$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/d2VPSD8GwVsa2xXXj9gdCbDj-ec.roa File: d2VPSD8GwVsa2xXXj9gdCbDj-ec.roa (raw, json) Hash identifier: dxS+LtxTeWhF+5SisSNaSHln3UZ10KUBIHpoFlG+kO0= Subject key identifier: 77:65:4F:48:3F:06:C1:5B:1A:DB:15:D7:8F:D8:1D:09:B0:E3:F9:E7 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F8D Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/d2VPSD8GwVsa2xXXj9gdCbDj-ec.roa Signing time: Fri 01 Sep 2023 09:37:00 +0000 ROA not before: Fri 01 Sep 2023 09:37:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 202.132.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3981 (0xf8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:00 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=77654F483F06C15B1ADB15D78FD81D09B0E3F9E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:19:19:74:35:93:b1:14:41:0f:6b:35:c3:f6: be:aa:f2:1d:fb:28:19:92:e8:09:6e:ab:50:d0:ad: 38:31:f5:42:38:e6:ea:49:09:cb:5c:a0:c1:f5:67: 2a:31:96:37:d9:bc:88:6d:e7:06:27:9b:12:74:e0: 25:b0:b3:80:fd:8b:86:81:1a:a3:da:bd:f6:70:fa: 68:8f:27:a6:f4:67:99:be:61:1f:43:42:86:4d:9a: d6:ce:c8:44:4f:07:ad:27:47:72:07:14:a8:41:48: 2c:37:39:3c:8a:8c:20:d3:4c:ea:36:f9:84:db:1d: 1a:3b:42:cd:e5:43:0c:88:42:3c:b9:7a:21:b5:67: 7a:44:29:69:61:89:68:75:cf:d0:ea:48:a0:44:b7: 5d:db:b2:6d:8c:aa:f7:89:9f:bc:a3:86:57:04:67: 5b:bd:e8:02:5c:a2:d5:68:15:cc:bb:d9:a6:51:c4: 21:bd:65:4f:e4:6d:66:bd:03:a4:63:64:0e:0d:ca: 8c:df:92:3e:bd:e2:2b:d5:46:a8:87:08:9c:82:3e: 5a:22:1e:f4:9d:70:26:dc:a8:0b:ad:a1:43:52:23: 19:88:9e:13:10:3f:52:d6:54:d0:4f:7d:81:dd:b6: 29:f1:a8:54:04:09:d1:01:e3:03:c4:b3:ea:f4:d7: c0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:65:4F:48:3F:06:C1:5B:1A:DB:15:D7:8F:D8:1D:09:B0:E3:F9:E7 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/d2VPSD8GwVsa2xXXj9gdCbDj-ec.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.132.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3b:e9:ac:3c:77:b2:55:e6:fd:67:7b:1c:11:79:ae:52:46:64: 41:61:fc:73:4d:e2:70:d6:a3:98:f8:12:b6:82:7f:a1:c7:d3: 1d:56:b2:9b:32:80:59:a0:9e:66:37:e0:6e:5c:dc:a9:49:e0: 2f:b1:59:ff:83:8b:9f:49:07:d0:fa:e3:3e:f6:c7:fc:5e:36: a6:cd:9e:4b:a8:10:23:75:3c:e3:5a:3e:02:2f:1c:6c:d7:34: 79:bd:2b:db:a4:a0:77:e8:9d:2b:69:ca:d2:ff:8d:37:9a:80: fc:01:7b:07:89:c8:f3:ef:a2:f8:27:37:d9:2f:53:c4:4f:10: b0:8f:02:0b:70:68:1c:ac:da:5c:8e:c1:47:a0:40:c9:00:f1: a7:b7:c7:a6:b9:57:71:d3:4d:57:18:58:b8:68:d1:ca:e9:40: ac:60:df:e7:07:e4:4e:d6:f2:6d:c9:35:d5:3e:e2:0d:ad:b0: 3a:98:07:c2:c0:14:23:d6:04:b5:49:57:65:fc:c8:f8:ea:ef: 1d:2a:d5:95:49:bf:10:09:9e:d2:74:e0:2d:80:87:e9:ce:11: 9f:be:cb:e3:96:a2:7b:1d:18:18:3c:6e:db:a8:f5:10:f9:18: cd:1a:6e:3a:6a:84:e5:1d:c7:45:2d:8f:56:d4:ad:e6:f5:08: 17:56:7b:27 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICD40wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc3NjU0RjQ4M0YwNkMx NUIxQURCMTVENzhGRDgxRDA5QjBFM0Y5RTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqGRl0NZOxFEEPazXD9r6q8h37KBmS6Aluq1DQrTgx9UI45upJ CctcoMH1ZyoxljfZvIht5wYnmxJ04CWws4D9i4aBGqPavfZw+miPJ6b0Z5m+YR9D QoZNmtbOyERPB60nR3IHFKhBSCw3OTyKjCDTTOo2+YTbHRo7Qs3lQwyIQjy5eiG1 Z3pEKWlhiWh1z9DqSKBEt13bsm2MqveJn7yjhlcEZ1u96AJcotVoFcy72aZRxCG9 ZU/kbWa9A6RjZA4Nyozfkj694ivVRqiHCJyCPloiHvSdcCbcqAutoUNSIxmInhMQ P1LWVNBPfYHdtinxqFQECdEB4wPEs+r018ArAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUd2VPSD8GwVsa2xXXj9gdCbDj+ecwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZDJWUFNEOEd3VnNhMnhY WGo5Z2RDYkRqLWVjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AMqEMA0GCSqGSIb3DQEBCwUAA4IBAQA76aw8d7JV5v1nexwRea5SRmRBYfxzTeJw 1qOY+BK2gn+hx9MdVrKbMoBZoJ5mN+BuXNypSeAvsVn/g4ufSQfQ+uM+9sf8Xjam zZ5LqBAjdTzjWj4CLxxs1zR5vSvbpKB36J0racrS/403moD8AXsHicjz76L4JzfZ L1PETxCwjwILcGgcrNpcjsFHoEDJAPGnt8emuVdx001XGFi4aNHK6UCsYN/nB+RO 1vJtyTXVPuINrbA6mAfCwBQj1gS1SVdl/Mj46u8dKtWVSb8QCZ7SdOAtgIfpzhGf vsvjlqJ7HRgYPG7bqPUQ+RjNGm46aoTlHcdFLY9W1K3m9QgXVnsn -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org