$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nd9ZxApNxG8eckZZXnbcHTc1_xc.roa File: nd9ZxApNxG8eckZZXnbcHTc1_xc.roa (raw, json) Hash identifier: hnHQZwAPx3WUUGL2UfTkarXuQDLFc27p8X9NsGVFhic= Subject key identifier: 9D:DF:59:C4:0A:4D:C4:6F:1E:72:46:59:5E:76:DC:1D:37:35:FF:17 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11CA Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nd9ZxApNxG8eckZZXnbcHTc1_xc.roa Signing time: Mon 26 Aug 2024 05:24:23 +0000 ROA not before: Mon 26 Aug 2024 05:24:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 203.77.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4554 (0x11ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9DDF59C40A4DC46F1E7246595E76DC1D3735FF17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4a:f1:d7:f2:10:08:66:6e:88:b0:85:37:d6: f8:87:70:a9:6d:ea:40:39:a8:2c:83:b7:e1:5e:0d: 63:64:ff:ee:42:ad:2a:08:0d:43:c3:6f:42:06:5e: f1:e2:ff:6f:0d:e0:fb:30:99:b1:ef:8f:aa:b6:e4: bb:ce:4e:2a:6f:fd:f3:fc:50:a9:6d:53:fc:9d:c9: be:ce:66:00:15:c0:e3:6d:52:97:1f:c0:72:89:e6: 41:9b:d7:d3:3e:1d:1e:7d:2a:71:5b:4a:ab:37:c9: 48:5b:d2:1c:d7:3e:9d:85:ae:04:b9:06:ca:ab:ad: ee:bf:47:80:30:71:6a:f4:1c:51:a4:a8:c0:6d:13: 6c:92:c3:a2:27:1c:89:dc:f6:79:29:e2:c1:2a:ed: c8:88:f8:b0:22:35:93:98:a3:7f:0c:de:3d:c7:f9: a4:bc:a1:ca:43:00:7d:67:a6:b8:24:ee:b9:71:54: b2:10:4e:17:4b:13:e5:bb:b6:7e:1a:f2:3b:00:0f: 46:26:1c:59:85:e0:e2:f6:5d:42:d8:87:47:b6:c7: ad:0a:ea:48:c0:c2:db:37:bd:d4:cd:69:c0:00:3c: 19:01:21:e2:d0:72:4e:0c:42:0c:7c:9f:48:9e:77: 81:37:09:45:84:fe:ba:d9:51:54:d6:a5:e9:2c:6f: 7c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:DF:59:C4:0A:4D:C4:6F:1E:72:46:59:5E:76:DC:1D:37:35:FF:17 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nd9ZxApNxG8eckZZXnbcHTc1_xc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.50.0/23 Signature Algorithm: sha256WithRSAEncryption 77:c2:90:4f:a8:16:eb:28:f8:70:4b:ee:27:30:81:b9:2d:cf: 88:ce:5a:d7:f2:75:6f:27:6b:c0:20:c6:b4:8b:62:69:e8:a8: cc:47:c3:95:e9:bb:cf:4e:d6:53:ef:f1:32:07:01:d5:ce:1f: 32:7e:b9:2b:f0:e2:bc:38:85:70:90:86:23:d6:fb:ed:da:2b: a3:3a:6b:3a:37:1d:03:18:da:8a:63:93:a2:ee:07:ec:83:b8: bb:77:c6:d4:d9:cd:22:07:ad:50:b3:a9:6e:91:1e:ec:d3:55: e8:93:45:ce:cd:a8:90:80:70:02:64:87:12:18:e7:05:c5:9e: c4:8e:36:c9:1e:55:d8:23:b8:e9:d9:d8:a3:b7:cb:ad:07:01: 6e:fc:f1:a2:23:4c:70:aa:89:da:b2:46:a9:38:da:c6:ed:2c: b0:49:ad:8f:a1:cb:5a:19:05:06:e1:01:5a:2a:b2:3e:b0:50: 33:07:ac:6a:f6:a6:f5:a1:8b:cb:a6:bd:a5:1b:6e:d3:f8:f9: d6:11:1a:d9:33:19:81:47:dd:26:de:6b:7c:d7:4c:46:c3:f5: 4d:26:85:f1:c8:2a:09:5d:52:a1:d6:4c:92:4e:29:33:b2:9b: d7:96:06:cf:3c:70:4a:83:39:0e:f6:ed:26:e8:12:8c:9d:33: 04:2a:b3:fc -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEcowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlEREY1OUM0MEE0REM0 NkYxRTcyNDY1OTVFNzZEQzFEMzczNUZGMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgSvHX8hAIZm6IsIU31viHcKlt6kA5qCyDt+FeDWNk/+5CrSoI DUPDb0IGXvHi/28N4PswmbHvj6q25LvOTipv/fP8UKltU/ydyb7OZgAVwONtUpcf wHKJ5kGb19M+HR59KnFbSqs3yUhb0hzXPp2FrgS5Bsqrre6/R4AwcWr0HFGkqMBt E2ySw6InHInc9nkp4sEq7ciI+LAiNZOYo38M3j3H+aS8ocpDAH1nprgk7rlxVLIQ ThdLE+W7tn4a8jsAD0YmHFmF4OL2XULYh0e2x60K6kjAwts3vdTNacAAPBkBIeLQ ck4MQgx8n0ied4E3CUWE/rrZUVTWpeksb3xdAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUnd9ZxApNxG8eckZZXnbcHTc1/xcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbmQ5WnhBcE54RzhlY2ta WlhuYmNIVGMxX3hjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ActNMjANBgkqhkiG9w0BAQsFAAOCAQEAd8KQT6gW6yj4cEvuJzCBuS3PiM5a1/J1 bydrwCDGtItiaeiozEfDlem7z07WU+/xMgcB1c4fMn65K/DivDiFcJCGI9b77dor ozprOjcdAxjaimOTou4H7IO4u3fG1NnNIgetULOpbpEe7NNV6JNFzs2okIBwAmSH EhjnBcWexI42yR5V2CO46dnYo7fLrQcBbvzxoiNMcKqJ2rJGqTjaxu0ssEmtj6HL WhkFBuEBWiqyPrBQMwesavam9aGLy6a9pRtu0/j51hEa2TMZgUfdJt5rfNdMRsP1 TSaF8cgqCV1SodZMkk4pM7Kb15YGzzxwSoM5DvbtJugSjJ0zBCqz/A== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org