$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mguH4TBGwmUhIjTJjEiPKczSdLc.roa File: mguH4TBGwmUhIjTJjEiPKczSdLc.roa (raw, json) Hash identifier: yccH0tV1w4n8octFub/vkgQo+atPXFeqqLMQvDY/PBk= Subject key identifier: 9A:0B:87:E1:30:46:C2:65:21:22:34:C9:8C:48:8F:29:CC:D2:74:B7 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 124D Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mguH4TBGwmUhIjTJjEiPKczSdLc.roa Signing time: Mon 26 Aug 2024 05:24:53 +0000 ROA not before: Mon 26 Aug 2024 05:24:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.243.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4685 (0x124d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:53 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9A0B87E13046C265212234C98C488F29CCD274B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:99:1a:6e:99:af:58:fa:1b:e6:3e:79:91:f1: 5b:16:84:8d:b8:a5:34:a8:50:31:e5:1c:fa:be:08: d4:48:43:c0:fb:9b:ec:70:17:a7:dd:e6:55:68:ab: c3:b4:02:cd:4d:07:b4:f5:62:87:46:fe:c7:49:fe: 10:69:95:8e:78:03:86:d8:e2:9a:7f:33:ac:fc:cb: e8:19:db:26:c8:7f:16:8e:f4:6b:58:bf:7d:ff:08: 93:71:fb:08:27:88:fb:1d:6d:d1:10:3f:d7:c0:85: 16:0c:ba:84:fc:43:eb:b9:69:5e:8b:9f:b4:9b:f9: ac:69:05:58:af:24:cd:ff:da:ab:37:78:3f:27:e5: 47:97:aa:1f:c3:cf:ae:d7:3b:fc:75:73:2c:7c:9c: 45:03:e9:d1:db:a9:4a:10:5e:a6:9a:b9:93:50:0b: a7:65:7f:0c:a4:e5:34:02:82:f0:16:54:d9:e3:df: 5d:f6:de:88:d3:ea:ca:ae:29:d6:9a:96:fb:05:c6: 9b:0d:86:d9:4c:aa:5a:26:bb:ff:17:f0:0e:ce:00: 77:30:8c:cc:c8:bc:0b:21:ab:ef:09:37:5c:c3:0d: 0e:51:a6:5c:7a:02:ce:f1:bd:5b:93:9c:e4:6d:cf: 02:95:1f:41:29:55:e6:f2:34:3b:b5:48:2b:65:08: 77:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0B:87:E1:30:46:C2:65:21:22:34:C9:8C:48:8F:29:CC:D2:74:B7 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mguH4TBGwmUhIjTJjEiPKczSdLc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.243.64.0/19 Signature Algorithm: sha256WithRSAEncryption 45:a3:90:ca:17:2e:b2:0c:1f:93:98:75:32:8a:4d:40:91:5b: c6:ef:e7:45:2c:2e:88:ea:02:98:bb:0e:06:96:48:ae:62:9c: f1:fd:c4:73:6c:02:73:78:92:5b:6b:53:94:c4:58:a7:af:f7: 13:ed:90:0b:32:83:2e:7a:48:b9:f4:90:0a:76:1b:91:93:98: 30:3e:ea:14:24:00:56:be:a4:e0:5a:19:41:b6:ac:3b:bd:46: 04:fd:1d:dd:e5:a4:a8:1b:01:a4:6a:a1:f8:8a:49:66:87:6c: 39:f7:a3:6f:36:cf:81:c8:e2:82:46:a3:e4:4f:22:96:4f:58: c1:7a:06:b4:93:71:f7:17:1f:1c:5c:07:a9:f8:a1:08:f0:eb: e1:15:92:df:25:55:d8:64:c7:33:fd:78:ec:4d:b1:91:e2:2d: 00:65:bb:09:61:ee:2d:5d:ff:0a:3a:38:5c:a3:fc:c5:fa:9f: 83:06:95:5b:73:94:32:2c:e2:26:2a:d4:8d:00:3c:57:11:e7: f8:bd:81:62:0b:57:86:23:c9:a3:25:e4:4f:d0:9f:39:d5:3a: bb:1d:5c:03:e8:cd:44:d8:64:61:fb:81:74:82:50:e6:d8:a8: 1e:fe:4d:ce:35:3f:f2:26:c6:aa:63:1a:2d:30:16:d3:32:7b: 26:f6:94:ba -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEk0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlBMEI4N0UxMzA0NkMy NjUyMTIyMzRDOThDNDg4RjI5Q0NEMjc0QjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5mRpuma9Y+hvmPnmR8VsWhI24pTSoUDHlHPq+CNRIQ8D7m+xw F6fd5lVoq8O0As1NB7T1YodG/sdJ/hBplY54A4bY4pp/M6z8y+gZ2ybIfxaO9GtY v33/CJNx+wgniPsdbdEQP9fAhRYMuoT8Q+u5aV6Ln7Sb+axpBVivJM3/2qs3eD8n 5UeXqh/Dz67XO/x1cyx8nEUD6dHbqUoQXqaauZNQC6dlfwyk5TQCgvAWVNnj3132 3ojT6squKdaalvsFxpsNhtlMqlomu/8X8A7OAHcwjMzIvAshq+8JN1zDDQ5Rplx6 As7xvVuTnORtzwKVH0EpVebyNDu1SCtlCHcBAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUmguH4TBGwmUhIjTJjEiPKczSdLcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbWd1SDRUQkd3bVVoSWpU SmpFaVBLY3pTZExjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdLzQDANBgkqhkiG9w0BAQsFAAOCAQEARaOQyhcusgwfk5h1MopNQJFbxu/nRSwu iOoCmLsOBpZIrmKc8f3Ec2wCc3iSW2tTlMRYp6/3E+2QCzKDLnpIufSQCnYbkZOY MD7qFCQAVr6k4FoZQbasO71GBP0d3eWkqBsBpGqh+IpJZodsOfejbzbPgcjigkaj 5E8ilk9YwXoGtJNx9xcfHFwHqfihCPDr4RWS3yVV2GTHM/147E2xkeItAGW7CWHu LV3/Cjo4XKP8xfqfgwaVW3OUMiziJirUjQA8VxHn+L2BYgtXhiPJoyXkT9CfOdU6 ux1cA+jNRNhkYfuBdIJQ5tioHv5NzjU/8ibGqmMaLTAW0zJ7JvaUug== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org