$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/o1Z6aJVaaBeryuyB8O_AZCDkA3I.roa File: o1Z6aJVaaBeryuyB8O_AZCDkA3I.roa (raw, json) Hash identifier: 50jHZAy7fQD4YIcbqV7C9inbrTjQyVyvRWp0NJiZUZQ= Subject key identifier: A3:56:7A:68:95:5A:68:17:AB:CA:EC:81:F0:EF:C0:64:20:E4:03:72 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11E4 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/o1Z6aJVaaBeryuyB8O_AZCDkA3I.roa Signing time: Mon 26 Aug 2024 05:24:29 +0000 ROA not before: Mon 26 Aug 2024 05:24:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 210.62.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4580 (0x11e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A3567A68955A6817ABCAEC81F0EFC06420E40372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0e:c3:8a:fa:e2:4d:3c:7f:ce:46:c6:07:07: fe:26:44:67:9c:9b:f0:0c:5f:85:f7:cc:28:e8:9f: b4:f7:9e:27:51:fb:95:75:fa:9d:fa:39:6d:41:0b: 31:2a:0f:93:5e:06:e3:6f:06:ed:38:5a:30:bc:03: 0d:b4:ba:18:2a:84:ff:08:78:4a:d7:cb:d9:aa:ec: fb:2d:e6:ab:f7:c9:2b:75:d7:e7:e1:29:aa:cf:43: 71:ca:46:38:5d:29:e4:3e:70:7c:45:9b:48:c3:3a: c3:b5:a8:4b:68:c1:a6:34:c4:32:a0:11:cc:8b:4c: 01:6c:c4:af:ee:e6:f3:4e:06:0a:c1:80:c1:0d:b2: 8b:68:4c:06:eb:4e:a2:0d:4c:8e:17:5f:0f:e1:5c: 46:d8:79:a2:3e:20:6c:9a:12:19:ac:13:19:1c:a3: 68:b1:5d:59:be:fc:3b:0a:84:88:1c:9e:d0:51:9c: ba:14:e2:6c:88:80:ce:17:7d:a8:df:a5:4e:af:02: 3f:45:ad:e6:b5:f6:c9:9f:1e:dc:f3:aa:55:3a:91: dd:b2:d0:f1:ec:c5:ed:9e:f3:c5:0c:99:3c:7b:a9: f0:a2:1a:1a:71:79:7b:f1:e4:7d:71:dd:bf:b0:55: 2b:b7:8c:22:dd:9d:7c:e2:c0:14:23:5c:c8:cb:5e: ab:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:56:7A:68:95:5A:68:17:AB:CA:EC:81:F0:EF:C0:64:20:E4:03:72 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/o1Z6aJVaaBeryuyB8O_AZCDkA3I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.0.0/19 Signature Algorithm: sha256WithRSAEncryption 37:db:ee:db:53:2b:b7:f4:aa:4d:27:e9:42:e0:18:4d:1d:cd: ee:3d:82:ce:52:3e:cd:80:c6:0d:64:4c:b4:59:4c:a7:cc:71: fb:00:28:a0:59:b0:10:1d:5e:be:2c:64:c5:5c:f1:e3:b3:b8: e7:af:01:31:45:3e:49:8a:86:c6:f7:31:8e:2f:9a:95:76:aa: d8:19:1f:a1:ac:ed:d8:47:07:df:c8:82:f0:68:3b:de:bc:0c: 38:56:81:a4:9d:35:23:a7:19:85:f0:45:3b:a9:9e:61:1b:f2: 04:77:71:9a:46:a3:ac:87:a8:bb:e0:31:ea:83:c3:32:3a:58: b3:75:39:69:68:d5:5b:75:dc:9a:7c:d9:02:35:1b:e1:3d:6c: cc:16:66:67:c6:f6:cd:3b:8a:86:39:26:a0:9f:c0:2d:8e:47: eb:7d:9c:3d:c3:fe:82:c5:5c:cd:b5:73:cb:62:ef:a1:39:1e: fb:a8:4a:ad:6c:82:29:a2:00:32:60:2e:5f:3d:08:8a:f1:41: 16:41:6d:c0:b9:4e:88:56:07:21:89:1b:ee:e5:a8:f4:57:a0: ea:19:b7:eb:94:8f:01:9d:31:ad:74:a5:09:46:1f:40:a5:6e: 2d:eb:76:3a:36:d1:c9:53:af:52:10:f8:39:b4:da:79:89:e6: b4:b2:e5:9c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEeQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzNTY3QTY4OTU1QTY4 MTdBQkNBRUM4MUYwRUZDMDY0MjBFNDAzNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaDsOK+uJNPH/ORsYHB/4mRGecm/AMX4X3zCjon7T3nidR+5V1 +p36OW1BCzEqD5NeBuNvBu04WjC8Aw20uhgqhP8IeErXy9mq7Pst5qv3ySt11+fh KarPQ3HKRjhdKeQ+cHxFm0jDOsO1qEtowaY0xDKgEcyLTAFsxK/u5vNOBgrBgMEN sotoTAbrTqINTI4XXw/hXEbYeaI+IGyaEhmsExkco2ixXVm+/DsKhIgcntBRnLoU 4myIgM4XfajfpU6vAj9Frea19smfHtzzqlU6kd2y0PHsxe2e88UMmTx7qfCiGhpx eXvx5H1x3b+wVSu3jCLdnXziwBQjXMjLXqvtAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUo1Z6aJVaaBeryuyB8O/AZCDkA3IwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbzFaNmFKVmFhQmVyeXV5 QjhPX0FaQ0RrQTNJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdI+ADANBgkqhkiG9w0BAQsFAAOCAQEAN9vu21Mrt/SqTSfpQuAYTR3N7j2CzlI+ zYDGDWRMtFlMp8xx+wAooFmwEB1evixkxVzx47O4568BMUU+SYqGxvcxji+alXaq 2Bkfoazt2EcH38iC8Gg73rwMOFaBpJ01I6cZhfBFO6meYRvyBHdxmkajrIeou+Ax 6oPDMjpYs3U5aWjVW3XcmnzZAjUb4T1szBZmZ8b2zTuKhjkmoJ/ALY5H632cPcP+ gsVczbVzy2LvoTke+6hKrWyCKaIAMmAuXz0IivFBFkFtwLlOiFYHIYkb7uWo9Feg 6hm365SPAZ0xrXSlCUYfQKVuLet2OjbRyVOvUhD4ObTaeYnmtLLlnA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org