$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1w6d_yvRzALRnZg9IoMKOo3W9Gc.roa File: 1w6d_yvRzALRnZg9IoMKOo3W9Gc.roa (raw, json) Hash identifier: WHjnZe7P84+MLcLPhXauYdQ6Vo+ZpeKkf9ILbJVbdQ8= Subject key identifier: D7:0E:9D:FF:2B:D1:CC:02:D1:9D:98:3D:22:83:0A:3A:8D:D6:F4:67 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14FE Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1w6d_yvRzALRnZg9IoMKOo3W9Gc.roa Signing time: Fri 22 Aug 2025 08:55:01 +0000 ROA not before: Fri 22 Aug 2025 08:55:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131628 IP address blocks: 175.99.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5374 (0x14fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:55:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D70E9DFF2BD1CC02D19D983D22830A3A8DD6F467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6f:1e:6a:d7:9a:97:50:d5:5c:d7:5a:0e:ed: 3f:66:8a:bb:0d:f4:44:e5:8b:5f:f8:47:48:c4:80: 78:8b:3f:3e:3b:8a:87:30:70:4d:bf:0f:37:2e:bd: c5:d6:78:79:a4:46:e6:72:7a:20:42:42:68:2e:2c: 57:2e:7b:3d:d4:e7:69:cd:42:91:0b:9f:6e:e3:94: ec:1e:dc:12:dc:b4:39:86:6c:05:a7:28:3f:a7:24: 77:bc:9a:38:5d:5f:bb:9f:cd:7f:6e:ca:f3:1c:0b: 72:45:fc:3f:1a:c7:7f:78:97:1b:3d:4e:e9:f5:9e: cc:e3:98:15:b6:d1:87:5d:e9:d6:92:a0:f5:fc:c5: e3:29:65:53:a3:99:10:99:2c:9c:39:e5:a9:87:d9: e8:64:26:14:68:85:c7:b1:23:15:c8:7a:52:37:ab: d6:56:6d:df:f4:30:2d:ed:39:cc:55:e9:19:71:66: fc:9f:81:0f:14:92:29:2d:06:7d:2d:fa:72:dd:1f: aa:58:17:4e:4e:d4:06:5b:03:e8:bf:8e:47:27:b4: f1:92:ad:b8:97:c6:12:8c:9b:3a:5b:94:2e:9c:22: 5d:da:b4:79:fe:a9:ce:7e:eb:9f:65:d7:bc:82:fc: 5d:5c:a9:60:95:33:40:d5:19:31:b2:05:27:7b:b0: 5a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0E:9D:FF:2B:D1:CC:02:D1:9D:98:3D:22:83:0A:3A:8D:D6:F4:67 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1w6d_yvRzALRnZg9IoMKOo3W9Gc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.99.0.0/19 Signature Algorithm: sha256WithRSAEncryption 1a:ba:41:16:cc:fc:fe:74:5e:54:63:38:23:c3:2b:43:80:48: 59:1d:89:9d:56:7d:31:54:3c:4d:66:79:3d:e7:d1:c1:b8:f9: 38:08:fd:0c:10:84:cc:f4:bc:0b:d5:d7:a6:ea:f0:b9:1e:1e: e4:c6:d0:94:05:78:1a:14:8f:58:49:61:e0:94:ac:d4:5a:01: f5:d4:73:72:28:22:34:39:47:b8:4e:ff:d1:af:1d:34:23:97: 78:31:35:91:50:97:ec:cd:63:4f:8e:c0:42:7f:ce:23:5c:6d: 42:d9:bd:da:4f:2b:80:e4:b0:d2:51:cf:d4:a4:96:bc:04:5b: 0f:7b:f8:64:f4:06:75:c7:a4:92:aa:04:20:26:c4:cb:df:43: 54:ed:a4:77:fe:7a:c0:2f:30:21:37:27:29:64:dd:db:b3:03: bf:7e:08:30:d7:3b:89:db:4d:b5:c2:a2:f5:09:23:93:c8:c6: ef:79:91:49:85:96:d9:65:c3:bc:b9:49:e5:6e:e7:75:70:ce: 69:e9:85:b8:e6:43:36:a1:a4:07:ec:d6:13:f3:18:80:8b:dc: e1:26:b7:86:d8:cf:59:89:4e:b6:10:cc:0a:e5:2d:30:50:ff: 39:c0:6b:51:88:da:ee:40:03:4d:fa:47:61:c6:cf:c3:56:af: 9b:fe:e7:8a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU1MDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ3MEU5REZGMkJEMUND MDJEMTlEOTgzRDIyODMwQTNBOERENkY0NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDbx5q15qXUNVc11oO7T9mirsN9ETli1/4R0jEgHiLPz47iocw cE2/DzcuvcXWeHmkRuZyeiBCQmguLFcuez3U52nNQpELn27jlOwe3BLctDmGbAWn KD+nJHe8mjhdX7ufzX9uyvMcC3JF/D8ax394lxs9Tun1nszjmBW20Ydd6daSoPX8 xeMpZVOjmRCZLJw55amH2ehkJhRohcexIxXIelI3q9ZWbd/0MC3tOcxV6RlxZvyf gQ8UkiktBn0t+nLdH6pYF05O1AZbA+i/jkcntPGSrbiXxhKMmzpblC6cIl3atHn+ qc5+659l17yC/F1cqWCVM0DVGTGyBSd7sFq1AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU1w6d/yvRzALRnZg9IoMKOo3W9GcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvMXc2ZF95dlJ6QUxSblpn OUlvTUtPbzNXOUdjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Ba9jADANBgkqhkiG9w0BAQsFAAOCAQEAGrpBFsz8/nReVGM4I8MrQ4BIWR2JnVZ9 MVQ8TWZ5PefRwbj5OAj9DBCEzPS8C9XXpurwuR4e5MbQlAV4GhSPWElh4JSs1FoB 9dRzcigiNDlHuE7/0a8dNCOXeDE1kVCX7M1jT47AQn/OI1xtQtm92k8rgOSw0lHP 1KSWvARbD3v4ZPQGdcekkqoEICbEy99DVO2kd/56wC8wITcnKWTd27MDv34IMNc7 idtNtcKi9Qkjk8jG73mRSYWW2WXDvLlJ5W7ndXDOaemFuOZDNqGkB+zWE/MYgIvc 4Sa3htjPWYlOthDMCuUtMFD/OcBrUYja7kADTfpHYcbPw1avm/7nig== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:31 2025 by rpki-client