$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kd58gM3vpUs3JpkAKSv-igYVHJU.roa File: kd58gM3vpUs3JpkAKSv-igYVHJU.roa (raw, json) Hash identifier: AtOtsEm1tRMh3qwf8wgAfZ+fHU81Oyr7KIPmubHZzGo= Subject key identifier: 91:DE:7C:80:CD:EF:A5:4B:37:26:99:00:29:2B:FE:8A:06:15:1C:95 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1362 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kd58gM3vpUs3JpkAKSv-igYVHJU.roa Signing time: Mon 10 Feb 2025 14:09:25 +0000 ROA not before: Mon 10 Feb 2025 14:09:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 203.77.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4962 (0x1362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:09:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=91DE7C80CDEFA54B37269900292BFE8A06151C95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e0:30:5d:2c:bb:54:b2:dc:2c:e8:1f:a2:00: c3:c0:96:85:2e:a6:6f:ac:6c:29:48:d9:59:3c:aa: 65:66:6e:03:5f:29:30:a9:21:ce:45:dc:9a:ee:df: cf:98:f1:f2:a0:14:87:d7:90:32:66:67:11:10:35: 0f:88:5e:39:eb:56:37:29:37:3e:d8:5c:f6:45:90: ef:2c:50:dd:5e:a7:87:9f:02:e7:50:54:35:eb:5d: 5c:f7:11:2b:80:d5:74:d5:88:d5:9e:53:1c:e9:42: 76:e3:9c:8d:c4:55:a7:ff:83:4e:e7:1c:27:63:ac: 37:21:c7:01:c0:e0:5c:05:a0:05:11:ae:80:f2:12: 28:ed:1f:04:0f:fa:4d:36:94:93:ea:d3:1d:e1:9f: d9:85:81:5a:55:2a:4c:30:84:dd:90:fd:c5:a2:16: 89:74:ca:28:91:fa:4f:ed:1a:5c:c0:ec:11:62:2d: b2:e3:e0:1a:b5:b8:78:4a:a4:72:74:c9:f3:8e:47: 95:0e:d9:63:6f:67:68:e5:48:4b:76:54:a8:77:d1: ff:67:55:d3:25:91:d2:f2:0a:f7:d0:47:f5:1a:35: fd:c7:ad:43:06:f0:7a:6e:83:a1:18:59:e7:23:fd: 23:72:c6:3c:71:3a:45:33:e9:26:d7:e8:e3:eb:07: 2f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DE:7C:80:CD:EF:A5:4B:37:26:99:00:29:2B:FE:8A:06:15:1C:95 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kd58gM3vpUs3JpkAKSv-igYVHJU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.64.0/18 Signature Algorithm: sha256WithRSAEncryption 6d:68:42:ba:5a:22:25:b4:be:be:e8:bd:3b:11:db:52:44:00: 1d:1d:d3:fc:43:21:e5:84:18:c2:b2:0b:73:e8:38:d5:8b:dc: 07:82:3c:9f:58:d3:c0:f5:0c:b9:ef:6b:bc:2f:1f:bb:9c:95: 4f:9e:13:c6:88:d8:9e:c0:91:e7:bf:48:4e:ba:d1:f0:27:dd: 54:73:0a:76:f5:23:74:8a:7a:ca:51:16:b8:55:1d:2c:69:30: 04:d1:f1:50:c9:2d:a8:64:a2:35:44:4a:f3:d9:47:70:4f:88: a0:28:c9:bc:1d:85:17:97:13:f4:78:84:cc:1d:b9:06:ae:4f: 67:b4:18:02:64:61:09:37:48:de:20:db:4b:96:53:31:95:77: 5d:96:97:55:e0:da:bd:27:41:5a:ac:7c:df:a6:86:f6:c5:0e: 5f:a1:60:92:2c:88:1a:6f:b8:3c:9c:3e:98:07:18:ff:45:94: 69:6e:b0:0f:46:e2:43:05:a7:07:4f:10:b8:00:9f:f0:4c:32: 24:5a:94:ea:ab:82:ca:e9:45:9b:e6:d4:d1:6c:c6:2e:81:d8: 9e:44:24:cb:81:ee:f4:b9:3c:93:25:b2:e3:85:3e:c8:d5:8b: 7c:53:e6:24:21:ef:1c:45:6f:58:89:2e:f0:75:b3:ba:01:9d: b3:55:b0:4e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICE2IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA5MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkxREU3QzgwQ0RFRkE1 NEIzNzI2OTkwMDI5MkJGRThBMDYxNTFDOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB4DBdLLtUstws6B+iAMPAloUupm+sbClI2Vk8qmVmbgNfKTCp Ic5F3Jru38+Y8fKgFIfXkDJmZxEQNQ+IXjnrVjcpNz7YXPZFkO8sUN1ep4efAudQ VDXrXVz3ESuA1XTViNWeUxzpQnbjnI3EVaf/g07nHCdjrDchxwHA4FwFoAURroDy EijtHwQP+k02lJPq0x3hn9mFgVpVKkwwhN2Q/cWiFol0yiiR+k/tGlzA7BFiLbLj 4Bq1uHhKpHJ0yfOOR5UO2WNvZ2jlSEt2VKh30f9nVdMlkdLyCvfQR/UaNf3HrUMG 8Hpug6EYWecj/SNyxjxxOkUz6SbX6OPrBy/hAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUkd58gM3vpUs3JpkAKSv+igYVHJUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQva2Q1OGdNM3ZwVXMzSnBr QUtTdi1pZ1lWSEpVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BstNQDANBgkqhkiG9w0BAQsFAAOCAQEAbWhCuloiJbS+vui9OxHbUkQAHR3T/EMh 5YQYwrILc+g41YvcB4I8n1jTwPUMue9rvC8fu5yVT54TxojYnsCR579ITrrR8Cfd VHMKdvUjdIp6ylEWuFUdLGkwBNHxUMktqGSiNURK89lHcE+IoCjJvB2FF5cT9HiE zB25Bq5PZ7QYAmRhCTdI3iDbS5ZTMZV3XZaXVeDavSdBWqx836aG9sUOX6FgkiyI Gm+4PJw+mAcY/0WUaW6wD0biQwWnB08QuACf8EwyJFqU6quCyulFm+bU0WzGLoHY nkQky4Hu9Lk8kyWy44U+yNWLfFPmJCHvHEVvWIku8HWzugGds1WwTg== -----END CERTIFICATE-----Generated at Mon Apr 7 01:45:38 2025 by rpki-client