$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gfJv9JViKKExPoZ7cRf-zRvjspU.roa File: gfJv9JViKKExPoZ7cRf-zRvjspU.roa (raw, json) Hash identifier: Argznea1fqlSnyoAHrKHhTBDmBfw8Fe4+WneI9tH+YY= Subject key identifier: 81:F2:6F:F4:95:62:28:A1:31:3E:86:7B:71:17:FE:CD:1B:E3:B2:95 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11E1 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gfJv9JViKKExPoZ7cRf-zRvjspU.roa Signing time: Mon 26 Aug 2024 05:24:29 +0000 ROA not before: Mon 26 Aug 2024 05:24:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.17.7.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4577 (0x11e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=81F26FF4956228A1313E867B7117FECD1BE3B295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7a:39:1f:ed:c3:ed:5c:6c:f1:d1:9f:76:61: 5b:d9:f4:a3:22:ca:92:5a:47:a9:c2:8f:69:8e:8e: 2d:69:39:b5:0a:70:fc:ab:3f:19:9a:db:83:d1:72: ec:c2:52:cd:61:22:76:8b:9c:26:f1:f2:44:e9:60: 41:01:1c:ef:f5:c7:1c:59:06:12:55:33:55:ec:89: e2:11:e6:d6:7f:6f:37:45:df:3e:59:32:d9:a3:90: df:bb:fe:d7:78:b9:67:e1:b6:fa:c3:8b:ac:4f:c8: 9c:af:12:ac:5c:87:2a:77:da:ff:fd:cc:d9:29:97: 9f:67:2d:89:a0:86:cb:17:96:4e:12:4e:0b:97:c5: de:81:c1:9e:ff:3c:a2:66:9f:d9:71:01:19:01:03: 8a:8f:f0:7a:ed:47:bd:19:d7:f2:5a:98:32:01:91: 30:f5:f5:d6:3e:3d:33:18:29:65:df:5e:e4:31:f8: e1:58:73:b2:a7:4b:60:12:9a:3d:0d:90:ef:41:1b: 93:ac:b1:47:c4:e2:3d:87:9c:d6:67:79:db:5f:19: 5d:2f:0c:e6:fc:c3:47:d8:90:ba:ef:0a:5e:25:26: fe:3b:08:8f:4a:68:1b:9a:c3:7b:d3:7a:2c:54:86: 1f:6d:1c:4c:fe:cc:e2:a9:53:b3:d5:b2:0f:bb:36: 99:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:F2:6F:F4:95:62:28:A1:31:3E:86:7B:71:17:FE:CD:1B:E3:B2:95 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gfJv9JViKKExPoZ7cRf-zRvjspU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.7.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:74:fd:52:d6:20:67:77:f3:47:42:c9:d9:1d:c7:51:67:99: a1:cd:70:07:df:55:59:91:7d:4a:8f:8e:c3:07:e7:f9:21:d8: 91:f0:a7:aa:d4:ec:45:64:94:4b:b1:db:23:9e:52:db:cf:b2: 11:49:85:99:e3:12:d1:d7:86:9e:48:7c:f8:c7:8b:6b:12:85: 4f:1e:e6:27:b0:fe:c9:f6:90:04:e4:b2:ce:c0:7f:98:27:87: b0:08:c0:c3:da:3c:28:c5:0f:3a:df:05:e5:ae:23:15:b0:f2: de:51:65:4f:15:be:f6:8e:2a:ef:75:90:ff:a2:34:20:a7:00: 3f:14:50:65:14:cc:e6:e3:b6:31:dc:86:4d:5f:94:06:77:61: 95:ee:c3:ef:d3:cb:d3:f0:2c:25:21:a2:66:72:b4:18:4d:5d: bb:16:12:e1:9f:cb:f6:09:f0:fc:ff:31:14:5e:6e:dd:3d:55: 98:ca:37:75:32:f2:08:65:79:0f:14:41:9e:9b:81:b5:5b:54: 1e:da:00:32:88:6f:93:ae:fc:e5:cf:a6:04:c3:cb:bc:85:49: ad:5f:7b:02:7e:9e:4b:7b:b1:3e:ca:8a:55:96:47:88:b2:e1: b6:38:ef:33:a7:fc:4c:f5:02:11:bd:aa:35:70:53:0f:98:e4: 5e:0b:d6:d4 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEeEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgxRjI2RkY0OTU2MjI4 QTEzMTNFODY3QjcxMTdGRUNEMUJFM0IyOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHejkf7cPtXGzx0Z92YVvZ9KMiypJaR6nCj2mOji1pObUKcPyr Pxma24PRcuzCUs1hInaLnCbx8kTpYEEBHO/1xxxZBhJVM1XsieIR5tZ/bzdF3z5Z MtmjkN+7/td4uWfhtvrDi6xPyJyvEqxchyp32v/9zNkpl59nLYmghssXlk4STguX xd6BwZ7/PKJmn9lxARkBA4qP8HrtR70Z1/JamDIBkTD19dY+PTMYKWXfXuQx+OFY c7KnS2ASmj0NkO9BG5OssUfE4j2HnNZnedtfGV0vDOb8w0fYkLrvCl4lJv47CI9K aBuaw3vTeixUhh9tHEz+zOKpU7PVsg+7NpnhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUgfJv9JViKKExPoZ7cRf+zRvjspUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZ2ZKdjlKVmlLS0V4UG9a N2NSZi16UnZqc3BVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ANIRBzANBgkqhkiG9w0BAQsFAAOCAQEASnT9UtYgZ3fzR0LJ2R3HUWeZoc1wB99V WZF9So+Owwfn+SHYkfCnqtTsRWSUS7HbI55S28+yEUmFmeMS0deGnkh8+MeLaxKF Tx7mJ7D+yfaQBOSyzsB/mCeHsAjAw9o8KMUPOt8F5a4jFbDy3lFlTxW+9o4q73WQ /6I0IKcAPxRQZRTM5uO2MdyGTV+UBndhle7D79PL0/AsJSGiZnK0GE1duxYS4Z/L 9gnw/P8xFF5u3T1VmMo3dTLyCGV5DxRBnpuBtVtUHtoAMohvk6785c+mBMPLvIVJ rV97An6eS3uxPsqKVZZHiLLhtjjvM6f8TPUCEb2qNXBTD5jkXgvW1A== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org