$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-PC_yVJcwBIPSaMDcbw9CeirqSU.roa File: -PC_yVJcwBIPSaMDcbw9CeirqSU.roa (raw, json) Hash identifier: Zlsbi72poaO0Upj4cgZovi4dTLFsY1Ro0zKX/xh1moA= Subject key identifier: F8:F0:BF:C9:52:5C:C0:12:0F:49:A3:03:71:BC:3D:09:E8:AB:A9:25 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1491 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-PC_yVJcwBIPSaMDcbw9CeirqSU.roa Signing time: Fri 22 Aug 2025 08:54:34 +0000 ROA not before: Fri 22 Aug 2025 08:54:34 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.62.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5265 (0x1491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:34 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F8F0BFC9525CC0120F49A30371BC3D09E8ABA925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bb:97:b9:6c:78:d5:77:a6:70:ba:7d:3e:1c: e1:89:ce:4d:3b:b5:10:18:39:49:d0:83:6d:b9:04: 86:ac:87:a2:02:19:cf:78:10:39:bc:43:48:d5:73: 99:e2:b9:5e:22:ca:8b:6d:3e:ff:3e:ad:d0:e6:22: a3:be:ba:c2:63:15:1e:cb:73:4f:a7:4d:a9:cc:ec: a7:69:b9:e7:cc:1d:09:ef:31:bf:80:ff:43:cf:23: 40:75:05:ca:cf:e9:91:1b:dc:3a:76:02:c5:3f:c9: c7:47:6a:28:65:62:b8:55:4e:dc:ed:0f:88:bb:00: 37:77:b1:c3:04:c2:f8:a8:1a:0a:c2:03:8c:a5:7e: 2c:a8:ff:4b:da:1c:55:7c:cc:b3:10:40:65:f2:4d: f4:26:bd:a8:90:cc:f9:c5:3d:13:0b:38:cf:76:a9: d3:6c:30:a7:e3:62:b6:b0:68:cc:c1:2e:bc:ff:f8: 20:22:91:34:b4:0b:f9:5e:72:ef:ae:ec:08:59:88: 07:cb:b5:bc:e6:c0:1c:81:e6:7b:8c:1b:93:ca:22: f8:12:0c:80:8b:9e:ee:eb:36:62:15:6f:5c:cb:66: 7f:df:97:22:83:36:ed:69:30:5a:73:85:7b:91:50: dc:64:c2:57:b8:0d:a1:23:3d:6a:39:ca:d3:46:99: 7e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F0:BF:C9:52:5C:C0:12:0F:49:A3:03:71:BC:3D:09:E8:AB:A9:25 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-PC_yVJcwBIPSaMDcbw9CeirqSU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.0.0/19 Signature Algorithm: sha256WithRSAEncryption 96:c4:53:91:50:ab:05:de:94:31:e2:a3:87:ff:9c:18:c6:39: 27:57:92:7c:a5:9d:3d:20:cb:b9:9a:28:f7:66:6a:70:a1:9c: 1c:d7:d0:16:67:34:98:7c:56:fc:a4:ea:7e:5e:4f:a4:e9:20: f6:0f:9e:79:59:e1:65:36:64:f8:f1:5e:eb:85:38:62:97:f3: c2:82:0d:88:0d:84:6f:ba:2a:cf:85:84:42:9c:6b:8d:db:c6: a9:49:e1:8f:1f:8e:75:f9:57:c8:20:d8:82:15:af:43:4a:cc: 0b:e1:70:49:7c:62:24:83:70:3b:08:88:c9:46:b3:78:60:d5: 69:d6:cb:b6:b9:88:be:7d:19:41:d4:1c:08:d7:8f:65:05:12: bd:29:fa:9b:ab:00:98:82:c1:4b:63:d2:48:48:74:0a:a6:e7: ee:52:0d:52:e5:22:2d:b2:90:56:36:51:de:9e:01:35:dd:a2: b3:19:20:63:a9:19:0e:28:a8:1b:a8:f3:bf:e0:5e:51:ce:a2: 75:50:51:81:95:f8:65:72:1f:59:46:99:9e:8f:68:c8:e1:cb: 1c:ee:98:42:e2:33:31:fa:05:1f:bb:4f:1c:50:05:29:7c:af: fe:44:06:bd:50:06:62:3b:a8:5b:53:de:cf:1b:9f:ed:61:30: 89:16:04:67 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFJEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY4RjBCRkM5NTI1Q0Mw MTIwRjQ5QTMwMzcxQkMzRDA5RThBQkE5MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJu5e5bHjVd6Zwun0+HOGJzk07tRAYOUnQg225BIash6ICGc94 EDm8Q0jVc5niuV4iyottPv8+rdDmIqO+usJjFR7Lc0+nTanM7KdpuefMHQnvMb+A /0PPI0B1BcrP6ZEb3Dp2AsU/ycdHaihlYrhVTtztD4i7ADd3scMEwvioGgrCA4yl fiyo/0vaHFV8zLMQQGXyTfQmvaiQzPnFPRMLOM92qdNsMKfjYrawaMzBLrz/+CAi kTS0C/lecu+u7AhZiAfLtbzmwByB5nuMG5PKIvgSDICLnu7rNmIVb1zLZn/flyKD Nu1pMFpzhXuRUNxkwle4DaEjPWo5ytNGmX63AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU+PC/yVJcwBIPSaMDcbw9CeirqSUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvLVBDX3lWSmN3QklQU2FN RGNidzlDZWlycVNVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdI+ADANBgkqhkiG9w0BAQsFAAOCAQEAlsRTkVCrBd6UMeKjh/+cGMY5J1eSfKWd PSDLuZoo92ZqcKGcHNfQFmc0mHxW/KTqfl5PpOkg9g+eeVnhZTZk+PFe64U4Ypfz woINiA2Eb7oqz4WEQpxrjdvGqUnhjx+OdflXyCDYghWvQ0rMC+FwSXxiJINwOwiI yUazeGDVadbLtrmIvn0ZQdQcCNePZQUSvSn6m6sAmILBS2PSSEh0Cqbn7lINUuUi LbKQVjZR3p4BNd2isxkgY6kZDiioG6jzv+BeUc6idVBRgZX4ZXIfWUaZno9oyOHL HO6YQuIzMfoFH7tPHFAFKXyv/kQGvVAGYjuoW1Pezxuf7WEwiRYEZw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:48:51 2025 by rpki-client