:8b:9a:09:01: 67:9f:c6:7d:7d:8c:8d:54:ab:b5:c6:3e:03:dd:95: a3:ec:c1:cb:10:b2:fa:1e:92:14:b0:04:d5:ca:1a: 81:45:9f:e5:e8:a6:ef:9c:55:39:7a:2a:bc:7d:66: 2b:10:d1:c1:2b:ec:6c:01:02:84:b8:d7:47:54:ca: 4e:e8:6a:86:cc:d3:1d:10:a2:7a:97:11:a0:85:79: 35:06:ae:57:37:22:fe:38:10:db:61:5f:cd:84:b9: 38:cd:5e:7b:9d:3c:65:72:42:fa:47:49:b6:26:76: ba:df:93:58:09:4a:69:f0:55:58:3f:f9:0e:aa:db: 95:8c:c4:bc:d0:24:80:28:ce:43:3e:6c:7f:aa:ae: f8:d0:e2:d8:06:a1:d2:02:0b:ee:f6:84:e1:a9:3e: b4:b7:c3:fe:63:5d:ad:a3:8e:98:64:94:b3:d3:a1: 9c:c3:85:f6:bd:f0:91:43:77:71:05:a3:45:c8:3b: f9:b5:90:fd:0b:ba:5f:fa:30:39:11:28:bb:35:be: dd:dc:76:50:13:6b:7a:5c:44:40:99:32:be:d3:6b: e0:9d:60:ef:fb:57:a8:44:29:3a:ee:28:8e:95:17: 63:c4:a8:95:6f:a9:d2:80:6f:3c:9c:39:d1:b0:68: 9a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F0:AB:B2:4F:A0:19:A4:1D:C0:51:71:C9:1B:BB:94:9C:C6:04:65 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cPCrsk-gGaQdwFFxyRu7lJzGBGU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.211.0.0/19 Signature Algorithm: sha256WithRSAEncryption 28:50:cd:ab:aa:dd:e8:7a:90:3b:2f:a9:20:17:5c:9b:53:14: 7d:ed:62:68:e8:fa:a1:85:7d:71:0d:66:2a:b7:f3:00:c2:b3: 7b:aa:9c:ad:5d:8f:4d:ad:b2:46:3b:e4:0a:8f:c9:13:5c:34: bc:cc:c7:1a:e7:75:59:63:52:a1:d9:ca:17:ed:5c:37:11:fd: a0:aa:27:1d:04:45:05:09:8a:f1:52:7e:69:01:8a:e1:8e:94: dd:6b:3f:44:c1:27:f8:be:0b:f1:58:5d:a8:9d:6f:7a:0b:ea: d2:49:8a:7e:78:f6:c6:fe:35:69:15:00:f4:d6:25:74:e4:a5: 15:76:4d:c2:5f:02:44:75:3f:8e:cf:cf:8a:be:6e:90:48:91: 54:83:9b:5a:28:15:a1:99:4f:b6:7a:15:33:4e:20:f1:4d:95: 33:f7:65:2c:a1:d1:5d:10:8b:68:d7:9c:2d:fb:c8:fc:a7:20: ab:40:fb:34:d6:70:fc:76:2a:ce:f7:49:c9:df:f3:e4:82:23: 41:08:7e:37:a0:e1:60:69:80:fa:5b:ee:d7:cf:72:1f:46:89: 98:e8:86:06:49:a3:df:8e:c7:91:bc:a8:28:31:a2:29:ac:ed: 33:24:d2:c7:bd:6b:d7:09:02:77:a5:9d:c3:31:8c:02:5b:21: 56:ec:29:1f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEiMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcwRjBBQkIyNEZBMDE5 QTQxREMwNTE3MUM5MUJCQjk0OUNDNjA0NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ9uydBkco1tIui5oJAWefxn19jI1Uq7XGPgPdlaPswcsQsvoe khSwBNXKGoFFn+Xopu+cVTl6Krx9ZisQ0cEr7GwBAoS410dUyk7oaobM0x0QonqX EaCFeTUGrlc3Iv44ENthX82EuTjNXnudPGVyQvpHSbYmdrrfk1gJSmnwVVg/+Q6q 25WMxLzQJIAozkM+bH+qrvjQ4tgGodICC+72hOGpPrS3w/5jXa2jjphklLPToZzD hfa98JFDd3EFo0XIO/m1kP0Lul/6MDkRKLs1vt3cdlATa3pcRECZMr7Ta+CdYO/7 V6hEKTruKI6VF2PEqJVvqdKAbzycOdGwaJqRAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUcPCrsk+gGaQdwFFxyRu7lJzGBGUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvY1BDcnNrLWdHYVFkd0ZG eHlSdTdsSnpHQkdVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BcvTADANBgkqhkiG9w0BAQsFAAOCAQEAKFDNq6rd6HqQOy+pIBdcm1MUfe1iaOj6 oYV9cQ1mKrfzAMKze6qcrV2PTa2yRjvkCo/JE1w0vMzHGud1WWNSodnKF+1cNxH9 oKonHQRFBQmK8VJ+aQGK4Y6U3Ws/RMEn+L4L8VhdqJ1vegvq0kmKfnj2xv41aRUA 9NYldOSlFXZNwl8CRHU/js/Pir5ukEiRVIObWigVoZlPtnoVM04g8U2VM/dlLKHR XRCLaNecLfvI/Kcgq0D7NNZw/HYqzvdJyd/z5IIjQQh+N6DhYGmA+lvu189yH0aJ mOiGBkmj347HkbyoKDGiKaztMyTSx71r1wkCd6WdwzGMAlshVuwpHw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org