$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uHzIBwFD37nqcHeWzzLUYaAYHGw.roa File: uHzIBwFD37nqcHeWzzLUYaAYHGw.roa (raw, json) Hash identifier: 0MhOnakgIZNBtRb36Dx1ko0mj3BdKlhg12eYgIcqvHE= Subject key identifier: B8:7C:C8:07:01:43:DF:B9:EA:70:77:96:CF:32:D4:61:A0:18:1C:6C Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1204 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uHzIBwFD37nqcHeWzzLUYaAYHGw.roa Signing time: Mon 26 Aug 2024 05:24:37 +0000 ROA not before: Mon 26 Aug 2024 05:24:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 2001:4540::/27 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4612 (0x1204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B87CC8070143DFB9EA707796CF32D461A0181C6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0b:f9:e5:a5:44:96:7b:1a:da:a4:f9:c2:54: f3:20:6d:44:4e:b1:77:bc:b1:d3:fc:34:16:bc:91: 6e:51:62:09:e0:59:17:c2:98:9e:e9:ec:93:c7:38: 04:61:fe:95:4e:ef:54:e9:3d:89:58:cf:09:43:a1: 24:b3:0a:0f:e9:11:74:76:35:c2:b7:ae:33:32:22: 39:05:69:e1:0f:7d:a4:91:d4:13:fd:c7:e3:8d:ca: 2f:6b:67:a0:5a:53:91:59:8e:8b:36:dd:83:ae:f0: cc:bf:d0:6f:f8:4b:7c:ec:7d:1f:90:6f:19:57:34: eb:ca:07:71:36:34:e3:ad:1f:8d:23:a7:ca:4b:24: cb:ed:28:19:0c:4d:f2:a2:ab:b6:b1:e7:18:94:8f: 6d:60:f9:51:48:c0:92:76:33:33:e3:d7:28:10:88: 6c:29:39:55:48:1e:cb:2a:cc:47:5c:b1:c5:a8:d0: 22:4a:53:1f:43:aa:75:cd:39:32:b9:07:e7:fe:5b: d8:6f:15:9c:e3:55:88:38:90:74:77:06:49:2f:52: 05:b2:59:fd:cd:43:4e:02:cb:cd:62:b7:af:60:01: 66:92:1c:12:ae:72:78:2c:87:74:9e:77:9e:14:3b: 83:71:ae:fb:86:5a:8d:84:03:8d:53:39:b9:67:8b: f0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:7C:C8:07:01:43:DF:B9:EA:70:77:96:CF:32:D4:61:A0:18:1C:6C X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uHzIBwFD37nqcHeWzzLUYaAYHGw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4540::/27 Signature Algorithm: sha256WithRSAEncryption 03:6f:57:5f:84:27:ca:48:77:7e:fb:6a:5c:02:9a:0e:c6:c0: cc:08:e2:35:c2:74:52:50:94:06:1a:c3:95:b2:b4:7e:ab:9e: b8:40:a8:c2:87:18:1b:df:34:46:da:19:b6:57:6d:69:7c:ea: d9:ea:64:fa:a1:81:22:2b:f0:68:64:73:4c:f0:ec:2f:4a:8f: 95:09:ad:b0:43:ad:49:45:2c:85:77:df:0a:8d:ad:74:b5:35: ab:6b:da:36:9a:2e:45:3e:73:4f:5d:e4:1a:d9:80:d9:49:46: 03:b3:25:83:b2:2f:b1:6c:2b:77:19:46:53:78:c5:29:e0:89: e3:37:e0:eb:e0:01:f4:11:b4:16:82:5a:26:a6:75:b6:38:5a: da:43:cc:1b:56:96:12:e2:b3:03:6f:e9:64:a2:79:34:0a:c8: e0:40:b6:af:fa:59:cb:0d:a2:98:46:c4:a4:8d:26:94:e3:de: 5c:58:ee:69:64:e4:c9:e5:6f:40:3f:5f:e5:08:ea:8f:bc:91: b9:98:d9:21:e6:d9:fa:9b:e5:66:5b:93:f8:1e:8e:72:4f:39: 9a:2b:17:d2:9e:13:09:3c:2a:d6:a0:3d:6c:01:fd:39:df:b7: b6:59:00:92:d7:29:07:1e:bf:74:f1:0a:f3:15:7b:4d:3d:d3: d5:2a:4b:58 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICEgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI4N0NDODA3MDE0M0RG QjlFQTcwNzc5NkNGMzJENDYxQTAxODFDNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8C/nlpUSWexrapPnCVPMgbUROsXe8sdP8NBa8kW5RYgngWRfC mJ7p7JPHOARh/pVO71TpPYlYzwlDoSSzCg/pEXR2NcK3rjMyIjkFaeEPfaSR1BP9 x+ONyi9rZ6BaU5FZjos23YOu8My/0G/4S3zsfR+QbxlXNOvKB3E2NOOtH40jp8pL JMvtKBkMTfKiq7ax5xiUj21g+VFIwJJ2MzPj1ygQiGwpOVVIHssqzEdcscWo0CJK Ux9DqnXNOTK5B+f+W9hvFZzjVYg4kHR3BkkvUgWyWf3NQ04Cy81it69gAWaSHBKu cngsh3Sed54UO4NxrvuGWo2EA41TOblni/BnAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUuHzIBwFD37nqcHeWzzLUYaAYHGwwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvdUh6SUJ3RkQzN25xY0hl V3p6TFVZYUFZSEd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF BSABRUAwDQYJKoZIhvcNAQELBQADggEBAANvV1+EJ8pId377alwCmg7GwMwI4jXC dFJQlAYaw5WytH6rnrhAqMKHGBvfNEbaGbZXbWl86tnqZPqhgSIr8Ghkc0zw7C9K j5UJrbBDrUlFLIV33wqNrXS1Natr2jaaLkU+c09d5BrZgNlJRgOzJYOyL7FsK3cZ RlN4xSngieM34OvgAfQRtBaCWiamdbY4WtpDzBtWlhLiswNv6WSieTQKyOBAtq/6 WcsNophGxKSNJpTj3lxY7mlk5Mnlb0A/X+UI6o+8kbmY2SHm2fqb5WZbk/gejnJP OZorF9KeEwk8KtagPWwB/Tnft7ZZAJLXKQcev3TxCvMVe00909UqS1g= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org