$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vg5dFqEgh7PcV7VGrmPOT86YeBM.roa File: vg5dFqEgh7PcV7VGrmPOT86YeBM.roa (raw, json) Hash identifier: 7JN0+6FesxfSo/hAdF5x0vgxtm6VYZ803v2NYMLnVNc= Subject key identifier: BE:0E:5D:16:A1:20:87:B3:DC:57:B5:46:AE:63:CE:4F:CE:98:78:13 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11EE Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vg5dFqEgh7PcV7VGrmPOT86YeBM.roa Signing time: Mon 26 Aug 2024 05:24:31 +0000 ROA not before: Mon 26 Aug 2024 05:24:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.147.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4590 (0x11ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:31 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BE0E5D16A12087B3DC57B546AE63CE4FCE987813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1c:3a:03:34:b5:4a:55:eb:e3:a4:de:4d:15: f4:5f:af:e7:c8:0a:1f:f2:0a:50:fe:e7:7f:52:e2: e4:56:c8:d1:f6:51:37:d3:b3:2b:c4:9a:32:69:86: 77:b8:67:51:ee:a7:77:75:6e:9c:29:1d:b0:df:99: 18:bc:fd:c4:c8:97:b8:a6:4c:2b:07:ab:d3:2e:5a: 24:f0:87:d9:f9:9d:a1:e2:cc:72:c1:23:e3:ca:f5: d5:ea:89:f8:0c:41:5a:e2:cc:8d:36:60:d6:17:96: 9c:1a:ff:cb:54:85:db:c8:fb:34:b9:64:60:50:7d: 9c:c9:de:e7:d0:c1:01:0b:b2:36:6b:d3:bc:c6:e9: 2a:09:cf:20:1b:b3:3d:da:fa:d6:a9:d1:ca:66:bd: 51:17:7b:03:fc:9e:ff:24:37:1b:84:f8:6b:3c:f0: e3:c3:d1:63:bf:13:0d:57:5c:af:f9:15:4b:48:11: 5d:34:9f:a9:56:17:0f:34:1f:b4:b1:be:aa:35:f6: 78:a9:1f:2b:dd:2f:f7:84:85:e4:3e:fa:39:95:d0: 11:c5:f4:e1:c4:94:dd:53:85:0b:a4:f1:95:f5:0c: 2e:d1:6c:57:79:b7:d0:f0:c3:08:a1:c0:6e:7c:02: 40:cb:43:7f:3d:f6:c1:db:4a:b5:26:8b:2c:c8:60: 0c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0E:5D:16:A1:20:87:B3:DC:57:B5:46:AE:63:CE:4F:CE:98:78:13 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vg5dFqEgh7PcV7VGrmPOT86YeBM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.147.0/24 Signature Algorithm: sha256WithRSAEncryption 19:52:74:6c:e6:1e:4c:9e:56:e6:f5:c2:d7:ca:b2:1e:33:b0: 19:f1:be:bb:ee:79:aa:39:ce:90:d2:3d:7e:64:69:63:9a:32: c2:fd:67:99:f5:be:15:a1:2d:42:a1:12:00:6f:11:24:0d:e9: b0:6e:ff:65:eb:03:88:e5:8e:6a:59:53:3e:27:0e:61:74:11: ca:e6:c3:7c:fb:89:b1:5a:18:38:b2:03:c1:5e:d9:87:4d:07: 46:14:10:a1:4a:b9:a3:92:d2:ea:d3:0c:d2:53:33:bd:15:48: af:98:a5:c5:06:d0:51:90:2c:3b:3e:d1:b9:8e:ca:f4:bb:d9: 1b:3e:d8:52:75:28:51:e7:5c:e1:5d:ea:e1:ec:c4:81:d0:da: e5:ef:a0:8c:2b:3a:bc:db:d8:c3:99:89:82:8b:08:8e:05:26: f7:86:a6:c0:cc:10:8f:87:84:00:4e:74:17:24:b1:db:21:ed: 10:7a:46:d7:a2:af:c0:d3:81:84:5f:4e:5d:5d:bc:54:78:16: 4a:12:d7:8e:d2:15:95:a5:0a:55:8f:1f:ae:56:b2:18:78:a0: 71:c5:f7:7c:70:93:f3:36:56:06:d6:5f:d8:3f:0a:fe:16:51: 03:75:10:8b:39:29:3e:6c:3b:4d:b5:e8:79:55:b9:77:3b:d9: af:aa:c9:1c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJFMEU1RDE2QTEyMDg3 QjNEQzU3QjU0NkFFNjNDRTRGQ0U5ODc4MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7HDoDNLVKVevjpN5NFfRfr+fICh/yClD+539S4uRWyNH2UTfT syvEmjJphne4Z1Hup3d1bpwpHbDfmRi8/cTIl7imTCsHq9MuWiTwh9n5naHizHLB I+PK9dXqifgMQVrizI02YNYXlpwa/8tUhdvI+zS5ZGBQfZzJ3ufQwQELsjZr07zG 6SoJzyAbsz3a+tap0cpmvVEXewP8nv8kNxuE+Gs88OPD0WO/Ew1XXK/5FUtIEV00 n6lWFw80H7Sxvqo19nipHyvdL/eEheQ++jmV0BHF9OHElN1ThQuk8ZX1DC7RbFd5 t9DwwwihwG58AkDLQ3899sHbSrUmiyzIYAwJAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUvg5dFqEgh7PcV7VGrmPOT86YeBMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvdmc1ZEZxRWdoN1BjVjdW R3JtUE9UODZZZUJNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHkzANBgkqhkiG9w0BAQsFAAOCAQEAGVJ0bOYeTJ5W5vXC18qyHjOwGfG+u+55 qjnOkNI9fmRpY5oywv1nmfW+FaEtQqESAG8RJA3psG7/ZesDiOWOallTPicOYXQR yubDfPuJsVoYOLIDwV7Zh00HRhQQoUq5o5LS6tMM0lMzvRVIr5ilxQbQUZAsOz7R uY7K9LvZGz7YUnUoUedc4V3q4ezEgdDa5e+gjCs6vNvYw5mJgosIjgUm94amwMwQ j4eEAE50FySx2yHtEHpG16KvwNOBhF9OXV28VHgWShLXjtIVlaUKVY8frlayGHig ccX3fHCT8zZWBtZf2D8K/hZRA3UQizkpPmw7TbXoeVW5dzvZr6rJHA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org