$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lAwPl3f4Uz1lfiofwJAL3xUd_Fg.roa File: lAwPl3f4Uz1lfiofwJAL3xUd_Fg.roa (raw, json) Hash identifier: zwnC2qhJBtQlq+s/WianmGVi5Qm4HOOPsW3PZj0XRTY= Subject key identifier: 94:0C:0F:97:77:F8:53:3D:65:7E:2A:1F:C0:90:0B:DF:15:1D:FC:58 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1208 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lAwPl3f4Uz1lfiofwJAL3xUd_Fg.roa Signing time: Mon 26 Aug 2024 05:24:38 +0000 ROA not before: Mon 26 Aug 2024 05:24:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.212.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4616 (0x1208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=940C0F9777F8533D657E2A1FC0900BDF151DFC58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d7:82:23:b8:e5:7d:f0:93:33:ed:6c:e8:d0: 19:40:2e:97:10:f0:59:33:ac:07:85:24:a6:7e:7a: 9e:f4:f2:a7:89:ed:33:b9:b6:0b:e8:0e:2b:eb:e8: 1c:c5:44:43:eb:83:31:d4:5e:4f:67:ff:96:71:33: 36:79:16:4d:aa:81:8d:be:84:06:ff:d6:47:cd:58: ca:75:b8:b2:11:6b:97:b3:a2:00:05:84:9b:07:82: 97:06:32:74:ac:f5:80:0b:ca:b6:a8:f3:9c:eb:33: ac:c0:ad:07:78:89:64:ce:f5:9f:ba:22:df:8a:cb: 22:57:a9:15:9e:d0:32:bc:05:e8:21:6b:e7:f3:44: 0f:93:40:ae:7c:e1:3c:c0:4c:38:cd:f2:93:70:7c: 14:e7:23:92:df:9a:55:b8:0d:e8:e3:ea:2c:ff:a6: 70:ba:b2:06:a3:87:a6:30:08:07:50:76:49:f0:ee: f5:97:75:24:54:cf:3a:fd:75:43:22:aa:e1:0b:2e: 34:bc:e3:eb:ea:f3:dc:8f:e0:72:eb:1c:9c:d7:c9: ea:d7:ca:bb:b1:db:3d:94:cb:d6:b0:f5:16:fb:20: 89:d7:26:44:be:5c:00:d6:81:9d:dc:82:44:fa:86: d4:02:2a:26:ba:68:90:bb:aa:3a:1d:6e:71:a0:46: 26:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:0C:0F:97:77:F8:53:3D:65:7E:2A:1F:C0:90:0B:DF:15:1D:FC:58 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/lAwPl3f4Uz1lfiofwJAL3xUd_Fg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.212.0/24 Signature Algorithm: sha256WithRSAEncryption 78:a5:ca:36:db:7c:8a:94:7f:4b:89:60:25:9c:61:65:e0:5e: b6:87:b6:4e:09:b7:0a:c4:44:f1:55:af:89:f2:85:12:90:74: d6:96:29:0a:b3:5f:b5:97:5c:1f:1a:84:0f:74:56:db:1d:53: 6b:9b:6d:30:96:f2:ef:dc:96:3a:f1:b2:61:bc:bc:7e:48:fb: 55:b2:cc:98:4b:d1:da:01:52:af:89:e5:02:ef:62:9f:43:bf: 70:6a:ea:1f:a0:87:7f:05:b9:e0:64:3f:e4:9c:7d:f9:ee:88: 7b:b4:ef:af:b3:6e:55:c9:8d:8e:f6:3c:ea:94:5c:7f:56:86: 1e:82:39:af:41:09:ed:dc:88:e3:c2:5a:2f:35:11:77:0e:d2: 81:3a:6f:91:0c:2d:2d:c9:e5:6b:41:f6:49:c7:78:d2:b7:55: f2:33:25:50:c5:6f:a3:2c:b6:e9:2f:0a:9d:80:29:83:ed:a5: a7:03:80:00:1c:09:da:db:be:05:38:ae:41:09:79:20:28:41: f7:bb:3a:aa:24:bc:98:2a:8d:13:63:3d:e6:e9:9c:5a:a3:cd: 98:1a:39:a4:a0:c1:38:6d:8e:41:30:1f:5f:87:3e:19:b7:83: ac:b3:b8:9a:99:00:34:a4:69:52:a1:78:0d:61:d2:5d:25:f4: c9:46:bf:00 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEggwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0MEMwRjk3NzdGODUz M0Q2NTdFMkExRkMwOTAwQkRGMTUxREZDNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn14IjuOV98JMz7Wzo0BlALpcQ8FkzrAeFJKZ+ep708qeJ7TO5 tgvoDivr6BzFREPrgzHUXk9n/5ZxMzZ5Fk2qgY2+hAb/1kfNWMp1uLIRa5ezogAF hJsHgpcGMnSs9YALyrao85zrM6zArQd4iWTO9Z+6It+KyyJXqRWe0DK8Begha+fz RA+TQK584TzATDjN8pNwfBTnI5LfmlW4Dejj6iz/pnC6sgajh6YwCAdQdknw7vWX dSRUzzr9dUMiquELLjS84+vq89yP4HLrHJzXyerXyrux2z2Uy9aw9Rb7IInXJkS+ XADWgZ3cgkT6htQCKia6aJC7qjodbnGgRia9AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUlAwPl3f4Uz1lfiofwJAL3xUd/FgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbEF3UGwzZjRVejFsZmlv ZndKQUwzeFVkX0ZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzH1DANBgkqhkiG9w0BAQsFAAOCAQEAeKXKNtt8ipR/S4lgJZxhZeBetoe2Tgm3 CsRE8VWvifKFEpB01pYpCrNftZdcHxqED3RW2x1Ta5ttMJby79yWOvGyYby8fkj7 VbLMmEvR2gFSr4nlAu9in0O/cGrqH6CHfwW54GQ/5Jx9+e6Ie7Tvr7NuVcmNjvY8 6pRcf1aGHoI5r0EJ7dyI48JaLzURdw7SgTpvkQwtLcnla0H2Scd40rdV8jMlUMVv oyy26S8KnYApg+2lpwOAABwJ2tu+BTiuQQl5IChB97s6qiS8mCqNE2M95umcWqPN mBo5pKDBOG2OQTAfX4c+GbeDrLO4mpkANKRpUqF4DWHSXSX0yUa/AA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org