$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z-PdZD27Xa940G93UQbX1Gy9sCA.roa File: z-PdZD27Xa940G93UQbX1Gy9sCA.roa (raw, json) Hash identifier: so8yZsS/DMhfBfoZjykde2Hhlt++AkrkAa6ZFR+grRE= Subject key identifier: CF:E3:DD:64:3D:BB:5D:AF:78:D0:6F:77:51:06:D7:D4:6C:BD:B0:20 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1227 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z-PdZD27Xa940G93UQbX1Gy9sCA.roa Signing time: Mon 26 Aug 2024 05:24:44 +0000 ROA not before: Mon 26 Aug 2024 05:24:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131634 IP address blocks: 124.108.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4647 (0x1227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 26 05:24:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CFE3DD643DBB5DAF78D06F775106D7D46CBDB020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b2:1b:b9:0d:99:be:de:24:f0:df:7a:86:e7: 88:64:96:54:3d:b1:e3:71:47:33:0b:d3:8d:96:70: c0:c1:84:a5:0f:85:23:99:a2:65:a8:78:a6:7a:bc: 8f:11:f5:2e:7b:6d:ad:58:cf:b2:19:5c:99:3b:2f: 01:4d:31:e8:4f:b0:2e:a5:82:3f:bf:8f:9b:aa:17: ff:de:11:a3:c0:56:da:b9:fb:32:dc:4a:48:3b:2e: b2:af:0a:e9:05:84:90:c6:e6:73:18:73:76:18:f2: 2b:50:2d:e4:59:35:01:7a:4b:a7:8b:fe:1f:7b:0b: 03:03:a7:df:be:44:59:19:29:5b:5d:58:46:c2:da: c7:94:46:d3:3b:1b:de:64:fc:83:9f:cf:57:0d:d6: df:00:d2:74:c9:3a:fe:3d:4e:54:1f:88:4e:5c:49: cf:f0:1a:59:7b:cb:11:66:15:b8:1a:7a:00:55:df: 3e:14:cb:1b:26:db:69:5f:e8:e0:a6:97:7c:a3:f1: 7f:f1:4f:d9:27:7a:41:99:b6:d7:4a:b6:8a:97:d3: bc:11:7f:0b:78:2e:1b:96:66:a7:22:97:94:af:f2: 86:8d:92:1c:73:d4:75:36:04:0e:2d:df:95:e8:d1: c6:f7:d6:cd:6c:86:03:2f:f8:f1:85:22:e3:f1:14: 86:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E3:DD:64:3D:BB:5D:AF:78:D0:6F:77:51:06:D7:D4:6C:BD:B0:20 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z-PdZD27Xa940G93UQbX1Gy9sCA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.191.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:72:b2:d6:a4:68:83:b5:1a:89:07:7c:6c:cd:11:1d:96:ac: d6:f4:4a:b1:2b:06:24:2c:62:7c:16:82:d2:4f:23:98:a2:b3: f9:16:eb:b8:18:97:12:0f:cb:99:90:e6:d3:0c:0f:50:aa:f9: 58:5a:55:c3:8c:5c:17:68:3e:b4:aa:4b:00:8b:dd:09:40:4d: 00:e7:1b:2d:46:1c:2f:0a:fe:36:b5:1d:95:74:4b:78:a1:75: 9d:cc:a8:05:41:74:e7:4c:69:b4:0c:f2:50:3d:62:e5:08:6f: 76:ed:9c:9c:59:a0:a0:b4:1f:85:8d:79:7d:f3:55:9f:e3:81: 77:75:83:e4:41:94:17:06:51:99:35:3d:cc:35:7f:7d:11:fc: 48:5d:4c:39:a9:18:4c:6e:a9:d7:2e:0c:99:d3:50:bf:02:8b: 02:9e:aa:8e:23:e8:0f:91:55:b3:84:90:68:ee:aa:68:be:cb: 05:85:ef:2d:1d:a4:35:19:51:fc:43:77:69:34:6e:74:3a:ee: b7:9d:db:d7:4e:69:1f:91:f7:1d:77:d2:d5:91:a8:8f:85:7e: 1f:95:08:d8:e6:8b:45:38:04:9b:b8:d0:56:b9:72:69:fe:43: ad:38:d9:96:82:7f:17:c1:a7:33:c6:37:6c:1c:0d:d2:e6:f8: f1:a8:3a:ac -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEicwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw NTI0NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENGRTNERDY0M0RCQjVE QUY3OEQwNkY3NzUxMDZEN0Q0NkNCREIwMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDshu5DZm+3iTw33qG54hkllQ9seNxRzML042WcMDBhKUPhSOZ omWoeKZ6vI8R9S57ba1Yz7IZXJk7LwFNMehPsC6lgj+/j5uqF//eEaPAVtq5+zLc Skg7LrKvCukFhJDG5nMYc3YY8itQLeRZNQF6S6eL/h97CwMDp9++RFkZKVtdWEbC 2seURtM7G95k/IOfz1cN1t8A0nTJOv49TlQfiE5cSc/wGll7yxFmFbgaegBV3z4U yxsm22lf6OCml3yj8X/xT9knekGZttdKtoqX07wRfwt4LhuWZqcil5Sv8oaNkhxz 1HU2BA4t35Xo0cb31s1shgMv+PGFIuPxFIZ7AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUz+PdZD27Xa940G93UQbX1Gy9sCAwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvei1QZFpEMjdYYTk0MEc5 M1VRYlgxR3k5c0NBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AHxsvzANBgkqhkiG9w0BAQsFAAOCAQEAfHKy1qRog7UaiQd8bM0RHZas1vRKsSsG JCxifBaC0k8jmKKz+RbruBiXEg/LmZDm0wwPUKr5WFpVw4xcF2g+tKpLAIvdCUBN AOcbLUYcLwr+NrUdlXRLeKF1ncyoBUF050xptAzyUD1i5Qhvdu2cnFmgoLQfhY15 ffNVn+OBd3WD5EGUFwZRmTU9zDV/fRH8SF1MOakYTG6p1y4MmdNQvwKLAp6qjiPo D5FVs4SQaO6qaL7LBYXvLR2kNRlR/EN3aTRudDrut53b105pH5H3HXfS1ZGoj4V+ H5UI2OaLRTgEm7jQVrlyaf5DrTjZloJ/F8GnM8Y3bBwN0ub48ag6rA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org