$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/dka8nfiuB_SGc-iLKfP0bz-FbSk.roa File: dka8nfiuB_SGc-iLKfP0bz-FbSk.roa (raw, json) Hash identifier: k2V6ITH+8i+KYfnkqcGqlU6X2ibdtsWPyjiVuAD4wPc= Subject key identifier: 76:46:BC:9D:F8:AE:07:F4:86:73:E8:8B:29:F3:F4:6F:3F:85:6D:29 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 122E Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/dka8nfiuB_SGc-iLKfP0bz-FbSk.roa Signing time: Mon 26 Aug 2024 05:24:46 +0000 ROA not before: Mon 26 Aug 2024 05:24:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 13335 IP address blocks: 210.17.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4654 (0x122e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7646BC9DF8AE07F48673E88B29F3F46F3F856D29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2b:e4:5c:9f:41:e4:2a:d8:9e:eb:2d:7b:30: d6:8c:72:e9:88:08:ed:93:f5:df:3d:86:6a:e2:a4: 09:31:3e:9c:22:21:28:98:a9:ba:80:f6:b1:ac:66: 64:ae:7e:2c:d7:ec:1e:fa:81:5e:5e:c1:3e:2c:b3: aa:06:05:48:5c:2d:e6:ac:b1:95:73:c6:4a:a8:2b: a9:46:8a:3a:4a:c1:8a:6d:a0:fc:e0:18:9f:0e:29: c2:cb:b7:55:0f:e9:68:06:6f:89:29:b2:a2:32:a7: 96:15:b3:94:f5:5b:fb:29:0f:4b:44:24:5f:07:b3: e7:5d:4f:d7:87:15:b0:f6:84:b0:c1:14:b2:93:b0: c5:69:1b:d6:d0:1e:8b:f3:8f:d4:db:8e:42:77:82: e4:b2:e9:95:f5:5c:98:36:5c:d4:6c:42:a4:0e:fb: 60:e6:f6:6c:f7:80:60:aa:b4:6d:df:cc:2d:c4:d9: 57:0e:a3:17:e6:de:20:3d:60:fb:43:7e:df:7e:1e: db:bf:15:33:e9:2e:25:8e:61:54:16:76:23:51:a1: 82:91:c3:91:5d:b3:23:17:01:a6:37:cd:64:f7:5c: 41:e6:30:81:8c:7f:34:f2:08:4c:a9:62:4e:51:66: fa:9f:dc:1e:ea:38:84:45:d5:8f:8a:2c:15:7c:f5: 6b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:46:BC:9D:F8:AE:07:F4:86:73:E8:8B:29:F3:F4:6F:3F:85:6D:29 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/dka8nfiuB_SGc-iLKfP0bz-FbSk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.44.0/24 Signature Algorithm: sha256WithRSAEncryption 41:27:c6:2a:3f:bd:ca:49:9c:f3:7f:8b:2c:07:68:30:e0:3e: 01:cb:10:c6:be:f3:0e:6b:09:32:7a:1b:c3:6b:1d:cb:45:b3: a5:80:f5:8f:53:74:cc:2d:ef:bf:ab:dc:55:dc:56:80:9a:8a: de:a8:bf:28:b1:f6:c6:6c:fa:6f:b1:6b:1b:e3:fa:42:31:8b: 08:57:2f:49:0d:e1:09:02:32:b2:85:11:22:b5:22:13:e6:59: 08:5f:ae:50:20:bf:56:d9:7c:8a:54:24:ac:b6:77:3b:f0:23: 0b:22:a3:1c:21:da:86:c9:da:b8:db:8e:9f:40:f6:36:92:0d: 91:ee:2d:89:93:37:39:40:c2:1f:44:4b:45:cb:88:ad:f7:5e: c0:09:80:89:b2:ca:1f:c7:d2:ba:14:2f:f8:76:7e:60:f8:d6: a6:94:a2:27:c4:7b:ee:2b:02:2f:55:8c:d7:28:15:69:39:3f: a8:ae:de:9d:7e:4e:3b:d9:0f:ce:cf:07:7c:ad:7b:90:fc:16: e1:da:90:2a:bb:9d:0c:c7:8d:a3:48:49:9e:87:09:d2:c4:e7: 40:cc:b1:17:fa:b2:3a:d8:df:55:1a:8d:fc:3a:05:fa:4c:71: 17:ed:8c:7c:59:5c:f9:ef:04:26:73:cc:48:0b:e5:c6:d2:5f: d1:b0:c6:33 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEi4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc2NDZCQzlERjhBRTA3 RjQ4NjczRTg4QjI5RjNGNDZGM0Y4NTZEMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFK+Rcn0HkKtie6y17MNaMcumICO2T9d89hmripAkxPpwiISiY qbqA9rGsZmSufizX7B76gV5ewT4ss6oGBUhcLeassZVzxkqoK6lGijpKwYptoPzg GJ8OKcLLt1UP6WgGb4kpsqIyp5YVs5T1W/spD0tEJF8Hs+ddT9eHFbD2hLDBFLKT sMVpG9bQHovzj9TbjkJ3guSy6ZX1XJg2XNRsQqQO+2Dm9mz3gGCqtG3fzC3E2VcO oxfm3iA9YPtDft9+Htu/FTPpLiWOYVQWdiNRoYKRw5FdsyMXAaY3zWT3XEHmMIGM fzTyCEypYk5RZvqf3B7qOIRF1Y+KLBV89Ws3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUdka8nfiuB/SGc+iLKfP0bz+FbSkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZGthOG5maXVCX1NHYy1p TEtmUDBiei1GYlNrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ANIRLDANBgkqhkiG9w0BAQsFAAOCAQEAQSfGKj+9ykmc83+LLAdoMOA+AcsQxr7z DmsJMnobw2sdy0WzpYD1j1N0zC3vv6vcVdxWgJqK3qi/KLH2xmz6b7FrG+P6QjGL CFcvSQ3hCQIysoURIrUiE+ZZCF+uUCC/Vtl8ilQkrLZ3O/AjCyKjHCHahsnauNuO n0D2NpINke4tiZM3OUDCH0RLRcuIrfdewAmAibLKH8fSuhQv+HZ+YPjWppSiJ8R7 7isCL1WM1ygVaTk/qK7enX5OO9kPzs8HfK17kPwW4dqQKrudDMeNo0hJnocJ0sTn QMyxF/qyOtjfVRqN/DoF+kxxF+2MfFlc+e8EJnPMSAvlxtJf0bDGMw== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:43 2024 by rpki-client on console-fra.rpki-client.org