$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wz10711noc-w53cbPuMLLImOrNk.roa File: wz10711noc-w53cbPuMLLImOrNk.roa (raw, json) Hash identifier: 7L/RSghnYw8mS8BjlKTwQJoAY4kscH0Xn7fy0p3/5F4= Subject key identifier: C3:3D:74:EF:5D:67:A1:CF:B0:E7:77:1B:3E:E3:0B:2C:89:8E:AC:D9 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11D8 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wz10711noc-w53cbPuMLLImOrNk.roa Signing time: Mon 26 Aug 2024 05:24:26 +0000 ROA not before: Mon 26 Aug 2024 05:24:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131634 IP address blocks: 124.108.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4568 (0x11d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C33D74EF5D67A1CFB0E7771B3EE30B2C898EACD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4e:0b:f2:d4:c3:24:75:29:b7:1f:00:b8:5b: 38:1d:19:c4:3d:46:6b:6b:74:c8:dd:33:99:61:51: a6:cd:7a:67:48:63:35:96:2a:d3:c8:6a:83:ba:c7: 1d:e6:fc:a5:f6:5a:8b:03:df:99:8c:b7:26:ac:7a: 6f:0e:0a:61:ad:0c:17:a5:a8:79:11:9e:6e:14:91: 4e:30:01:96:06:16:be:51:09:e1:66:6e:bd:20:ac: 6b:6e:d3:57:6e:a5:56:44:ee:04:7f:5f:d9:56:c2: 19:63:8a:7b:58:52:5d:c7:b4:8e:e7:8e:c2:82:ba: c2:42:d8:d6:f8:ec:fc:91:04:58:03:fb:50:14:c4: 5e:2e:ae:09:e3:be:ce:93:23:98:a3:83:3f:d8:f4: 94:2b:9b:74:c3:0e:e4:af:e4:ce:bc:43:63:e1:dd: de:22:f2:b1:13:12:1e:53:68:f5:28:0b:b7:26:30: 36:40:f6:b7:a4:1b:df:ac:94:3e:f5:10:98:e6:60: 9e:c0:68:dd:31:45:9a:d6:ff:8c:a5:61:50:23:b6: 00:3d:f0:d0:df:6b:1b:70:2f:25:a4:68:6c:5d:b0: aa:1c:aa:e0:07:59:60:67:d6:1f:7f:bd:fa:db:30: 90:d5:6e:80:3e:89:a5:da:0d:f2:f7:10:c7:18:ec: ad:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:3D:74:EF:5D:67:A1:CF:B0:E7:77:1B:3E:E3:0B:2C:89:8E:AC:D9 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wz10711noc-w53cbPuMLLImOrNk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.174.0/24 Signature Algorithm: sha256WithRSAEncryption 06:ea:b5:e3:9b:39:e0:54:4b:ee:51:e9:60:a8:eb:02:e8:6e: c2:2b:f5:bf:79:ee:38:66:f9:55:88:44:9b:e9:93:cb:a2:aa: 19:ef:25:c3:f9:cf:9c:24:87:cd:3c:4c:a9:9f:cd:7f:c7:d4: 40:58:e5:10:2a:ce:b8:0d:74:61:6e:ce:99:39:27:f5:b9:73: a3:bc:42:19:d8:80:8a:79:c4:3b:73:41:18:8d:db:02:0a:a9: 65:81:2e:6f:8f:8d:8d:af:f8:25:59:61:31:55:19:b9:78:91: f1:0b:c6:07:b3:0d:48:91:3c:9e:5a:63:d0:af:41:52:17:6b: 1d:2d:09:1e:a4:fe:30:aa:53:3e:86:56:ef:6a:84:95:7f:f7: 0e:b4:02:e0:5a:36:af:25:83:19:b1:b8:9d:1c:72:8b:78:00: cc:6b:3d:03:c6:1a:a9:a9:15:95:1d:09:72:1a:99:17:47:3e: 1b:e9:93:5a:a2:26:88:4f:3c:35:81:c2:0d:dc:6e:66:e4:0c: 70:9f:9b:89:8f:b4:95:c2:2a:5d:50:91:2b:a9:a3:31:8a:ac: 39:19:f6:05:10:d8:1c:17:b3:34:87:f4:73:95:7b:a7:74:1b: c8:f2:d4:06:47:07:8f:d3:d6:3b:71:bc:e0:55:8f:d9:ab:e4: 30:ff:3d:03 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEdgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMzM0Q3NEVGNUQ2N0Ex Q0ZCMEU3NzcxQjNFRTMwQjJDODk4RUFDRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmTgvy1MMkdSm3HwC4WzgdGcQ9RmtrdMjdM5lhUabNemdIYzWW KtPIaoO6xx3m/KX2WosD35mMtyasem8OCmGtDBelqHkRnm4UkU4wAZYGFr5RCeFm br0grGtu01dupVZE7gR/X9lWwhljintYUl3HtI7njsKCusJC2Nb47PyRBFgD+1AU xF4urgnjvs6TI5ijgz/Y9JQrm3TDDuSv5M68Q2Ph3d4i8rETEh5TaPUoC7cmMDZA 9rekG9+slD71EJjmYJ7AaN0xRZrW/4ylYVAjtgA98NDfaxtwLyWkaGxdsKocquAH WWBn1h9/vfrbMJDVboA+iaXaDfL3EMcY7K01AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUwz10711noc+w53cbPuMLLImOrNkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvd3oxMDcxMW5vYy13NTNj YlB1TUxMSW1Pck5rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AHxsrjANBgkqhkiG9w0BAQsFAAOCAQEABuq145s54FRL7lHpYKjrAuhuwiv1v3nu OGb5VYhEm+mTy6KqGe8lw/nPnCSHzTxMqZ/Nf8fUQFjlECrOuA10YW7OmTkn9blz o7xCGdiAinnEO3NBGI3bAgqpZYEub4+Nja/4JVlhMVUZuXiR8QvGB7MNSJE8nlpj 0K9BUhdrHS0JHqT+MKpTPoZW72qElX/3DrQC4Fo2ryWDGbG4nRxyi3gAzGs9A8Ya qakVlR0JchqZF0c+G+mTWqImiE88NYHCDdxuZuQMcJ+biY+0lcIqXVCRK6mjMYqs ORn2BRDYHBezNIf0c5V7p3QbyPLUBkcHj9PWO3G84FWP2avkMP89Aw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org