$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wnd_MmS8J-YBFkDRh9XTa0fUMNo.roa File: wnd_MmS8J-YBFkDRh9XTa0fUMNo.roa (raw, json) Hash identifier: dptmcMQuH0cWZszXBC+RUFOzTdaPV/YqSDzLXiKJ7aI= Subject key identifier: C2:77:7F:32:64:BC:27:E6:01:16:40:D1:87:D5:D3:6B:47:D4:30:DA Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11F1 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wnd_MmS8J-YBFkDRh9XTa0fUMNo.roa Signing time: Mon 26 Aug 2024 05:24:32 +0000 ROA not before: Mon 26 Aug 2024 05:24:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 60.198.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4593 (0x11f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C2777F3264BC27E6011640D187D5D36B47D430DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:51:74:5d:a7:46:e5:99:e1:3c:d2:26:4a:4f: 3b:5a:59:d2:0d:9d:13:60:0c:57:e2:bf:5c:32:bd: d8:6e:b7:63:26:a5:4a:64:7f:af:ce:4d:9d:a3:ef: 55:63:9a:5e:a4:18:13:88:04:9c:74:71:dc:a4:f4: 88:a0:96:d3:b8:19:e2:b8:5c:c3:88:a6:1d:a4:bc: 6d:f8:dc:0a:20:c0:f7:72:37:80:30:6a:79:da:5f: 65:72:38:0d:a0:e8:cd:2a:08:81:fe:51:aa:13:d4: 95:1d:9b:8e:bc:7f:2b:ea:b8:38:a7:db:91:a1:54: 0e:0d:16:77:1b:88:16:18:21:6e:61:63:3a:77:05: 94:f9:cb:0d:04:43:7c:28:bc:f7:cc:35:8a:36:01: d1:c2:95:02:f4:96:4d:70:db:5d:b1:16:c5:1e:79: 41:dd:60:8c:5a:1f:44:ba:d1:64:76:29:50:76:3f: 27:91:2a:8f:e7:e0:a5:fe:ca:e9:73:98:35:27:b4: 58:1e:f7:0f:a6:86:e0:d0:44:60:e6:af:eb:38:b7: 6f:0c:f1:c0:7e:6a:ed:ba:46:a9:80:e8:2d:99:78: 17:df:c7:24:ee:d3:ee:e1:8a:9f:de:81:1a:23:8c: 45:b2:2e:f9:61:52:84:84:9a:3b:8b:3f:a3:ed:06: 1d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:77:7F:32:64:BC:27:E6:01:16:40:D1:87:D5:D3:6B:47:D4:30:DA X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wnd_MmS8J-YBFkDRh9XTa0fUMNo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.40.0/21 Signature Algorithm: sha256WithRSAEncryption 3a:92:9d:18:38:ab:0e:cc:47:57:c0:66:e4:1d:ca:bf:b7:bc: 01:0e:9f:a5:15:9e:3b:08:94:10:d6:25:31:1b:dc:78:0a:9f: 0a:f1:5f:ee:17:d3:ca:70:92:78:12:2f:df:bd:d6:69:d8:62: 33:9b:a4:93:7c:75:44:fe:cf:32:53:f3:35:50:75:16:6f:e3: c9:99:86:16:57:ae:3a:c7:2d:35:32:98:48:30:67:8a:10:81: 20:ae:d2:5b:ef:99:90:18:49:89:7e:3b:b9:74:12:a0:b9:a9: 69:32:fe:65:bc:50:30:01:aa:d8:1e:7c:37:3f:10:5f:4f:3b: 6e:c7:87:42:a9:12:e4:b1:19:6c:3b:7b:a8:fc:7b:c3:ca:10: b2:7d:33:8e:ca:aa:9f:d3:6c:e0:17:fa:46:47:3b:42:66:d1: 33:64:98:be:8c:be:37:ee:f7:29:5f:d8:da:ae:df:98:13:68: 5e:de:35:cd:45:7e:cf:ee:ee:de:cf:9f:b0:71:39:d1:ae:92: 7f:db:59:fe:6d:49:df:38:2c:f0:b9:ca:53:b5:cb:89:41:98: a0:5a:42:05:31:3d:fc:49:17:1a:22:59:50:df:80:7f:49:12: 6f:dd:2b:28:84:9a:a9:85:c4:79:6a:ac:68:e9:83:c5:8b:73: 23:26:3b:91 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEfEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMyNzc3RjMyNjRCQzI3 RTYwMTE2NDBEMTg3RDVEMzZCNDdENDMwREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfUXRdp0blmeE80iZKTztaWdINnRNgDFfiv1wyvdhut2MmpUpk f6/OTZ2j71Vjml6kGBOIBJx0cdyk9IigltO4GeK4XMOIph2kvG343AogwPdyN4Aw annaX2VyOA2g6M0qCIH+UaoT1JUdm468fyvquDin25GhVA4NFncbiBYYIW5hYzp3 BZT5yw0EQ3wovPfMNYo2AdHClQL0lk1w212xFsUeeUHdYIxaH0S60WR2KVB2PyeR Ko/n4KX+yulzmDUntFge9w+mhuDQRGDmr+s4t28M8cB+au26RqmA6C2ZeBffxyTu 0+7hip/egRojjEWyLvlhUoSEmjuLP6PtBh03AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUwnd/MmS8J+YBFkDRh9XTa0fUMNowHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvd25kX01tUzhKLVlCRmtE Umg5WFRhMGZVTU5vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AzzGKDANBgkqhkiG9w0BAQsFAAOCAQEAOpKdGDirDsxHV8Bm5B3Kv7e8AQ6fpRWe OwiUENYlMRvceAqfCvFf7hfTynCSeBIv373WadhiM5ukk3x1RP7PMlPzNVB1Fm/j yZmGFleuOsctNTKYSDBnihCBIK7SW++ZkBhJiX47uXQSoLmpaTL+ZbxQMAGq2B58 Nz8QX087bseHQqkS5LEZbDt7qPx7w8oQsn0zjsqqn9Ns4Bf6Rkc7QmbRM2SYvoy+ N+73KV/Y2q7fmBNoXt41zUV+z+7u3s+fsHE50a6Sf9tZ/m1J3zgs8LnKU7XLiUGY oFpCBTE9/EkXGiJZUN+Af0kSb90rKISaqYXEeWqsaOmDxYtzIyY7kQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org