$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xcnZwUa4xnOgt6k5Vpr73QYvBCE.roa File: xcnZwUa4xnOgt6k5Vpr73QYvBCE.roa (raw, json) Hash identifier: LE22I5RPpKV7Hsq49tCbvQSzY6XoZE3pi969GuPSNsk= Subject key identifier: C5:C9:D9:C1:46:B8:C6:73:A0:B7:A9:39:56:9A:FB:DD:06:2F:04:21 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 11DA Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xcnZwUa4xnOgt6k5Vpr73QYvBCE.roa Signing time: Mon 26 Aug 2024 05:24:27 +0000 ROA not before: Mon 26 Aug 2024 05:24:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 61.57.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4570 (0x11da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C5C9D9C146B8C673A0B7A939569AFBDD062F0421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1b:89:93:d0:36:52:22:19:4a:20:a4:f9:48: 99:29:3d:44:84:b0:1b:82:36:48:7b:92:bf:85:2a: 41:3c:46:84:86:de:0e:3e:9e:bb:6b:9d:c6:16:d2: 49:e7:a5:1f:32:e0:ba:2b:29:fb:1b:e8:1a:dd:8d: 92:5e:20:cc:a3:de:ce:36:cb:98:de:b7:0c:b7:20: 3f:2f:f0:92:0b:c8:a9:53:9b:33:b1:6a:5f:b6:c0: e8:85:7e:3d:91:4a:e3:e5:81:c6:bb:66:54:21:eb: bc:50:51:71:7e:43:18:a7:82:f2:c5:3f:11:e7:75: 9c:44:59:ad:fd:75:d2:9c:ba:64:56:ae:02:a4:4f: 39:2c:6a:78:fe:32:5c:89:1b:4a:9d:a3:7f:7f:1c: 2d:7b:e6:c0:38:8a:82:9f:02:57:ae:88:6e:5a:3c: 39:3b:5e:e7:db:00:53:70:9d:ef:00:e0:34:ef:14: ce:1a:47:aa:1d:81:56:ab:db:28:ce:ba:d1:01:fd: 25:49:eb:37:65:ee:0d:05:23:d3:de:b7:a1:e7:8f: 71:51:e4:17:85:53:28:02:54:79:12:50:47:08:43: e9:04:f7:86:2a:d0:7e:6b:0f:5e:80:96:7d:ec:1c: a5:a6:26:50:96:84:88:cb:db:39:82:7e:e6:aa:cb: ea:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C9:D9:C1:46:B8:C6:73:A0:B7:A9:39:56:9A:FB:DD:06:2F:04:21 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xcnZwUa4xnOgt6k5Vpr73QYvBCE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.0.0/19 Signature Algorithm: sha256WithRSAEncryption 15:13:e9:b6:ed:b3:e7:ec:fa:ea:e8:58:56:02:d8:e4:c6:c4: 6c:64:68:c4:6f:0d:a7:e6:99:4e:43:79:34:2d:8a:d6:53:db: 3e:cd:39:58:41:16:2a:3b:2e:5a:bf:d6:a7:b2:89:9a:41:c7: 96:0d:51:60:70:de:7e:d4:ff:ed:0c:1f:73:79:46:42:79:13: d0:1c:39:85:cc:a6:5e:29:44:e2:b6:23:3e:8a:d3:9f:f2:2c: de:07:db:cd:67:de:97:ed:de:36:0b:95:88:ff:72:4c:48:f8: 8e:8a:b6:ea:98:42:0c:36:33:d6:e7:8e:b0:4a:45:b0:ad:09: e5:f3:b8:82:15:2e:17:d7:53:cc:55:a1:56:62:e5:46:5e:68: 89:c7:ae:02:91:8f:e3:d8:c1:28:66:1b:04:40:0c:68:03:13: cf:2e:05:9f:aa:4a:ce:b8:20:f7:5e:3b:70:d3:a4:a6:41:49: a5:db:4d:84:9b:b6:40:9a:d9:da:e5:1c:b0:c3:09:1f:28:87: 48:8a:b3:b3:37:fc:34:de:0d:a9:c4:1b:07:e7:c7:7e:09:2f: c2:56:88:cc:41:84:f5:3f:52:41:3a:df:af:48:aa:5d:26:27: 94:f3:ca:ed:2b:18:17:c2:f8:02:cf:92:5c:c6:5c:95:65:65: ee:1d:ce:55 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEdowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1QzlEOUMxNDZCOEM2 NzNBMEI3QTkzOTU2OUFGQkREMDYyRjA0MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsG4mT0DZSIhlKIKT5SJkpPUSEsBuCNkh7kr+FKkE8RoSG3g4+ nrtrncYW0knnpR8y4LorKfsb6BrdjZJeIMyj3s42y5jetwy3ID8v8JILyKlTmzOx al+2wOiFfj2RSuPlgca7ZlQh67xQUXF+QxingvLFPxHndZxEWa39ddKcumRWrgKk Tzksanj+MlyJG0qdo39/HC175sA4ioKfAleuiG5aPDk7XufbAFNwne8A4DTvFM4a R6odgVar2yjOutEB/SVJ6zdl7g0FI9Pet6Hnj3FR5BeFUygCVHkSUEcIQ+kE94Yq 0H5rD16Aln3sHKWmJlCWhIjL2zmCfuaqy+rPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUxcnZwUa4xnOgt6k5Vpr73QYvBCEwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQveGNuWndVYTR4bk9ndDZr NVZwcjczUVl2QkNFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BT05ADANBgkqhkiG9w0BAQsFAAOCAQEAFRPptu2z5+z66uhYVgLY5MbEbGRoxG8N p+aZTkN5NC2K1lPbPs05WEEWKjsuWr/Wp7KJmkHHlg1RYHDeftT/7Qwfc3lGQnkT 0Bw5hcymXilE4rYjPorTn/Is3gfbzWfel+3eNguViP9yTEj4joq26phCDDYz1ueO sEpFsK0J5fO4ghUuF9dTzFWhVmLlRl5oiceuApGP49jBKGYbBEAMaAMTzy4Fn6pK zrgg9147cNOkpkFJpdtNhJu2QJrZ2uUcsMMJHyiHSIqzszf8NN4NqcQbB+fHfgkv wlaIzEGE9T9SQTrfr0iqXSYnlPPK7SsYF8L4As+SXMZclWVl7h3OVQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org