$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/w9xRrX41ITL7SC6v2nUfZMvR9Zc.roa File: w9xRrX41ITL7SC6v2nUfZMvR9Zc.roa (raw, json) Hash identifier: Lyf9QrdmZrQswxS9vetC+UajUDYygBeYbtsUuKrfchU= Subject key identifier: C3:DC:51:AD:7E:35:21:32:FB:48:2E:AF:DA:75:1F:64:CB:D1:F5:97 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FF7 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/w9xRrX41ITL7SC6v2nUfZMvR9Zc.roa Signing time: Fri 01 Sep 2023 09:37:34 +0000 ROA not before: Fri 01 Sep 2023 09:37:34 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 61.31.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4087 (0xff7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:34 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C3DC51AD7E352132FB482EAFDA751F64CBD1F597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:09:63:bc:01:5a:da:3c:97:4f:d7:17:30:5c: 66:e1:a6:71:93:5e:1c:7f:79:64:14:f6:ab:6c:ae: 87:48:83:16:02:c9:80:e6:d7:d2:f5:55:a1:6c:95: 29:05:41:fb:32:d7:99:5e:0a:56:d0:09:84:ec:4d: d8:76:f8:6b:c8:ee:95:ba:c5:08:88:8f:89:5d:d3: 29:85:54:b3:e2:23:bd:da:a5:07:27:cc:71:16:35: ff:d4:50:9d:c2:78:36:2e:36:85:62:c7:67:9a:fe: 1f:d9:b9:bf:84:8e:b0:f3:d6:49:dd:51:4f:23:c4: 80:c0:ec:36:79:3b:bb:81:78:1f:4f:c3:8b:bf:91: 0e:cb:d3:a2:29:bd:55:a4:f5:96:4f:2a:2e:1e:fc: c5:17:9b:d4:af:00:1e:f1:69:b2:26:53:92:a3:5e: 56:80:86:b3:92:99:1f:e5:1f:6a:08:85:db:01:2c: 92:00:9a:92:f1:97:56:c2:ab:af:0b:16:e0:f3:50: 58:23:54:6a:b8:2f:4c:ed:25:07:44:83:b1:90:95: e8:e6:48:a7:6c:fd:bc:31:23:94:a8:6c:10:9f:7e: 7e:5c:ea:f1:a1:fd:80:ae:fe:44:4b:ef:5e:0b:15: 45:e9:99:5e:c3:33:0b:58:70:05:af:9b:90:00:78: ec:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:DC:51:AD:7E:35:21:32:FB:48:2E:AF:DA:75:1F:64:CB:D1:F5:97 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/w9xRrX41ITL7SC6v2nUfZMvR9Zc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.31.0.0/16 Signature Algorithm: sha256WithRSAEncryption 04:3e:b3:57:62:db:23:48:7c:fd:67:e1:4d:22:02:bd:e2:ce: 23:eb:03:af:12:b6:b6:13:1d:1c:a0:0c:9d:ec:70:ea:58:c7: 54:c9:45:26:b2:cd:97:33:61:b8:33:14:40:a7:f4:22:2b:42: 83:b7:72:18:18:dd:87:7f:a8:ce:fb:2f:05:43:d0:e7:0e:2b: 62:12:98:b4:d3:d4:ce:bc:50:f2:83:1b:40:3b:a4:38:15:2d: 5f:f5:d1:f8:b1:a0:4d:8b:ed:a7:d6:95:ff:a0:01:63:ee:4d: 66:fe:f1:52:0d:06:e6:43:27:43:dd:24:ea:f1:2a:bb:33:54: c1:cf:42:fd:d9:42:83:84:6d:9c:f2:b3:9c:4a:9c:5e:db:a6: 84:a7:14:3e:30:9d:32:16:15:e8:12:f8:d7:7d:92:01:a4:e7: e2:41:9e:7b:e5:ae:0d:87:55:62:b0:cf:bd:1b:1d:0b:df:cf: 7a:be:64:f1:31:1e:4b:71:c3:0d:42:d2:5c:9a:ad:3d:40:ef: 18:29:43:c5:a0:f5:18:f3:9d:9f:18:d3:b7:2c:cb:25:e0:7b: 33:11:c5:ce:69:56:74:1c:5c:c5:76:a7:f7:da:95:62:1e:73: b0:c7:77:26:52:61:71:9d:39:2e:7b:8a:d8:76:46:0b:4b:c6: 0a:d4:1b:84 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICD/cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MzRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEMzREM1MUFEN0UzNTIx MzJGQjQ4MkVBRkRBNzUxRjY0Q0JEMUY1OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDICWO8AVraPJdP1xcwXGbhpnGTXhx/eWQU9qtsrodIgxYCyYDm 19L1VaFslSkFQfsy15leClbQCYTsTdh2+GvI7pW6xQiIj4ld0ymFVLPiI73apQcn zHEWNf/UUJ3CeDYuNoVix2ea/h/Zub+EjrDz1kndUU8jxIDA7DZ5O7uBeB9Pw4u/ kQ7L06IpvVWk9ZZPKi4e/MUXm9SvAB7xabImU5KjXlaAhrOSmR/lH2oIhdsBLJIA mpLxl1bCq68LFuDzUFgjVGq4L0ztJQdEg7GQlejmSKds/bwxI5SobBCffn5c6vGh /YCu/kRL714LFUXpmV7DMwtYcAWvm5AAeOyRAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUw9xRrX41ITL7SC6v2nUfZMvR9ZcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvdzl4UnJYNDFJVEw3U0M2 djJuVWZaTXZSOVpjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AD0fMA0GCSqGSIb3DQEBCwUAA4IBAQAEPrNXYtsjSHz9Z+FNIgK94s4j6wOvEra2 Ex0coAyd7HDqWMdUyUUmss2XM2G4MxRAp/QiK0KDt3IYGN2Hf6jO+y8FQ9DnDiti Epi009TOvFDygxtAO6Q4FS1f9dH4saBNi+2n1pX/oAFj7k1m/vFSDQbmQydD3STq 8Sq7M1TBz0L92UKDhG2c8rOcSpxe26aEpxQ+MJ0yFhXoEvjXfZIBpOfiQZ575a4N h1VisM+9Gx0L3896vmTxMR5LccMNQtJcmq09QO8YKUPFoPUY852fGNO3LMsl4Hsz EcXOaVZ0HFzFdqf32pViHnOwx3cmUmFxnTkue4rYdkYLS8YK1BuE -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org