$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qq2wDhiTa04B7G4WhADuvOCtJGs.roa File: qq2wDhiTa04B7G4WhADuvOCtJGs.roa (raw, json) Hash identifier: 0KDfqlDoX8er4vaWIvHtkGf+4OVwvatQ2SvlwAyAxCM= Subject key identifier: AA:AD:B0:0E:18:93:6B:4E:01:EC:6E:16:84:00:EE:BC:E0:AD:24:6B Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FA4 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qq2wDhiTa04B7G4WhADuvOCtJGs.roa Signing time: Fri 01 Sep 2023 09:37:05 +0000 ROA not before: Fri 01 Sep 2023 09:37:05 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24165 IP address blocks: 203.77.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4004 (0xfa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:05 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AAADB00E18936B4E01EC6E168400EEBCE0AD246B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d1:73:08:f7:7b:73:ab:45:3d:22:ad:9d:01: 6e:e8:e3:68:1d:4d:02:5d:b6:44:d2:76:a5:58:bb: 13:ca:c8:5b:72:8c:dc:ae:18:c9:cc:6b:da:c1:7a: ba:fe:6f:a6:1a:28:f5:00:b8:3f:58:5b:cd:eb:97: 2b:65:2d:a7:77:7d:ba:84:55:bd:61:38:93:cf:e7: 79:36:00:0b:a2:fd:71:ff:09:0d:b5:14:02:2c:3c: 40:63:0c:64:c9:67:05:fe:60:08:e3:cc:1d:ad:83: 4a:dd:00:a7:48:53:ed:da:87:62:a0:3a:7b:65:86: a9:dd:a8:3b:b7:b5:ce:ae:d2:d4:73:72:6c:48:8b: 20:7a:fe:0a:10:09:33:65:6b:d5:27:0c:02:ba:00: 1e:36:83:7b:4d:bb:c5:d6:3c:5b:c5:2c:c0:78:ce: 3d:4d:5a:8f:06:d7:5f:fe:4c:1f:1b:9e:4c:3d:5b: f8:03:e7:db:a2:0a:09:1d:bf:40:8c:46:28:fc:56: 6a:01:fe:99:94:d6:26:e3:38:ab:83:8c:f8:3c:ec: 1c:50:f0:d5:e8:ad:d6:3a:cf:ed:07:58:6a:44:85: 47:16:74:d9:e8:68:35:dc:c9:ee:d1:01:3d:5f:07: 0d:8b:b0:cc:e2:2e:ef:21:28:88:8d:18:e8:bd:02: 3a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:AD:B0:0E:18:93:6B:4E:01:EC:6E:16:84:00:EE:BC:E0:AD:24:6B X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qq2wDhiTa04B7G4WhADuvOCtJGs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.40.0/22 Signature Algorithm: sha256WithRSAEncryption 93:c7:02:aa:a8:92:4a:94:b0:a9:71:a3:06:4c:5d:07:a8:b2: 20:84:43:f5:0c:b8:f7:ba:3d:b4:e1:9e:d2:aa:31:56:61:d3: 5c:1b:31:a0:9f:22:66:f7:8b:ea:02:44:18:20:40:42:e3:a7: e0:17:40:ad:55:df:2f:09:5c:46:04:fe:28:9b:88:70:6c:20: 6b:37:3f:4a:c8:da:83:6f:e9:ef:91:38:84:60:78:b7:f8:24: 25:a5:cf:40:bc:46:c6:df:34:72:57:ec:d6:b6:40:e0:4e:f2: 37:d7:70:db:b1:d6:3f:36:ae:1f:4b:9c:f4:3e:ec:48:a4:1f: e9:b4:2b:95:61:58:21:62:6c:28:d8:97:d9:9f:a3:ac:8c:b7: 24:3e:19:86:23:5a:1e:08:95:8b:e5:ec:f2:05:32:b1:7f:38: ec:ba:73:b9:10:dd:bc:08:45:1e:48:00:01:7d:27:cd:e7:c4: 4d:d0:ef:11:86:00:15:64:df:fb:2b:04:25:68:ab:10:78:2d: 4a:3a:e1:25:3b:fb:43:67:b5:64:61:a4:01:53:99:b5:40:9c: 86:83:ad:08:39:51:26:61:61:4f:17:6a:25:97:70:6f:00:89: 6b:10:4c:b1:81:50:b0:71:9f:62:eb:6d:35:fe:6b:61:fb:a6: 24:9a:92:86 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD6QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFBQURCMDBFMTg5MzZC NEUwMUVDNkUxNjg0MDBFRUJDRTBBRDI0NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB0XMI93tzq0U9Iq2dAW7o42gdTQJdtkTSdqVYuxPKyFtyjNyu GMnMa9rBerr+b6YaKPUAuD9YW83rlytlLad3fbqEVb1hOJPP53k2AAui/XH/CQ21 FAIsPEBjDGTJZwX+YAjjzB2tg0rdAKdIU+3ah2KgOntlhqndqDu3tc6u0tRzcmxI iyB6/goQCTNla9UnDAK6AB42g3tNu8XWPFvFLMB4zj1NWo8G11/+TB8bnkw9W/gD 59uiCgkdv0CMRij8VmoB/pmU1ibjOKuDjPg87BxQ8NXordY6z+0HWGpEhUcWdNno aDXcye7RAT1fBw2LsMziLu8hKIiNGOi9AjqnAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUqq2wDhiTa04B7G4WhADuvOCtJGswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcXEyd0RoaVRhMDRCN0c0 V2hBRHV2T0N0SkdzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AstNKDANBgkqhkiG9w0BAQsFAAOCAQEAk8cCqqiSSpSwqXGjBkxdB6iyIIRD9Qy4 97o9tOGe0qoxVmHTXBsxoJ8iZveL6gJEGCBAQuOn4BdArVXfLwlcRgT+KJuIcGwg azc/Ssjag2/p75E4hGB4t/gkJaXPQLxGxt80clfs1rZA4E7yN9dw27HWPzauH0uc 9D7sSKQf6bQrlWFYIWJsKNiX2Z+jrIy3JD4ZhiNaHgiVi+Xs8gUysX847LpzuRDd vAhFHkgAAX0nzefETdDvEYYAFWTf+ysEJWirEHgtSjrhJTv7Q2e1ZGGkAVOZtUCc hoOtCDlRJmFhTxdqJZdwbwCJaxBMsYFQsHGfYuttNf5rYfumJJqShg== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:02 2024 by rpki-client on console-fra.rpki-client.org