$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mODmD-tjsY_p_jAwW9uXPIJP_lQ.roa File: mODmD-tjsY_p_jAwW9uXPIJP_lQ.roa (raw, json) Hash identifier: Dr8820kLbK7ELRerlcto8zyFAH+TVTLPhwATDkXurI8= Subject key identifier: 98:E0:E6:0F:EB:63:B1:8F:E9:FE:30:30:5B:DB:97:3C:82:4F:FE:54 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FCA Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mODmD-tjsY_p_jAwW9uXPIJP_lQ.roa Signing time: Fri 01 Sep 2023 09:37:17 +0000 ROA not before: Fri 01 Sep 2023 09:37:17 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131597 IP address blocks: 219.86.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4042 (0xfca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:17 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=98E0E60FEB63B18FE9FE30305BDB973C824FFE54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a2:ed:b6:5c:ad:38:45:9a:00:b3:6e:47:b0: 9a:9d:43:d1:6b:72:11:c7:ff:7f:98:0a:2a:8a:fc: 44:83:ab:29:3f:f9:ca:63:44:0e:27:08:2f:00:d1: 93:3c:49:11:b3:82:5a:83:69:02:96:10:4f:c5:d6: c1:ad:e9:c2:54:19:b0:a9:58:4e:4b:99:d3:75:33: 24:93:a3:da:97:35:3b:88:c0:d0:7b:82:40:8f:bb: 20:be:99:22:dd:f3:32:c7:a3:62:8b:9e:30:7d:f5: f2:b8:ef:dd:9d:ac:13:06:c1:f6:ff:b4:93:d1:3d: 54:8e:bf:fc:fe:02:96:21:8e:0a:03:0d:2d:8e:07: 37:e5:40:2e:ce:9c:06:25:78:37:fa:23:b7:ee:9f: 8b:2f:87:d1:f2:72:a0:22:f4:41:cd:37:cf:f7:22: 9a:8e:e3:81:14:66:bd:de:f4:aa:41:0a:5a:8f:51: 3b:fb:ca:6e:3f:07:69:e7:75:d0:74:3b:18:6a:3d: 8b:52:b0:5e:8a:de:89:db:99:f2:64:6a:fe:78:54: 19:02:1f:4d:92:c0:ef:9b:4e:3e:12:14:d4:b6:e6: 57:eb:1d:e9:15:3b:44:00:47:f1:af:15:b0:b3:4a: 23:8a:7d:b0:d1:6d:62:56:cc:1a:a0:d4:48:55:97: 2c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E0:E6:0F:EB:63:B1:8F:E9:FE:30:30:5B:DB:97:3C:82:4F:FE:54 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mODmD-tjsY_p_jAwW9uXPIJP_lQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.86.0.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:f5:e5:c6:f8:94:b0:38:f8:c6:83:2e:2b:21:78:48:18:96: 7a:d7:47:99:6d:52:31:f2:d4:cd:01:a0:cd:02:0e:6d:ba:db: 2e:ea:cf:c6:7e:6b:fe:94:b4:db:ca:9d:69:75:ba:f9:10:3a: 11:2f:b6:1b:bf:d9:f4:67:a2:66:3c:5a:46:b9:6c:46:03:37: ad:4c:d4:ab:c0:83:91:75:b7:55:dd:30:7a:e0:34:ff:df:8f: 5d:11:cd:b6:8a:76:4c:41:27:09:e8:5f:fd:94:45:d9:97:34: ed:79:a2:0d:54:96:4d:95:ac:d5:bd:3e:73:52:4e:8a:2e:22: 77:5e:a4:85:9d:e7:e7:d9:5b:0e:fa:0a:ef:fe:33:dc:76:e0: e5:85:c1:2e:a5:a7:17:9e:cd:8f:ea:eb:20:c1:21:69:ab:6f: 8c:6b:dd:2b:4b:8b:0d:13:22:0b:f1:a8:e3:e4:1d:9c:f1:f3: 42:cb:83:74:93:4b:71:33:5c:51:4a:f4:38:1d:6f:d3:4c:e0: 6e:d3:05:d8:bb:a7:0d:17:fb:1e:1e:f6:7d:3b:8f:13:09:2d: 67:1f:6f:12:48:cb:0a:3c:52:e6:f0:f6:2c:61:53:55:0a:1b: 97:6a:91:24:e0:1a:ac:4a:0e:af:85:ff:1e:f1:ce:6e:34:2c: 51:6f:b5:76 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD8owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk4RTBFNjBGRUI2M0Ix OEZFOUZFMzAzMDVCREI5NzNDODI0RkZFNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgou22XK04RZoAs25HsJqdQ9FrchHH/3+YCiqK/ESDqyk/+cpj RA4nCC8A0ZM8SRGzglqDaQKWEE/F1sGt6cJUGbCpWE5LmdN1MySTo9qXNTuIwNB7 gkCPuyC+mSLd8zLHo2KLnjB99fK4792drBMGwfb/tJPRPVSOv/z+ApYhjgoDDS2O BzflQC7OnAYleDf6I7fun4svh9HycqAi9EHNN8/3IpqO44EUZr3e9KpBClqPUTv7 ym4/B2nnddB0OxhqPYtSsF6K3onbmfJkav54VBkCH02SwO+bTj4SFNS25lfrHekV O0QAR/GvFbCzSiOKfbDRbWJWzBqg1EhVlyzbAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUmODmD+tjsY/p/jAwW9uXPIJP/lQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbU9EbUQtdGpzWV9wX2pB d1c5dVhQSUpQX2xRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNtWADANBgkqhkiG9w0BAQsFAAOCAQEASvXlxviUsDj4xoMuKyF4SBiWetdHmW1S MfLUzQGgzQIObbrbLurPxn5r/pS028qdaXW6+RA6ES+2G7/Z9GeiZjxaRrlsRgM3 rUzUq8CDkXW3Vd0weuA0/9+PXRHNtop2TEEnCehf/ZRF2Zc07XmiDVSWTZWs1b0+ c1JOii4id16khZ3n59lbDvoK7/4z3Hbg5YXBLqWnF57Nj+rrIMEhaatvjGvdK0uL DRMiC/Go4+QdnPHzQsuDdJNLcTNcUUr0OB1v00zgbtMF2LunDRf7Hh72fTuPEwkt Zx9vEkjLCjxS5vD2LGFTVQobl2qRJOAarEoOr4X/HvHObjQsUW+1dg== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:02 2024 by rpki-client on console-fra.rpki-client.org