$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sW0AU0_0d1tmB0pY9dYhCRC2SG4.roa File: sW0AU0_0d1tmB0pY9dYhCRC2SG4.roa (raw, json) Hash identifier: 1cy9sdl2sSE7G7sk/l0FPRS2/LN5P6rUkCjHgw24Dnw= Subject key identifier: B1:6D:00:53:4F:F4:77:5B:66:07:4A:58:F5:D6:21:09:10:B6:48:6E Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1202 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sW0AU0_0d1tmB0pY9dYhCRC2SG4.roa Signing time: Mon 26 Aug 2024 05:24:36 +0000 ROA not before: Mon 26 Aug 2024 05:24:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131628 IP address blocks: 175.99.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4610 (0x1202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B16D00534FF4775B66074A58F5D6210910B6486E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d7:86:d4:59:72:53:bb:53:e4:5e:33:2e:75: 86:5d:c0:57:f7:c8:0f:bc:ad:8a:69:a2:92:c2:9e: 8e:bd:f6:96:64:17:5c:ee:62:83:90:70:c7:0c:e8: 55:99:e6:9c:ed:1d:0c:cd:1f:d3:0d:55:97:84:d6: 0d:55:c0:12:eb:28:99:ea:14:6d:41:ca:d4:2a:18: 0a:ee:41:3b:62:fb:8c:6d:f0:46:2c:f4:d1:c7:75: c7:1d:f2:0c:90:ac:fd:b7:62:a9:d5:05:0c:c7:46: 88:af:4c:f5:61:ea:e4:e8:eb:6c:6f:6a:59:76:01: 27:15:f6:d3:33:d6:47:4f:73:f6:ca:84:ab:78:64: 0f:94:5a:be:bf:52:06:17:7e:86:56:0a:30:58:54: df:a6:93:c6:2d:40:b6:d3:13:50:82:e2:61:3c:75: 3f:67:fb:3b:e7:bc:c4:a5:35:eb:1e:40:33:a1:dc: 26:ce:6b:75:bd:ae:83:e2:1f:b5:8a:91:81:e3:a2: 03:0a:aa:ba:fa:e9:26:9c:19:6b:b3:72:fb:92:81: be:24:b5:4e:4d:67:06:da:3f:d8:3e:71:05:e9:26: 58:df:ed:a9:87:49:08:9a:ba:55:b4:88:e9:1f:6b: c0:68:9c:36:94:33:eb:3e:f4:d3:a7:55:c0:37:ed: 08:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6D:00:53:4F:F4:77:5B:66:07:4A:58:F5:D6:21:09:10:B6:48:6E X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sW0AU0_0d1tmB0pY9dYhCRC2SG4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.99.225.0/24 Signature Algorithm: sha256WithRSAEncryption 56:a0:9b:b5:ac:bb:1b:8e:8a:5d:97:8d:e1:62:1e:a8:e6:af: 25:42:e7:90:f4:2a:41:fa:c1:f3:37:81:8a:0b:16:3d:7e:50: f4:3e:81:21:ea:18:70:64:18:1c:de:8b:43:d8:bb:b1:fd:54: 96:f7:56:47:69:d9:ba:4f:ba:63:af:a6:63:7a:4d:a2:23:cc: 72:80:8a:ef:83:80:6e:1d:7c:e7:54:d5:2b:7b:e3:01:09:bf: 81:53:a4:87:e8:9d:10:02:b9:47:3a:fd:41:4d:a2:2b:e9:4f: ce:ef:4d:0f:6e:db:6e:b3:32:4b:4b:30:cf:6d:3e:2a:34:d5: e4:0c:39:9f:75:ec:09:b8:e1:36:de:d5:63:60:26:d9:71:37: 43:97:e9:93:5e:b2:71:f1:db:f3:cb:b0:45:93:c7:49:2d:48: fb:ea:9f:33:55:61:fd:9a:45:9c:9b:05:ca:ab:d7:ad:22:c6: 05:01:4e:81:e1:9c:8b:ce:be:37:84:06:a4:4d:d8:4b:a1:a8: de:78:a8:97:f7:73:20:2d:be:75:36:ec:fb:f1:35:15:a7:39: c5:ba:bd:27:3d:32:08:f8:cd:d0:9c:df:16:07:3c:f0:f3:64: de:ce:d2:26:fd:a0:92:95:1f:7d:c2:b1:8c:46:07:af:2b:9e: bb:97:61:ee -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEgIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIxNkQwMDUzNEZGNDc3 NUI2NjA3NEE1OEY1RDYyMTA5MTBCNjQ4NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC814bUWXJTu1PkXjMudYZdwFf3yA+8rYppopLCno699pZkF1zu YoOQcMcM6FWZ5pztHQzNH9MNVZeE1g1VwBLrKJnqFG1BytQqGAruQTti+4xt8EYs 9NHHdccd8gyQrP23YqnVBQzHRoivTPVh6uTo62xvall2AScV9tMz1kdPc/bKhKt4 ZA+UWr6/UgYXfoZWCjBYVN+mk8YtQLbTE1CC4mE8dT9n+zvnvMSlNeseQDOh3CbO a3W9roPiH7WKkYHjogMKqrr66SacGWuzcvuSgb4ktU5NZwbaP9g+cQXpJljf7amH SQiaulW0iOkfa8BonDaUM+s+9NOnVcA37Qi9AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUsW0AU0/0d1tmB0pY9dYhCRC2SG4wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvc1cwQVUwXzBkMXRtQjBw WTlkWWhDUkMyU0c0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AK9j4TANBgkqhkiG9w0BAQsFAAOCAQEAVqCbtay7G46KXZeN4WIeqOavJULnkPQq QfrB8zeBigsWPX5Q9D6BIeoYcGQYHN6LQ9i7sf1UlvdWR2nZuk+6Y6+mY3pNoiPM coCK74OAbh1851TVK3vjAQm/gVOkh+idEAK5Rzr9QU2iK+lPzu9ND27bbrMyS0sw z20+KjTV5Aw5n3XsCbjhNt7VY2Am2XE3Q5fpk16ycfHb88uwRZPHSS1I++qfM1Vh /ZpFnJsFyqvXrSLGBQFOgeGci86+N4QGpE3YS6Go3niol/dzIC2+dTbs+/E1Fac5 xbq9Jz0yCPjN0JzfFgc88PNk3s7SJv2gkpUffcKxjEYHryueu5dh7g== -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:47 2024 by rpki-client on console-fra.rpki-client.org