$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nkyEmFqriTMwNCKXZ3DJfzxperc.roa File: nkyEmFqriTMwNCKXZ3DJfzxperc.roa (raw, json) Hash identifier: XNZvubJvPzMLMl0UL40A0meaq3TrAz1Q1eA+Az88mKo= Subject key identifier: 9E:4C:84:98:5A:AB:89:33:30:34:22:97:67:70:C9:7F:3C:69:7A:B7 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1237 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nkyEmFqriTMwNCKXZ3DJfzxperc.roa Signing time: Mon 26 Aug 2024 05:24:48 +0000 ROA not before: Mon 26 Aug 2024 05:24:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131628 IP address blocks: 175.99.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4663 (0x1237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9E4C84985AAB8933303422976770C97F3C697AB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6a:bf:82:0d:5e:46:83:13:e3:34:f3:db:81: c3:5a:58:ab:e6:39:1d:d9:ce:65:a6:e1:58:da:fd: f8:ce:3e:8a:da:88:27:ca:ab:d2:75:44:ec:87:03: 14:7d:8c:13:18:b6:be:23:15:8f:50:75:11:1a:aa: ea:64:61:1b:cb:d9:16:85:b9:5b:f9:d5:7a:22:b1: a7:83:f7:c0:e5:42:1a:21:2a:92:48:b5:be:59:03: 8e:be:df:03:6f:89:16:2c:cd:9e:16:3c:61:29:d5: fd:a6:1d:77:7c:a5:b7:f6:08:42:4b:0e:83:58:50: 4a:0c:f8:d3:33:96:c2:13:ab:2e:e2:ad:a4:4b:5a: 04:81:b0:e2:c9:2c:73:6f:d4:05:41:f5:26:b8:3c: c8:26:66:1a:94:94:cd:e3:07:34:e4:c4:ca:35:11: 81:f4:cd:ce:3e:cf:33:65:e8:15:10:0d:8f:73:1c: fe:de:e1:14:d4:e2:ec:d9:e2:86:ad:be:e8:d3:8a: 34:d3:3a:85:9e:3a:08:9d:fc:1a:5a:cb:0d:68:89: c2:88:1a:5d:fc:b6:95:25:52:58:5b:11:86:0c:c1: ab:08:64:e9:e6:ed:a4:0b:94:5f:1a:7e:3f:94:00: 66:1f:4f:c0:98:eb:d3:0e:26:f1:32:ec:97:43:b9: e3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:4C:84:98:5A:AB:89:33:30:34:22:97:67:70:C9:7F:3C:69:7A:B7 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nkyEmFqriTMwNCKXZ3DJfzxperc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.99.192.0/19 Signature Algorithm: sha256WithRSAEncryption 90:48:d9:c4:82:32:9a:83:aa:02:68:54:04:68:59:78:13:f1: 25:56:2c:45:ae:31:23:4b:00:0e:43:ab:24:de:56:f9:cd:3e: cb:52:7f:ff:4d:4f:83:da:71:9f:6d:12:29:07:d1:f3:1e:d5: 05:5a:2d:6e:96:61:08:a0:0f:2d:c5:bd:be:32:e2:01:fc:9f: 95:b7:93:fb:34:4f:5d:88:67:a8:c4:4c:d0:30:4c:b5:75:07: 71:49:2b:c1:31:55:b4:12:bd:20:92:f6:60:6e:c5:79:40:18: b1:96:5c:ef:77:ca:0b:14:4a:a3:88:bf:57:7f:e1:50:a5:7a: 80:11:d8:8c:45:11:cd:c8:d3:fd:df:50:5f:2c:0f:93:fc:2a: 02:4d:87:ea:b7:61:f8:cf:d8:a5:dd:3b:0c:90:f3:d4:c9:f0: 80:f7:84:db:c0:93:b0:66:88:6c:1e:ef:1f:5f:4c:41:eb:48: f9:1d:15:ec:d7:b5:c1:10:0d:93:64:27:9d:35:0b:0a:b7:c2: 2a:3f:f4:5f:c6:41:52:7b:16:ff:2f:e9:5f:d8:f3:ab:fc:43: c4:dd:9e:67:a4:06:12:91:e3:62:f0:30:06:30:f8:a1:0b:48: 43:f4:15:bd:70:db:52:ad:5f:0c:8c:e5:fb:27:9d:9c:9e:0a: 85:93:4d:4e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEjcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlFNEM4NDk4NUFBQjg5 MzMzMDM0MjI5NzY3NzBDOTdGM0M2OTdBQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUar+CDV5GgxPjNPPbgcNaWKvmOR3ZzmWm4Vja/fjOPoraiCfK q9J1ROyHAxR9jBMYtr4jFY9QdREaqupkYRvL2RaFuVv51XoisaeD98DlQhohKpJI tb5ZA46+3wNviRYszZ4WPGEp1f2mHXd8pbf2CEJLDoNYUEoM+NMzlsITqy7iraRL WgSBsOLJLHNv1AVB9Sa4PMgmZhqUlM3jBzTkxMo1EYH0zc4+zzNl6BUQDY9zHP7e 4RTU4uzZ4oatvujTijTTOoWeOgid/Bpayw1oicKIGl38tpUlUlhbEYYMwasIZOnm 7aQLlF8afj+UAGYfT8CY69MOJvEy7JdDueOBAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUnkyEmFqriTMwNCKXZ3DJfzxpercwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbmt5RW1GcXJpVE13TkNL WFozREpmenhwZXJjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Ba9jwDANBgkqhkiG9w0BAQsFAAOCAQEAkEjZxIIymoOqAmhUBGhZeBPxJVYsRa4x I0sADkOrJN5W+c0+y1J//01Pg9pxn20SKQfR8x7VBVotbpZhCKAPLcW9vjLiAfyf lbeT+zRPXYhnqMRM0DBMtXUHcUkrwTFVtBK9IJL2YG7FeUAYsZZc73fKCxRKo4i/ V3/hUKV6gBHYjEURzcjT/d9QXywPk/wqAk2H6rdh+M/Ypd07DJDz1MnwgPeE28CT sGaIbB7vH19MQetI+R0V7Ne1wRANk2QnnTULCrfCKj/0X8ZBUnsW/y/pX9jzq/xD xN2eZ6QGEpHjYvAwBjD4oQtIQ/QVvXDbUq1fDIzl+yednJ4KhZNNTg== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:49 2024 by rpki-client on console-ams.rpki-client.org