$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/viOSFgILZdd60XGiWAsXzV72V5g.roa File: viOSFgILZdd60XGiWAsXzV72V5g.roa (raw, json) Hash identifier: G8ifW0dPMC4zApjB1JoCUO7gpjzAhwdpjaglYeBIh8I= Subject key identifier: BE:23:92:16:02:0B:65:D7:7A:D1:71:A2:58:0B:17:CD:5E:F6:57:98 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1232 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/viOSFgILZdd60XGiWAsXzV72V5g.roa Signing time: Mon 26 Aug 2024 05:24:47 +0000 ROA not before: Mon 26 Aug 2024 05:24:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 135596 IP address blocks: 60.198.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4658 (0x1232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BE239216020B65D77AD171A2580B17CD5EF65798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a6:0a:f4:df:15:8c:11:7f:17:22:f3:82:b3: 27:5a:00:9f:e3:56:01:a8:bc:2c:f0:fb:c4:58:15: 27:81:34:9b:c5:fd:8e:c8:bf:30:b1:fb:5d:bc:bd: 3d:a6:d1:ca:24:41:ed:40:92:41:54:d2:12:35:f4: b9:b1:60:e5:27:41:93:cd:84:fa:53:42:44:ae:74: c0:77:0f:84:40:4c:c9:5a:ed:1d:cf:a5:20:47:e2: da:11:93:6f:ca:f3:9c:a9:f5:a9:89:a1:45:0f:e3: 14:95:35:27:ef:ee:e9:43:d5:c7:78:87:59:0c:c9: de:b9:89:11:88:19:dd:9d:a8:18:f8:fc:20:cc:6e: 84:b3:8f:32:c2:c6:32:14:e5:69:4d:36:ea:92:0d: 6c:d5:99:ec:e1:71:fd:8b:d2:c3:93:e1:05:9e:10: d8:d5:8b:d1:45:50:b3:5c:52:61:3f:fb:c0:35:6d: d6:92:22:ae:0e:60:1d:08:8b:a0:d6:e1:9f:76:c3: a7:66:63:2f:aa:8a:94:52:44:75:5c:c0:8c:a8:a3: 28:c9:c5:e0:66:dd:53:94:c0:98:83:ea:7f:d0:32: 7d:88:7e:95:c5:16:cd:83:51:bd:de:f2:46:ab:4e: 9a:7a:9c:2b:fc:6f:ee:86:5f:2e:52:1f:6f:c9:36: 55:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:23:92:16:02:0B:65:D7:7A:D1:71:A2:58:0B:17:CD:5E:F6:57:98 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/viOSFgILZdd60XGiWAsXzV72V5g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.154.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:2e:9f:50:4c:c3:07:c4:f2:69:00:52:17:45:ed:8e:41:85: 9a:4f:d9:0e:2b:48:50:84:7e:05:95:b6:d9:ca:ab:08:ec:ce: 57:12:22:35:1a:ba:43:15:ba:84:6b:8f:98:f6:ff:a9:a1:77: b3:58:57:42:e2:bf:3e:ca:46:7a:df:a6:2a:4e:80:12:93:46: a2:e7:3b:22:3a:9c:cc:eb:fb:cb:49:e9:47:b1:0a:1d:92:63: 34:87:71:8a:00:be:88:41:e0:7d:ea:f2:42:c7:2f:93:77:e3: e0:95:92:21:b5:ef:69:44:af:bc:34:0b:29:a8:84:4e:0d:df: 05:f6:71:1b:af:89:0d:d1:e5:b5:30:fb:bb:2d:ba:07:0c:7f: a8:14:c7:ad:94:c4:f4:24:01:ca:8e:23:f7:8e:16:3a:32:b6: d3:e5:58:ca:24:0d:09:e2:99:14:27:fc:3c:b8:3b:3e:e6:13: 0b:38:93:27:64:de:84:01:1d:78:22:8b:fa:3a:bc:03:ea:12: 50:9e:e0:4d:28:ed:e1:0b:6e:a0:8d:4c:72:fa:b3:71:6c:96: c5:38:7c:e9:84:11:f9:70:91:bc:ee:55:94:7c:48:1e:95:53: 77:bc:98:84:39:5c:4a:c7:2b:40:84:2e:23:b5:8c:7a:bd:16: 0d:93:f5:e3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEjIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJFMjM5MjE2MDIwQjY1 RDc3QUQxNzFBMjU4MEIxN0NENUVGNjU3OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBpgr03xWMEX8XIvOCsydaAJ/jVgGovCzw+8RYFSeBNJvF/Y7I vzCx+128vT2m0cokQe1AkkFU0hI19LmxYOUnQZPNhPpTQkSudMB3D4RATMla7R3P pSBH4toRk2/K85yp9amJoUUP4xSVNSfv7ulD1cd4h1kMyd65iRGIGd2dqBj4/CDM boSzjzLCxjIU5WlNNuqSDWzVmezhcf2L0sOT4QWeENjVi9FFULNcUmE/+8A1bdaS Iq4OYB0Ii6DW4Z92w6dmYy+qipRSRHVcwIyooyjJxeBm3VOUwJiD6n/QMn2IfpXF Fs2DUb3e8karTpp6nCv8b+6GXy5SH2/JNlXrAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUviOSFgILZdd60XGiWAsXzV72V5gwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvdmlPU0ZnSUxaZGQ2MFhH aVdBc1h6VjcyVjVnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzGmjANBgkqhkiG9w0BAQsFAAOCAQEAGy6fUEzDB8TyaQBSF0XtjkGFmk/ZDitI UIR+BZW22cqrCOzOVxIiNRq6QxW6hGuPmPb/qaF3s1hXQuK/PspGet+mKk6AEpNG ouc7IjqczOv7y0npR7EKHZJjNIdxigC+iEHgferyQscvk3fj4JWSIbXvaUSvvDQL KaiETg3fBfZxG6+JDdHltTD7uy26Bwx/qBTHrZTE9CQByo4j944WOjK20+VYyiQN CeKZFCf8PLg7PuYTCziTJ2TehAEdeCKL+jq8A+oSUJ7gTSjt4QtuoI1McvqzcWyW xTh86YQR+XCRvO5VlHxIHpVTd7yYhDlcSscrQIQuI7WMer0WDZP14w== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org