$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rNK7hGX_4JsnqvIM57G4qIvLSk0.roa File: rNK7hGX_4JsnqvIM57G4qIvLSk0.roa (raw, json) Hash identifier: szgShMWQ+7fCOeXe4+qxtk9to/q4k8T+QtK94+4R3+M= Subject key identifier: AC:D2:BB:84:65:FF:E0:9B:27:AA:F2:0C:E7:B1:B8:A8:8B:CB:4A:4D Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FDF Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rNK7hGX_4JsnqvIM57G4qIvLSk0.roa Signing time: Fri 01 Sep 2023 09:37:24 +0000 ROA not before: Fri 01 Sep 2023 09:37:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 203.211.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4063 (0xfdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=ACD2BB8465FFE09B27AAF20CE7B1B8A88BCB4A4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8b:9d:91:8c:60:3b:45:13:9a:dd:5b:07:ad: 94:dd:0d:7c:7e:e4:b9:fc:4d:43:5f:7f:72:a8:77: d3:5a:d6:1b:6e:8e:7c:66:08:eb:6c:9d:32:06:d9: ad:35:63:4b:8c:b9:8d:2f:85:72:b4:cb:b2:ac:32: 20:ea:d2:bb:e8:9a:ff:9c:cb:85:55:6c:8f:d5:b1: 2f:fe:f3:03:13:33:fb:db:93:3e:eb:16:c3:58:51: c3:63:df:a7:63:86:f4:ea:ed:cf:20:54:7d:c4:f3: e2:20:a6:f1:33:01:85:ce:6a:85:62:d0:2e:88:0d: d8:90:42:14:4b:92:b9:73:36:0e:a0:c8:02:d2:a1: 05:96:8e:a8:ba:48:15:d2:97:f4:63:1a:54:77:e6: 8f:e3:0a:48:fa:a6:16:f6:62:89:31:ea:95:c8:7d: fb:d1:52:87:a2:2a:d6:02:30:30:ce:13:c3:be:4f: c3:74:32:b5:f2:a9:e1:d2:35:a0:6f:b5:02:ba:3a: 2e:85:b1:e6:dc:0d:4a:34:ae:20:26:8f:a9:ad:27: 98:37:c6:6b:7a:1d:f4:b3:94:3f:2b:a5:93:21:b5: 70:9d:67:94:39:61:5f:9a:5f:fc:77:9b:f5:b6:e2: 82:d4:44:03:1e:e9:23:4b:cb:8d:53:cd:59:6e:54: b5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D2:BB:84:65:FF:E0:9B:27:AA:F2:0C:E7:B1:B8:A8:8B:CB:4A:4D X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rNK7hGX_4JsnqvIM57G4qIvLSk0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.211.0.0/19 Signature Algorithm: sha256WithRSAEncryption 30:8c:a2:55:18:d2:4c:c9:08:b8:27:9c:56:b3:c4:47:17:8c: 7d:9f:01:26:0b:c8:a4:73:0f:65:aa:7a:26:cc:9f:db:47:ed: be:e8:bd:8f:fb:e8:41:b8:96:23:d7:50:90:cc:31:b0:e5:81: f0:b2:d4:8e:93:e9:93:7e:49:3d:f6:5c:4c:2f:78:41:1f:6b: f1:88:51:95:db:43:0b:6f:61:54:5b:cb:7a:55:3e:d3:b6:7f: b8:97:55:47:61:0a:ee:fe:11:5b:e7:d8:00:09:53:d8:f8:48: 7a:9a:01:1e:e6:fc:c2:3f:58:a9:84:b8:ab:e8:fa:c4:15:ee: 4a:22:c9:ac:63:5b:cf:11:4b:8b:72:e2:03:40:5a:ea:90:9a: 0b:5e:a6:85:04:b9:c6:3a:f5:b0:61:51:5a:a7:56:57:10:c9: c2:e6:a4:29:b4:25:5a:16:65:ac:72:cf:a3:9b:7f:f9:f6:be: 63:7b:db:7e:57:c8:c1:36:44:00:f7:df:c8:15:00:1f:8a:63: ea:3e:8f:13:83:33:af:41:00:cb:45:2f:37:55:9a:55:61:7b: ee:c6:d4:31:ae:e0:f7:ec:f7:55:8e:9f:f3:cb:bb:71:23:54: 17:e6:5b:70:5a:13:14:5c:fc:8e:d0:8e:ec:0d:be:16:2a:39: c3:fb:db:56 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD98wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFDRDJCQjg0NjVGRkUw OUIyN0FBRjIwQ0U3QjFCOEE4OEJDQjRBNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEi52RjGA7RROa3VsHrZTdDXx+5Ln8TUNff3Kod9Na1htujnxm COtsnTIG2a01Y0uMuY0vhXK0y7KsMiDq0rvomv+cy4VVbI/VsS/+8wMTM/vbkz7r FsNYUcNj36djhvTq7c8gVH3E8+IgpvEzAYXOaoVi0C6IDdiQQhRLkrlzNg6gyALS oQWWjqi6SBXSl/RjGlR35o/jCkj6phb2Yokx6pXIffvRUoeiKtYCMDDOE8O+T8N0 MrXyqeHSNaBvtQK6Oi6FsebcDUo0riAmj6mtJ5g3xmt6HfSzlD8rpZMhtXCdZ5Q5 YV+aX/x3m/W24oLURAMe6SNLy41TzVluVLXdAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUrNK7hGX/4JsnqvIM57G4qIvLSk0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvck5LN2hHWF80SnNucXZJ TTU3RzRxSXZMU2swLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BcvTADANBgkqhkiG9w0BAQsFAAOCAQEAMIyiVRjSTMkIuCecVrPERxeMfZ8BJgvI pHMPZap6Jsyf20ftvui9j/voQbiWI9dQkMwxsOWB8LLUjpPpk35JPfZcTC94QR9r 8YhRldtDC29hVFvLelU+07Z/uJdVR2EK7v4RW+fYAAlT2PhIepoBHub8wj9YqYS4 q+j6xBXuSiLJrGNbzxFLi3LiA0Ba6pCaC16mhQS5xjr1sGFRWqdWVxDJwuakKbQl WhZlrHLPo5t/+fa+Y3vbflfIwTZEAPffyBUAH4pj6j6PE4Mzr0EAy0UvN1WaVWF7 7sbUMa7g9+z3VY6f88u7cSNUF+ZbcFoTFFz8jtCO7A2+Fio5w/vbVg== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org