$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0UplSjqPGHWLt19FTox38CJ7ywE.roa File: 0UplSjqPGHWLt19FTox38CJ7ywE.roa (raw, json) Hash identifier: ckjpvatA+lRqtjJR6KpPa97yLcrxXY0wMd3zWik1RXg= Subject key identifier: D1:4A:65:4A:3A:8F:18:75:8B:B7:5F:45:4E:8C:77:F0:22:7B:CB:01 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14BF Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0UplSjqPGHWLt19FTox38CJ7ywE.roa Signing time: Fri 22 Aug 2025 08:54:44 +0000 ROA not before: Fri 22 Aug 2025 08:54:44 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131634 IP address blocks: 124.108.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5311 (0x14bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D14A654A3A8F18758BB75F454E8C77F0227BCB01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:58:0f:73:eb:a2:b4:5d:cb:2e:fc:69:cf:2f: 3a:49:16:dc:d0:49:e9:e7:c3:a9:e8:44:75:0e:08: 28:16:8c:0f:83:97:53:4f:76:3d:f1:39:8d:f3:7e: 21:8e:96:9a:f6:13:46:29:f4:bf:1e:68:81:d4:c8: 9f:62:e2:1b:7b:6a:ef:ba:01:1f:27:d2:49:96:e7: 1e:7d:dd:0c:9d:cc:1d:fc:29:47:fe:6e:88:28:63: 88:3d:ad:78:fb:9c:70:11:a7:b4:5e:ce:66:38:51: bf:bf:7f:59:11:0d:e9:00:b2:8a:95:20:a5:63:58: 52:92:d6:b3:46:08:15:4a:48:c4:b4:46:c9:53:ea: 91:49:67:c7:b2:38:59:f5:ce:9a:a6:43:50:65:79: e1:dd:e7:f1:72:9d:3b:6a:95:be:91:91:08:fe:01: 27:df:6a:66:86:db:7e:46:81:02:fe:95:bd:4c:6e: 06:c1:77:ca:b3:ce:e5:1a:a9:a3:c9:c0:c5:d1:c9: 51:19:96:83:af:d8:8d:99:c7:e4:79:b1:ca:bf:72: 9d:8f:b4:da:c7:ab:39:24:ab:53:4d:b4:9a:6b:15: 69:1e:83:30:ca:d1:07:2b:2c:7b:55:61:35:c9:1e: 7b:a3:ae:fc:4d:ad:7a:5a:08:56:83:39:e2:88:63: 9b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:4A:65:4A:3A:8F:18:75:8B:B7:5F:45:4E:8C:77:F0:22:7B:CB:01 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0UplSjqPGHWLt19FTox38CJ7ywE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.191.0/24 Signature Algorithm: sha256WithRSAEncryption 20:32:76:5e:94:2f:1b:6d:71:de:25:da:25:43:1e:9e:e9:cc: 16:47:b4:ea:ed:96:a7:0a:59:fd:7e:1b:8a:92:d5:81:8e:ef: 0e:08:d5:1a:08:e4:f9:72:12:b0:3b:e6:46:61:90:a0:a9:99: 18:d8:29:13:c1:bc:73:0a:c4:99:c9:c2:58:04:ec:1c:a1:b8: 4b:a5:7c:02:c7:05:ab:08:c7:dd:9f:4c:50:6f:29:3e:ea:2f: 65:a5:f2:64:9c:cf:90:93:20:94:43:bb:b3:2c:9f:ff:77:99: e2:5c:c2:97:bb:a3:4c:c1:91:6d:7e:3c:f4:9b:76:e5:60:62: 0c:99:8f:88:54:40:5a:d1:97:65:37:72:4e:b6:f4:8a:33:e3: e6:a3:7a:d7:52:fd:08:f9:1b:3b:d9:1f:f7:42:e9:9d:0d:07: 26:c4:d1:85:50:42:41:a9:0a:48:72:1d:9e:b4:15:07:24:d1: a2:56:04:c3:1d:e5:65:58:dd:67:85:7c:84:1e:02:f4:f1:50: f7:4a:3d:25:ab:f8:e4:65:ad:56:73:7e:47:f2:41:0e:9c:d0: 21:e1:f8:c2:01:4c:28:0c:dd:b7:d4:b6:92:7e:bb:10:c0:b7: 81:28:26:e7:70:92:e7:a6:d1:6b:e7:a5:cf:4d:64:d6:95:f3: 1d:2a:cd:c5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFL8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQxNEE2NTRBM0E4RjE4 NzU4QkI3NUY0NTRFOEM3N0YwMjI3QkNCMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBWA9z66K0Xcsu/GnPLzpJFtzQSennw6noRHUOCCgWjA+Dl1NP dj3xOY3zfiGOlpr2E0Yp9L8eaIHUyJ9i4ht7au+6AR8n0kmW5x593QydzB38KUf+ bogoY4g9rXj7nHARp7RezmY4Ub+/f1kRDekAsoqVIKVjWFKS1rNGCBVKSMS0RslT 6pFJZ8eyOFn1zpqmQ1BleeHd5/FynTtqlb6RkQj+ASffamaG235GgQL+lb1MbgbB d8qzzuUaqaPJwMXRyVEZloOv2I2Zx+R5scq/cp2PtNrHqzkkq1NNtJprFWkegzDK 0QcrLHtVYTXJHnujrvxNrXpaCFaDOeKIY5udAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU0UplSjqPGHWLt19FTox38CJ7ywEwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvMFVwbFNqcVBHSFdMdDE5 RlRveDM4Q0o3eXdFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AHxsvzANBgkqhkiG9w0BAQsFAAOCAQEAIDJ2XpQvG21x3iXaJUMenunMFke06u2W pwpZ/X4bipLVgY7vDgjVGgjk+XISsDvmRmGQoKmZGNgpE8G8cwrEmcnCWATsHKG4 S6V8AscFqwjH3Z9MUG8pPuovZaXyZJzPkJMglEO7syyf/3eZ4lzCl7ujTMGRbX48 9Jt25WBiDJmPiFRAWtGXZTdyTrb0ijPj5qN611L9CPkbO9kf90LpnQ0HJsTRhVBC QakKSHIdnrQVByTRolYEwx3lZVjdZ4V8hB4C9PFQ90o9Jav45GWtVnN+R/JBDpzQ IeH4wgFMKAzdt9S2kn67EMC3gSgm53CS56bRa+elz01k1pXzHSrNxQ== -----END CERTIFICATE-----Generated at Sun Aug 24 06:50:30 2025 by rpki-client