$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pb40MMC68jto3mkGdpCyYxzgqFg.roa File: pb40MMC68jto3mkGdpCyYxzgqFg.roa (raw, json) Hash identifier: 6C7mH31y3ES+fUSA8WKY6PBxG53Vih7R335/ErVfvXg= Subject key identifier: A5:BE:34:30:C0:BA:F2:3B:68:DE:69:06:76:90:B2:63:1C:E0:A8:58 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F86 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pb40MMC68jto3mkGdpCyYxzgqFg.roa Signing time: Fri 01 Sep 2023 09:36:57 +0000 ROA not before: Fri 01 Sep 2023 09:36:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 210.67.144.0/20 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3974 (0xf86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:36:57 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A5BE3430C0BAF23B68DE69067690B2631CE0A858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b9:22:d9:4d:8d:6f:0d:43:ec:b7:ee:cd:f2: d1:be:d7:b4:e0:94:21:7d:b3:de:9e:c8:ce:b3:3f: be:f6:c5:0a:75:11:09:e5:8a:e0:07:2e:a2:67:61: 3d:01:ff:47:3d:69:4f:54:ea:a2:c5:af:d7:43:a2: 74:bb:21:07:90:98:ee:36:38:9a:c0:2f:35:66:74: 22:81:f5:63:b7:22:31:fe:51:4a:3c:f1:a1:18:22: 0d:4e:0d:a4:9d:b6:38:24:98:19:8b:67:73:85:f1: f9:9a:19:da:de:53:01:f2:92:a2:cd:3c:36:83:92: 19:b4:d3:2e:c3:70:35:17:6f:80:71:6d:57:38:92: eb:ba:a1:c3:19:ea:90:dd:c9:a9:ec:40:a2:4c:21: 47:f3:b2:df:39:9c:ac:e2:57:f5:bd:ed:02:0d:59: 04:e6:c8:e1:89:2a:6c:56:ad:9c:19:dd:19:14:65: 18:63:56:7d:2b:26:ac:5b:f3:0e:86:e3:b8:c2:17: 9e:cb:f0:ff:30:72:1e:b8:53:d3:39:b8:1f:46:38: 10:eb:47:52:75:38:05:03:8f:a1:60:78:ee:36:be: c2:2e:3b:3a:2e:23:97:f1:e2:d7:a1:01:f3:fb:4d: d1:94:3c:14:2d:6e:51:d0:03:15:24:d0:ea:57:c0: 93:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:BE:34:30:C0:BA:F2:3B:68:DE:69:06:76:90:B2:63:1C:E0:A8:58 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pb40MMC68jto3mkGdpCyYxzgqFg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.144.0/20 Signature Algorithm: sha256WithRSAEncryption 13:52:f4:cb:19:50:ac:3e:47:b3:07:cf:64:ab:1d:56:8f:fb: 39:ab:b2:80:3a:a9:eb:ae:70:03:79:ef:30:aa:71:aa:5d:48: f0:fb:48:45:e1:d6:33:08:02:b3:df:d6:f1:81:eb:30:e2:f6: f1:36:7c:5b:90:b2:f5:ae:ff:b2:0c:c8:5b:58:e3:8c:66:23: 0f:33:0b:3c:ef:b9:71:4d:61:fe:fd:de:85:24:7e:e1:37:57: f1:a7:57:d7:1f:e0:b5:4c:e2:a8:82:bc:a8:59:f7:d6:32:7b: b7:74:21:39:f9:a7:73:50:91:59:9b:49:2f:e6:d2:46:05:31: 2f:d4:50:b3:6d:86:56:14:2b:02:3f:c2:9d:53:58:41:d7:f0: f4:98:f0:84:dc:9e:f7:3e:2a:43:54:8b:bf:37:03:a4:71:90: 7f:76:3f:7d:c5:1c:26:01:3d:43:29:02:8d:53:e9:18:bc:19: cb:11:fd:3c:f3:e7:f4:57:46:4b:36:23:29:1d:72:d1:35:54: 32:90:42:76:4e:68:e2:b7:6a:54:da:66:69:89:d5:fa:a7:5e: d7:3d:1e:8a:8d:60:e0:d7:55:37:eb:91:46:62:9d:e1:99:3f: b1:aa:ad:49:c7:3c:62:bf:92:c0:46:1b:7e:55:8f:1d:86:d3: b3:13:10:90 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD4YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM2NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE1QkUzNDMwQzBCQUYy M0I2OERFNjkwNjc2OTBCMjYzMUNFMEE4NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmuSLZTY1vDUPst+7N8tG+17TglCF9s96eyM6zP772xQp1EQnl iuAHLqJnYT0B/0c9aU9U6qLFr9dDonS7IQeQmO42OJrALzVmdCKB9WO3IjH+UUo8 8aEYIg1ODaSdtjgkmBmLZ3OF8fmaGdreUwHykqLNPDaDkhm00y7DcDUXb4BxbVc4 kuu6ocMZ6pDdyansQKJMIUfzst85nKziV/W97QINWQTmyOGJKmxWrZwZ3RkUZRhj Vn0rJqxb8w6G47jCF57L8P8wch64U9M5uB9GOBDrR1J1OAUDj6FgeO42vsIuOzou I5fx4tehAfP7TdGUPBQtblHQAxUk0OpXwJOJAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUpb40MMC68jto3mkGdpCyYxzgqFgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcGI0ME1NQzY4anRvM21r R2RwQ3lZeHpncUZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNJDkDANBgkqhkiG9w0BAQsFAAOCAQEAE1L0yxlQrD5HswfPZKsdVo/7OauygDqp 665wA3nvMKpxql1I8PtIReHWMwgCs9/W8YHrMOL28TZ8W5Cy9a7/sgzIW1jjjGYj DzMLPO+5cU1h/v3ehSR+4TdX8adX1x/gtUziqIK8qFn31jJ7t3QhOfmnc1CRWZtJ L+bSRgUxL9RQs22GVhQrAj/CnVNYQdfw9JjwhNye9z4qQ1SLvzcDpHGQf3Y/fcUc JgE9QykCjVPpGLwZyxH9PPPn9FdGSzYjKR1y0TVUMpBCdk5o4rdqVNpmaYnV+qde 1z0eio1g4NdVN+uRRmKd4Zk/saqtScc8Yr+SwEYbflWPHYbTsxMQkA== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:02 2024 by rpki-client on console-fra.rpki-client.org