$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qONm_VgAOL8Te0n9q6uLJZo-dYg.roa File: qONm_VgAOL8Te0n9q6uLJZo-dYg.roa (raw, json) Hash identifier: WKhjfm7KPyBI1wj2gOAHZHbzHkAXtSbybKGyuKgZJ0k= Subject key identifier: A8:E3:66:FD:58:00:38:BF:13:7B:49:FD:AB:AB:8B:25:9A:3E:75:88 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F70 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qONm_VgAOL8Te0n9q6uLJZo-dYg.roa Signing time: Fri 01 Sep 2023 09:36:50 +0000 ROA not before: Fri 01 Sep 2023 09:36:50 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 210.17.112.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3952 (0xf70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:36:50 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A8E366FD580038BF137B49FDABAB8B259A3E7588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:65:3e:6d:17:96:42:91:8b:fa:f7:40:99:0c: de:c7:cf:00:12:f8:20:c5:8f:77:b1:d9:14:73:e6: 92:86:f2:ab:19:d4:b8:aa:14:14:f9:4a:f2:17:eb: f3:a2:31:d2:85:a9:f3:ae:d9:07:d2:68:3e:b6:a0: e9:d6:63:2b:48:ae:4e:e7:82:08:8d:28:55:89:a1: 4f:cc:6d:23:30:6c:70:01:22:26:61:2b:7a:05:7d: d4:df:c4:f7:8d:86:b2:ca:3b:27:88:52:e5:5c:f7: 1e:88:1e:8f:b8:2a:9a:03:22:e6:27:c3:77:57:68: 3a:86:ce:a7:63:cd:13:e0:34:b3:8d:da:1a:34:55: 3a:cd:e4:d7:a0:80:ba:87:6f:b4:b2:05:5f:4c:ed: 80:0a:99:eb:35:68:48:a8:88:d2:98:bb:ee:e6:5e: e7:cb:e9:4e:9f:2e:32:6f:f0:c3:12:12:63:18:d0: 1b:b0:1a:0b:b9:30:5d:87:81:81:9a:8d:ab:7c:44: b0:05:d1:76:05:4c:ef:c3:0f:73:25:06:1e:60:54: bf:10:9b:dd:0f:4b:a3:6c:98:64:73:ed:ff:a9:62: ec:61:19:3f:04:2f:6e:99:dc:d3:3e:a8:ee:48:87: 0c:42:02:39:d8:e2:37:41:02:29:d6:68:a1:5f:0c: a0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E3:66:FD:58:00:38:BF:13:7B:49:FD:AB:AB:8B:25:9A:3E:75:88 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qONm_VgAOL8Te0n9q6uLJZo-dYg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.17.112.0/20 Signature Algorithm: sha256WithRSAEncryption 30:dd:2f:c8:ed:3c:6b:82:e8:f8:60:69:a3:8e:d2:2c:9a:d5: 72:90:8b:79:61:da:6c:8b:c4:18:62:1d:77:96:07:5c:8a:a6: c2:38:90:46:56:38:dd:0c:fd:a1:c4:e7:55:32:5b:b5:ad:c8: 1c:fd:f6:bd:27:f1:e9:1d:56:3b:25:b1:b3:b6:07:b8:ec:62: 24:e5:f0:fa:24:72:cf:66:f5:44:f1:b4:51:70:84:01:7b:5b: 88:1f:15:3b:ed:91:3e:30:94:0d:09:5c:48:f0:5c:72:4f:51: 10:31:de:01:d8:a6:b8:c9:16:38:79:e2:72:33:6c:c9:0a:05: c4:21:6b:86:0d:4a:f9:b7:e7:2e:fd:47:5a:0d:89:01:39:4b: cb:27:cf:6d:99:e9:db:7f:41:80:0d:cd:b6:ed:26:02:1b:36: e6:ee:5d:fa:1e:5c:53:6b:9a:02:34:24:de:e1:aa:41:03:ac: 99:53:5c:9e:03:8e:e2:07:dd:c8:0c:e0:1e:7b:18:42:6c:79: 6c:b7:fb:7b:f0:24:a0:bb:47:ca:f4:30:1e:43:74:25:81:85: e8:18:3c:ec:79:4c:0f:12:91:06:35:ee:c9:a2:37:f8:04:cd: 87:49:88:97:d1:7b:eb:ca:20:12:47:e6:ff:56:8e:61:50:78: 3e:c8:6d:79 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD3AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM2NTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE4RTM2NkZENTgwMDM4 QkYxMzdCNDlGREFCQUI4QjI1OUEzRTc1ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5ZT5tF5ZCkYv690CZDN7HzwAS+CDFj3ex2RRz5pKG8qsZ1Liq FBT5SvIX6/OiMdKFqfOu2QfSaD62oOnWYytIrk7nggiNKFWJoU/MbSMwbHABIiZh K3oFfdTfxPeNhrLKOyeIUuVc9x6IHo+4KpoDIuYnw3dXaDqGzqdjzRPgNLON2ho0 VTrN5NeggLqHb7SyBV9M7YAKmes1aEioiNKYu+7mXufL6U6fLjJv8MMSEmMY0Buw Ggu5MF2HgYGajat8RLAF0XYFTO/DD3MlBh5gVL8Qm90PS6NsmGRz7f+pYuxhGT8E L26Z3NM+qO5IhwxCAjnY4jdBAinWaKFfDKB/AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUqONm/VgAOL8Te0n9q6uLJZo+dYgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcU9ObV9WZ0FPTDhUZTBu OXE2dUxKWm8tZFlnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNIRcDANBgkqhkiG9w0BAQsFAAOCAQEAMN0vyO08a4Lo+GBpo47SLJrVcpCLeWHa bIvEGGIdd5YHXIqmwjiQRlY43Qz9ocTnVTJbta3IHP32vSfx6R1WOyWxs7YHuOxi JOXw+iRyz2b1RPG0UXCEAXtbiB8VO+2RPjCUDQlcSPBcck9REDHeAdimuMkWOHni cjNsyQoFxCFrhg1K+bfnLv1HWg2JATlLyyfPbZnp239BgA3Ntu0mAhs25u5d+h5c U2uaAjQk3uGqQQOsmVNcngOO4gfdyAzgHnsYQmx5bLf7e/AkoLtHyvQwHkN0JYGF 6Bg87HlMDxKRBjXuyaI3+ATNh0mIl9F768ogEkfm/1aOYVB4PshteQ== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:02 2024 by rpki-client on console-fra.rpki-client.org