$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oze_cznm6cQ0_Svl8Xj--aBznYc.roa File: oze_cznm6cQ0_Svl8Xj--aBznYc.roa (raw, json) Hash identifier: xq7QJFqhDHTSpeVb3yzc65g/Hk84hC4hHDfpJDMgjX8= Subject key identifier: A3:37:BF:73:39:E6:E9:C4:34:FD:2B:E5:F1:78:FE:F9:A0:73:9D:87 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1225 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oze_cznm6cQ0_Svl8Xj--aBznYc.roa Signing time: Mon 26 Aug 2024 05:24:44 +0000 ROA not before: Mon 26 Aug 2024 05:24:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 49.214.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4645 (0x1225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A337BF7339E6E9C434FD2BE5F178FEF9A0739D87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:76:fb:34:2e:55:25:be:f3:81:db:43:43:eb: 5b:ca:7e:6c:be:40:e8:4d:03:59:dd:41:ea:8b:35: 30:f8:f2:74:15:af:09:3d:70:3d:2b:3a:31:c6:09: 0d:fd:ec:17:d1:f5:d9:71:52:8b:05:1d:cb:70:f7: 49:ab:19:12:4d:bd:a1:ae:88:48:f1:ad:1c:d2:a6: 20:5e:7f:43:cd:0f:d5:f3:29:a3:a4:51:4a:bb:4c: 85:cf:0d:5c:b6:8f:2f:c4:cc:a6:44:6e:73:00:53: f7:72:b3:49:25:d1:e4:11:fd:c7:82:a8:ab:91:6b: d7:39:98:14:60:8a:26:1f:0d:67:6a:fb:fa:25:fd: b9:22:6d:b8:e2:02:1d:bf:39:b1:76:df:bc:f1:56: 53:7e:e3:97:5a:b9:9a:01:38:8e:5d:1e:82:15:46: a1:4b:9c:c4:50:8b:c5:78:4b:88:75:50:2b:ab:74: 80:a8:39:dd:5c:55:10:b6:47:03:f1:9f:3f:af:94: ef:0c:19:56:10:3b:c8:42:fc:29:1d:40:e3:af:e3: 25:a7:a5:70:b7:34:ba:b9:92:ce:9e:cc:79:09:d3: 47:3f:1d:01:ac:41:6c:ef:28:b2:0a:7f:25:7c:d5: 60:37:9e:43:f2:31:cf:7d:dd:4c:e7:e9:6d:67:fb: 7d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:37:BF:73:39:E6:E9:C4:34:FD:2B:E5:F1:78:FE:F9:A0:73:9D:87 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oze_cznm6cQ0_Svl8Xj--aBznYc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.214.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6e:b0:1e:63:72:1b:06:74:c0:4a:fb:7e:bb:32:66:8e:1b:91: 94:08:e2:1a:71:30:2b:fa:a1:4a:e1:07:d9:ea:13:7b:07:18: 70:be:a5:08:01:6c:2b:97:c6:f8:0a:e0:ca:78:cd:e9:b3:15: e3:b4:89:f2:24:87:6d:1e:e9:0a:57:c4:dc:37:18:9d:0a:89: a4:8a:10:0f:ba:5d:47:76:cc:33:e2:4a:ff:9c:ae:ab:f3:5f: 12:bd:54:9c:84:4b:11:5b:70:3e:14:b0:ea:da:49:69:44:2d: 73:35:a7:d1:34:b8:cd:68:cd:3b:43:0d:4f:35:c7:92:cc:b2: 1e:f1:6f:9d:a4:b9:3f:67:7f:e2:4c:24:da:6c:92:e4:4e:21: 3d:4f:aa:d5:b0:16:94:7b:75:39:a1:f9:a6:c5:55:05:f0:4f: 10:c3:d5:d8:0c:97:ef:8f:d4:72:ec:fa:a3:15:30:6f:d7:8e: 49:2e:6b:b3:02:31:87:0d:55:d9:ea:e0:95:b1:52:b6:56:0d: df:15:29:c9:98:46:eb:fc:09:56:d9:04:d1:ca:81:0d:25:f6: 33:a4:e8:72:0b:50:2d:da:f3:50:9c:d8:29:9b:14:73:c4:50: 02:a7:ac:27:20:2f:b9:96:df:09:31:f9:be:e6:3d:91:4c:1c: 27:b4:ea:94 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzMzdCRjczMzlFNkU5 QzQzNEZEMkJFNUYxNzhGRUY5QTA3MzlEODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChdvs0LlUlvvOB20ND61vKfmy+QOhNA1ndQeqLNTD48nQVrwk9 cD0rOjHGCQ397BfR9dlxUosFHctw90mrGRJNvaGuiEjxrRzSpiBef0PND9XzKaOk UUq7TIXPDVy2jy/EzKZEbnMAU/dys0kl0eQR/ceCqKuRa9c5mBRgiiYfDWdq+/ol /bkibbjiAh2/ObF237zxVlN+45dauZoBOI5dHoIVRqFLnMRQi8V4S4h1UCurdICo Od1cVRC2RwPxnz+vlO8MGVYQO8hC/CkdQOOv4yWnpXC3NLq5ks6ezHkJ00c/HQGs QWzvKLIKfyV81WA3nkPyMc993Uzn6W1n+309AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUoze/cznm6cQ0/Svl8Xj++aBznYcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvb3plX2N6bm02Y1EwX1N2 bDhYai0tYUJ6blljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD ATHWMA0GCSqGSIb3DQEBCwUAA4IBAQBusB5jchsGdMBK+367MmaOG5GUCOIacTAr +qFK4QfZ6hN7BxhwvqUIAWwrl8b4CuDKeM3psxXjtInyJIdtHukKV8TcNxidComk ihAPul1Hdswz4kr/nK6r818SvVSchEsRW3A+FLDq2klpRC1zNafRNLjNaM07Qw1P NceSzLIe8W+dpLk/Z3/iTCTabJLkTiE9T6rVsBaUe3U5ofmmxVUF8E8Qw9XYDJfv j9Ry7PqjFTBv145JLmuzAjGHDVXZ6uCVsVK2Vg3fFSnJmEbr/AlW2QTRyoENJfYz pOhyC1At2vNQnNgpmxRzxFACp6wnIC+5lt8JMfm+5j2RTBwntOqU -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org