$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tStyNaVIZtGPStJngSEW4-1v9Dg.roa File: tStyNaVIZtGPStJngSEW4-1v9Dg.roa (raw, json) Hash identifier: oE/lhpE7v4ENX9lil3sm3Rjsa7KY9XvJyu3EcLdy4cg= Subject key identifier: B5:2B:72:35:A5:48:66:D1:8F:4A:D2:67:81:21:16:E3:ED:6F:F4:38 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1239 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tStyNaVIZtGPStJngSEW4-1v9Dg.roa Signing time: Mon 26 Aug 2024 05:24:48 +0000 ROA not before: Mon 26 Aug 2024 05:24:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 61.30.239.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4665 (0x1239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B52B7235A54866D18F4AD267812116E3ED6FF438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b7:36:11:74:be:6a:f4:05:30:ac:57:63:4b: 4e:62:50:7f:4c:56:cf:ed:4e:6e:35:fe:03:92:a7: 1d:95:57:ed:92:3c:83:27:ef:78:58:eb:e4:d3:1f: c5:59:91:af:07:04:40:b4:0b:9c:82:e9:b2:63:38: 21:30:1a:46:cb:c2:c8:8b:44:08:b4:af:18:a2:1b: 46:c5:71:9a:61:38:8b:9f:76:08:51:68:13:97:62: 42:41:da:85:c1:c0:99:eb:e5:2e:62:f4:7c:42:27: 1d:19:1f:76:77:99:ee:7d:2b:8c:4d:5b:92:d2:a5: 8d:56:80:5e:d8:29:7d:d5:1a:91:31:92:14:81:aa: 19:2a:34:d2:99:52:a4:d4:71:b2:fd:80:3e:2d:b8: de:8b:da:80:21:09:f6:97:1a:42:b3:19:64:20:72: 66:37:25:48:12:ec:10:45:9a:25:ff:9a:9a:35:74: 48:bb:f0:57:43:8e:44:78:29:2a:24:37:64:5f:aa: 51:4b:96:7d:21:b8:62:7f:73:39:42:83:f7:5b:70: 50:21:9e:ad:50:86:b4:55:71:f5:14:ad:95:c4:8c: 01:ce:6a:22:2c:20:07:7b:17:13:f8:94:2f:cd:de: 94:1b:50:21:ad:46:52:e8:ba:30:e2:df:cf:8b:4f: 12:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2B:72:35:A5:48:66:D1:8F:4A:D2:67:81:21:16:E3:ED:6F:F4:38 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tStyNaVIZtGPStJngSEW4-1v9Dg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.30.239.0/24 Signature Algorithm: sha256WithRSAEncryption 07:2a:ff:53:ad:45:0d:c8:ab:d5:c8:3b:78:d9:ed:c0:74:01: 0f:f3:c2:06:3c:df:27:13:9b:14:8f:76:1d:4a:35:09:e5:84: de:76:9b:c9:d6:25:27:75:7c:5c:91:6c:ee:0c:87:ed:dc:38: 06:59:45:25:31:1a:fb:07:0c:93:62:85:0a:f4:86:97:49:47: ce:b1:60:a1:a6:6f:15:8e:51:c8:af:b1:7e:e5:14:91:66:25: f7:58:bb:00:24:12:26:82:14:9a:33:3b:d1:a4:e2:8b:1e:0a: ae:1a:8b:3a:08:ea:37:da:0c:a8:87:db:fc:d6:4d:72:00:66: 38:d8:7d:f6:ab:d4:e8:17:c7:4a:f7:c0:97:12:d3:18:34:b7: 7c:57:2f:a0:36:56:a3:95:a5:e6:72:cf:d3:d1:e9:ad:60:cf: 96:25:47:a4:b9:f1:13:22:99:e8:fe:14:b1:07:a3:44:11:6f: 04:61:d7:95:54:1d:59:70:8c:a5:1a:c9:47:41:68:e0:95:c7: 57:78:d3:0a:b0:4a:1c:2f:16:dc:b8:17:0d:77:05:41:ad:b4: 9f:7e:1e:45:3b:16:0a:60:d7:61:7f:64:b4:18:08:45:dc:d8: d0:9d:28:73:16:f0:86:63:3c:0e:5b:99:b0:9c:c2:04:cc:2f: 44:00:9b:ae -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEjkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI1MkI3MjM1QTU0ODY2 RDE4RjRBRDI2NzgxMjExNkUzRUQ2RkY0MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCstzYRdL5q9AUwrFdjS05iUH9MVs/tTm41/gOSpx2VV+2SPIMn 73hY6+TTH8VZka8HBEC0C5yC6bJjOCEwGkbLwsiLRAi0rxiiG0bFcZphOIufdghR aBOXYkJB2oXBwJnr5S5i9HxCJx0ZH3Z3me59K4xNW5LSpY1WgF7YKX3VGpExkhSB qhkqNNKZUqTUcbL9gD4tuN6L2oAhCfaXGkKzGWQgcmY3JUgS7BBFmiX/mpo1dEi7 8FdDjkR4KSokN2RfqlFLln0huGJ/czlCg/dbcFAhnq1QhrRVcfUUrZXEjAHOaiIs IAd7FxP4lC/N3pQbUCGtRlLoujDi38+LTxKFAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUtStyNaVIZtGPStJngSEW4+1v9DgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvdFN0eU5hVkladEdQU3RK bmdTRVc0LTF2OURnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AD0e7zANBgkqhkiG9w0BAQsFAAOCAQEAByr/U61FDcir1cg7eNntwHQBD/PCBjzf JxObFI92HUo1CeWE3nabydYlJ3V8XJFs7gyH7dw4BllFJTEa+wcMk2KFCvSGl0lH zrFgoaZvFY5RyK+xfuUUkWYl91i7ACQSJoIUmjM70aTiix4KrhqLOgjqN9oMqIfb /NZNcgBmONh99qvU6BfHSvfAlxLTGDS3fFcvoDZWo5Wl5nLP09HprWDPliVHpLnx EyKZ6P4UsQejRBFvBGHXlVQdWXCMpRrJR0Fo4JXHV3jTCrBKHC8W3LgXDXcFQa20 n34eRTsWCmDXYX9ktBgIRdzY0J0ocxbwhmM8DluZsJzCBMwvRACbrg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org