$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/frmLh1emZFqcO8icc5s2jIiGLgk.roa File: frmLh1emZFqcO8icc5s2jIiGLgk.roa (raw, json) Hash identifier: Zfmq8fk/HWUg5feSHt6zZ4V826yVfsqONPqwqgRKHo8= Subject key identifier: 7E:B9:8B:87:57:A6:64:5A:9C:3B:C8:9C:73:9B:36:8C:88:86:2E:09 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1246 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/frmLh1emZFqcO8icc5s2jIiGLgk.roa Signing time: Mon 26 Aug 2024 05:24:50 +0000 ROA not before: Mon 26 Aug 2024 05:24:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17213 IP address blocks: 60.198.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4678 (0x1246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7EB98B8757A6645A9C3BC89C739B368C88862E09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:60:f9:38:76:3d:7d:d6:03:41:54:4d:28:33: 86:d4:fa:f3:a9:4f:93:7d:65:f9:b0:b3:86:3c:e9: d9:d3:ca:5b:f6:86:0b:9b:b5:7b:05:a7:7c:dd:69: 96:61:e6:0d:54:32:05:fe:42:2f:3d:d2:56:df:9a: d7:28:16:98:b8:09:ea:b6:da:51:6d:95:3b:12:6d: 92:1f:90:df:40:a3:b5:57:e8:6a:5c:4e:c6:a2:a6: be:fe:4d:0c:4d:b9:58:11:9e:6b:fe:76:36:a8:0d: a0:2a:ca:fd:09:94:42:87:7c:cd:a2:0d:7a:af:34: 4e:90:b8:2d:e3:b3:d6:24:ab:84:03:4f:77:4d:8f: c9:d7:f2:cc:8f:7f:49:76:3c:3c:6f:79:b5:9f:81: 90:a9:42:0a:03:e8:16:dc:c4:c6:56:74:39:b0:a7: 97:1b:ea:6a:37:7a:0c:94:57:2f:a5:a4:6e:67:20: 57:21:e3:f8:fb:1a:e0:d5:b9:30:3f:ec:5b:3c:6d: e5:69:b4:37:db:85:cf:6d:de:75:26:d8:d5:64:d7: 33:ce:8f:c9:df:d7:9e:fb:d1:b5:46:47:fd:8a:56: 5e:ee:54:88:51:cb:df:8e:52:e7:95:d3:9f:c9:ab: eb:6f:86:77:90:a4:1f:a6:12:76:b4:5a:56:1c:c2: 30:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B9:8B:87:57:A6:64:5A:9C:3B:C8:9C:73:9B:36:8C:88:86:2E:09 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/frmLh1emZFqcO8icc5s2jIiGLgk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.154.0/24 Signature Algorithm: sha256WithRSAEncryption 83:fd:3a:26:99:77:5d:ae:7f:77:6c:23:43:a4:67:20:06:b5: bc:1f:61:34:8d:3d:0f:d6:67:b7:d0:6e:dd:26:f6:1d:91:8e: 18:77:e8:40:34:ec:c8:11:3b:7a:73:e5:71:6d:84:26:8d:6c: 72:7c:b9:b6:d2:cf:00:fe:78:7a:ff:c7:c9:bb:82:da:3b:9e: df:cf:63:c7:ba:ff:c7:4b:df:5f:a1:28:bc:87:70:7f:71:f2: 5b:e2:49:cd:b5:2a:d9:81:ef:30:b5:88:47:65:c9:b7:4d:46: 6c:6a:7e:50:78:54:65:b1:2d:73:e4:2e:12:bd:bd:04:92:74: 89:31:e0:85:e0:13:95:20:dc:b0:cd:4b:9f:7b:3f:29:c5:a2: f8:07:d3:4d:01:2d:d0:21:7b:bd:02:97:f0:31:5e:f7:c6:8a: df:31:82:66:82:42:6d:85:37:cf:98:5e:c4:a0:1a:f7:c2:ea: 9c:df:75:d1:e2:80:67:e7:98:1a:d5:fa:57:b2:83:4a:6f:9c: b5:f8:01:83:fe:1f:8d:19:7c:1d:d8:77:06:61:50:1a:dd:4c: 01:ce:fd:a0:3d:c3:cf:e0:11:2e:e6:d2:0e:a1:0c:5a:51:79: 53:86:0a:4c:cc:fb:20:95:37:48:d6:ff:ac:0c:85:df:d4:a8: 07:bb:18:41 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEkYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdFQjk4Qjg3NTdBNjY0 NUE5QzNCQzg5QzczOUIzNjhDODg4NjJFMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuYPk4dj191gNBVE0oM4bU+vOpT5N9Zfmws4Y86dnTylv2hgub tXsFp3zdaZZh5g1UMgX+Qi890lbfmtcoFpi4Ceq22lFtlTsSbZIfkN9Ao7VX6Gpc Tsaipr7+TQxNuVgRnmv+djaoDaAqyv0JlEKHfM2iDXqvNE6QuC3js9Ykq4QDT3dN j8nX8syPf0l2PDxvebWfgZCpQgoD6BbcxMZWdDmwp5cb6mo3egyUVy+lpG5nIFch 4/j7GuDVuTA/7Fs8beVptDfbhc9t3nUm2NVk1zPOj8nf15770bVGR/2KVl7uVIhR y9+OUueV05/Jq+tvhneQpB+mEna0WlYcwjAVAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUfrmLh1emZFqcO8icc5s2jIiGLgkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZnJtTGgxZW1aRnFjTzhp Y2M1czJqSWlHTGdrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzGmjANBgkqhkiG9w0BAQsFAAOCAQEAg/06Jpl3Xa5/d2wjQ6RnIAa1vB9hNI09 D9Znt9Bu3Sb2HZGOGHfoQDTsyBE7enPlcW2EJo1scny5ttLPAP54ev/HybuC2jue 389jx7r/x0vfX6EovIdwf3HyW+JJzbUq2YHvMLWIR2XJt01GbGp+UHhUZbEtc+Qu Er29BJJ0iTHgheATlSDcsM1Ln3s/KcWi+AfTTQEt0CF7vQKX8DFe98aK3zGCZoJC bYU3z5hexKAa98LqnN910eKAZ+eYGtX6V7KDSm+ctfgBg/4fjRl8Hdh3BmFQGt1M Ac79oD3Dz+ARLubSDqEMWlF5U4YKTMz7IJU3SNb/rAyF39SoB7sYQQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org