$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/huBnkkUlLky-HsMWZ6NsAGOeqJc.roa File: huBnkkUlLky-HsMWZ6NsAGOeqJc.roa (raw, json) Hash identifier: TwA4oPt39UYSYAtSQuVUEdS1K6dv2JFFTF+GOeeY1Ho= Subject key identifier: 86:E0:67:92:45:25:2E:4C:BE:1E:C3:16:67:A3:6C:00:63:9E:A8:97 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F9B Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/huBnkkUlLky-HsMWZ6NsAGOeqJc.roa Signing time: Fri 01 Sep 2023 09:37:03 +0000 ROA not before: Fri 01 Sep 2023 09:37:03 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131634 IP address blocks: 124.108.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3995 (0xf9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:03 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=86E0679245252E4CBE1EC31667A36C00639EA897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d9:a8:53:22:f3:f2:e0:1e:f3:44:8f:0f:f5: 22:e3:f2:01:e9:b5:82:21:c3:e3:e4:ab:3b:b7:20: 47:79:5c:81:da:12:1f:54:8c:e3:df:5c:46:b6:28: 6b:bf:be:82:4f:d8:2a:c7:98:00:6f:0b:25:e7:57: ad:98:63:75:fc:d1:e2:b9:fb:47:b4:b5:df:e4:0d: ec:1f:bc:33:f2:13:ba:cb:16:11:3c:eb:6e:3e:cb: a1:1d:50:60:9a:6a:12:a5:10:9c:98:bd:af:83:fd: e5:0b:4c:10:f6:38:10:db:b6:14:ee:18:be:4f:e8: 6c:45:f8:33:fb:14:0e:22:86:58:1b:a2:c2:ab:0c: 8b:6d:9a:7a:d2:e8:21:38:9b:02:27:df:35:03:27: 21:2e:8c:d6:f5:40:57:c0:20:ba:87:7b:a1:2f:43: 52:1b:40:f1:9c:ab:2c:74:04:38:4d:cb:f1:d8:c6: 38:77:fb:ab:8b:7f:7d:34:f6:d8:5b:77:a6:70:36: 96:be:e4:8a:99:fd:01:02:73:0f:b2:56:af:77:5c: 88:4c:4e:a8:3a:60:4b:83:13:12:7b:11:a7:b2:71: 42:9d:ba:f1:0c:6b:0a:b3:d6:96:78:33:33:38:eb: ee:91:91:fd:ac:96:11:f6:a7:a0:37:f4:32:10:4c: ac:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E0:67:92:45:25:2E:4C:BE:1E:C3:16:67:A3:6C:00:63:9E:A8:97 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/huBnkkUlLky-HsMWZ6NsAGOeqJc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.149.0/24 Signature Algorithm: sha256WithRSAEncryption 03:3a:e0:62:ce:82:f4:6f:ab:d2:a1:a3:54:5a:a2:cf:8b:fd: c4:42:3f:1e:f8:84:cc:16:b0:ac:f2:45:86:87:cd:fd:b8:8e: 7d:1a:19:d1:93:64:77:db:b8:de:2b:61:97:e7:aa:94:ab:8e: 84:ce:e8:66:f9:11:d5:c1:7b:fc:eb:e5:c7:a6:9a:38:34:61: ff:7c:46:38:67:2d:01:1c:2c:85:3b:86:2d:81:7b:6b:d0:f9: cb:7f:8b:52:f5:a3:5e:ae:15:c7:fc:70:3a:ce:b7:b5:55:3f: 6e:a1:a0:13:6f:7a:60:72:a3:b1:99:74:14:e9:87:69:e7:36: cb:a3:1e:2a:9a:37:0b:ab:8d:57:fb:fd:0a:4a:bd:18:ad:e8: 2c:cf:3f:07:3b:18:96:91:93:61:94:d6:5c:19:92:30:13:35: 16:b2:e5:c6:cd:35:04:7b:10:e7:e7:b4:9b:9c:46:14:03:83: e7:01:05:a8:92:7f:b7:0f:b3:95:de:75:fc:1c:d0:16:2a:82: e0:ed:7c:09:4c:af:09:6d:87:97:01:12:76:f9:87:bc:7a:5d: ed:c4:32:ce:88:90:2c:1b:81:89:81:38:6d:e4:1d:5d:9f:58: a0:30:5e:7a:61:e7:60:85:fb:17:72:9d:62:d1:ce:a3:c5:3d: 1a:58:a5:d0 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD5swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg2RTA2NzkyNDUyNTJF NENCRTFFQzMxNjY3QTM2QzAwNjM5RUE4OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx2ahTIvPy4B7zRI8P9SLj8gHptYIhw+Pkqzu3IEd5XIHaEh9U jOPfXEa2KGu/voJP2CrHmABvCyXnV62YY3X80eK5+0e0td/kDewfvDPyE7rLFhE8 624+y6EdUGCaahKlEJyYva+D/eULTBD2OBDbthTuGL5P6GxF+DP7FA4ihlgbosKr DIttmnrS6CE4mwIn3zUDJyEujNb1QFfAILqHe6EvQ1IbQPGcqyx0BDhNy/HYxjh3 +6uLf3009thbd6ZwNpa+5IqZ/QECcw+yVq93XIhMTqg6YEuDExJ7EaeycUKduvEM awqz1pZ4MzM46+6Rkf2slhH2p6A39DIQTKyLAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUhuBnkkUlLky+HsMWZ6NsAGOeqJcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvaHVCbmtrVWxMa3ktSHNN V1o2TnNBR09lcUpjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AHxslTANBgkqhkiG9w0BAQsFAAOCAQEAAzrgYs6C9G+r0qGjVFqiz4v9xEI/HviE zBawrPJFhofN/biOfRoZ0ZNkd9u43ithl+eqlKuOhM7oZvkR1cF7/Ovlx6aaODRh /3xGOGctARwshTuGLYF7a9D5y3+LUvWjXq4Vx/xwOs63tVU/bqGgE296YHKjsZl0 FOmHaec2y6MeKpo3C6uNV/v9Ckq9GK3oLM8/BzsYlpGTYZTWXBmSMBM1FrLlxs01 BHsQ5+e0m5xGFAOD5wEFqJJ/tw+zld51/BzQFiqC4O18CUyvCW2HlwESdvmHvHpd 7cQyzoiQLBuBiYE4beQdXZ9YoDBeemHnYIX7F3KdYtHOo8U9Glil0A== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org