$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zDGM24QoMu7PJral_dDn5_JzPso.roa File: zDGM24QoMu7PJral_dDn5_JzPso.roa (raw, json) Hash identifier: 7Tk39/XvW7PcW3MTMnvxaUwyU+bSWAQZ5wHbh3j7Dps= Subject key identifier: CC:31:8C:DB:84:28:32:EE:CF:26:B6:A5:FD:D0:E7:E7:F2:73:3E:CA Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0F89 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zDGM24QoMu7PJral_dDn5_JzPso.roa Signing time: Fri 01 Sep 2023 09:36:59 +0000 ROA not before: Fri 01 Sep 2023 09:36:59 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4662 IP address blocks: 203.77.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3977 (0xf89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:36:59 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CC318CDB842832EECF26B6A5FDD0E7E7F2733ECA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:10:08:03:e1:0b:d9:92:81:bf:cc:44:4d:26: 91:6e:9d:08:84:0b:a1:4a:03:82:8e:20:05:78:ce: 13:12:27:c4:10:17:66:b9:a3:2f:55:ab:07:30:86: a8:d8:73:8d:b4:4d:6a:74:ba:19:c6:1f:8b:15:2c: 33:91:c4:bd:47:24:9e:9a:de:32:83:67:b6:f6:3f: 5b:5e:0e:d0:88:f3:78:88:18:33:95:bc:5c:fe:12: 6b:bc:92:f1:eb:11:ea:0d:99:86:99:83:70:f8:cd: 19:37:1e:c1:b2:ed:14:eb:4e:d1:19:74:fb:f2:a4: f1:e0:20:98:64:9e:2b:b8:75:e7:8f:af:ef:61:f2: 8b:11:68:c1:65:b7:f2:3a:bc:e8:53:d4:b6:01:80: 94:e8:71:7a:7d:dd:0d:5e:b9:e3:c8:fd:f8:fd:3b: 54:df:e8:4b:ed:b0:89:00:81:d7:8d:dd:6e:d8:72: 7d:8b:3a:11:42:4a:f7:f7:ff:8c:5f:34:95:71:37: 6f:5e:18:c3:d8:12:10:1a:ef:ba:d1:14:d5:96:98: d8:95:fe:18:10:88:77:a6:74:74:7a:33:b2:98:94: 8d:4c:1e:46:22:2f:5c:80:39:40:5c:c9:16:9f:a7: a4:ff:52:2e:dd:dd:d2:05:ac:95:75:82:76:74:78: 62:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:31:8C:DB:84:28:32:EE:CF:26:B6:A5:FD:D0:E7:E7:F2:73:3E:CA X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zDGM24QoMu7PJral_dDn5_JzPso.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.77.0.0/18 Signature Algorithm: sha256WithRSAEncryption 44:59:ba:85:4c:f8:77:f4:12:26:16:ae:77:a5:f1:77:5b:94: bc:c9:51:66:24:c8:62:03:59:d5:4a:2c:3d:63:55:de:e6:21: e9:1c:08:cb:96:a4:74:26:6a:30:3e:e6:53:b3:87:07:5b:30: 8f:20:6f:7f:7c:5f:5a:0d:2c:38:b1:56:16:f5:cd:01:09:7f: ab:0a:31:2f:e8:19:34:15:51:9b:f1:75:78:9c:a7:e8:d5:c7: ce:42:0d:1f:f6:e1:b4:cd:5b:22:0d:ce:15:11:4e:ef:f2:59: ae:68:c2:0f:17:48:dc:e9:a2:70:cc:cc:c6:b0:6d:b6:4c:9d: e2:06:c2:46:03:69:cd:3e:79:52:9a:b0:54:fd:ac:77:af:89: 6a:7a:88:b2:e5:25:59:1c:3b:f4:76:ee:9b:70:97:79:4c:54: 80:96:60:38:01:59:33:ff:2b:f0:36:d1:bd:c0:1e:5a:14:fa: 75:08:d2:30:d6:f8:2e:f4:6c:36:67:eb:f3:d5:7f:4f:02:32: a6:f9:69:75:60:67:ab:21:28:a5:c2:1b:d5:e4:14:28:5e:e6: 3e:1d:69:a6:68:02:be:db:f4:48:3c:2c:e3:a8:13:a4:87:d9: db:11:42:2d:9b:b7:ef:8c:12:bb:dd:e0:d9:30:2e:f8:fe:d7: ee:03:1a:c0 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICD4kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM2NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENDMzE4Q0RCODQyODMy RUVDRjI2QjZBNUZERDBFN0U3RjI3MzNFQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlEAgD4QvZkoG/zERNJpFunQiEC6FKA4KOIAV4zhMSJ8QQF2a5 oy9VqwcwhqjYc420TWp0uhnGH4sVLDORxL1HJJ6a3jKDZ7b2P1teDtCI83iIGDOV vFz+Emu8kvHrEeoNmYaZg3D4zRk3HsGy7RTrTtEZdPvypPHgIJhkniu4deePr+9h 8osRaMFlt/I6vOhT1LYBgJTocXp93Q1euePI/fj9O1Tf6EvtsIkAgdeN3W7Ycn2L OhFCSvf3/4xfNJVxN29eGMPYEhAa77rRFNWWmNiV/hgQiHemdHR6M7KYlI1MHkYi L1yAOUBcyRafp6T/Ui7d3dIFrJV1gnZ0eGJXAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUzDGM24QoMu7PJral/dDn5/JzPsowHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvekRHTTI0UW9NdTdQSnJh bF9kRG41X0p6UHNvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BstNADANBgkqhkiG9w0BAQsFAAOCAQEARFm6hUz4d/QSJhaud6Xxd1uUvMlRZiTI YgNZ1UosPWNV3uYh6RwIy5akdCZqMD7mU7OHB1swjyBvf3xfWg0sOLFWFvXNAQl/ qwoxL+gZNBVRm/F1eJyn6NXHzkINH/bhtM1bIg3OFRFO7/JZrmjCDxdI3OmicMzM xrBttkyd4gbCRgNpzT55UpqwVP2sd6+JanqIsuUlWRw79Hbum3CXeUxUgJZgOAFZ M/8r8DbRvcAeWhT6dQjSMNb4LvRsNmfr89V/TwIypvlpdWBnqyEopcIb1eQUKF7m Ph1ppmgCvtv0SDws46gTpIfZ2xFCLZu374wSu93g2TAu+P7X7gMawA== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:02 2024 by rpki-client on console-fra.rpki-client.org