$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/49WC3RHHb0thM17KF-v7Kg1OVX8.roa File: 49WC3RHHb0thM17KF-v7Kg1OVX8.roa (raw, json) Hash identifier: 5LcLFqPJjuJL5VyCqzvc8l8OsaKRLv1PRKIDCcFgsV0= Subject key identifier: E3:D5:82:DD:11:C7:6F:4B:61:33:5E:CA:17:EB:FB:2A:0D:4E:55:7F Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14C6 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/49WC3RHHb0thM17KF-v7Kg1OVX8.roa Signing time: Fri 22 Aug 2025 08:54:46 +0000 ROA not before: Fri 22 Aug 2025 08:54:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 135596 IP address blocks: 60.198.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5318 (0x14c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E3D582DD11C76F4B61335ECA17EBFB2A0D4E557F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6e:df:d8:a6:00:dd:02:0a:40:c8:54:35:11: d0:f0:e7:83:c2:12:3e:53:c8:73:3a:cd:02:73:6e: 40:df:75:18:44:4f:37:8e:a0:1f:d8:eb:85:61:fd: e4:e3:b0:60:de:ff:b3:47:90:70:b4:0c:5a:de:e1: 1d:47:ed:b0:89:8c:34:35:58:4c:87:96:0c:97:32: d6:27:04:c6:0f:07:f8:91:0a:f3:ea:14:bb:2f:f7: 2e:f0:21:13:38:51:38:57:d3:18:02:72:7b:0b:67: 52:7d:b9:2d:4e:c2:19:94:c1:63:c0:d8:44:03:26: 12:22:b8:70:12:50:6e:29:6e:e9:d8:a3:86:b7:8c: 7c:63:61:a9:eb:3e:96:70:66:68:80:38:53:b7:a9: 9b:48:2a:a9:bb:c5:1b:77:f3:84:68:63:23:8f:f0: b9:af:f1:0f:d8:cf:ee:b1:8f:75:cd:82:ca:da:41: 28:64:0d:93:11:18:07:6e:09:44:ff:49:27:d0:0f: dd:0a:11:c6:63:36:79:df:d4:f2:ad:c4:57:17:ff: 7f:e2:63:2a:0e:7c:78:f7:5c:25:86:ba:75:16:1b: 71:55:53:e2:bd:0c:6d:5c:c5:c5:6e:28:2a:ba:41: 12:15:54:ca:4b:5c:a2:c0:5d:9d:2d:e7:64:c8:75: 25:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D5:82:DD:11:C7:6F:4B:61:33:5E:CA:17:EB:FB:2A:0D:4E:55:7F X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/49WC3RHHb0thM17KF-v7Kg1OVX8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.154.0/24 Signature Algorithm: sha256WithRSAEncryption 87:9e:6b:65:ce:a4:a5:6d:f4:f6:5d:00:fd:8b:41:5d:37:1f: 56:0a:e3:07:61:77:cb:93:e7:75:2b:86:11:9d:47:5a:62:93: 50:3f:32:2e:c8:81:34:fb:22:36:0d:5b:1c:a4:8e:e0:b4:95: 37:89:b8:a8:5b:a2:9a:21:5d:d2:3f:78:53:0c:d0:0b:30:08: 20:50:5f:3f:d9:7f:fb:bf:1c:1d:d8:e0:e1:43:b8:fb:6b:76: cd:00:e5:dc:18:15:ca:32:25:ff:81:d1:d7:49:92:8e:0d:18: a0:7b:9d:85:fd:6a:5e:df:c4:06:f9:22:39:6a:72:13:68:08: 80:c7:31:04:5d:27:3c:16:67:23:72:d2:95:1f:05:00:7f:d0: ed:55:76:12:87:02:c8:af:57:3f:36:b0:0a:a3:ac:6a:2c:23: ab:ca:75:4c:15:b3:10:95:1e:95:0c:d9:91:9a:34:6e:4c:cd: d6:36:e4:bf:54:91:20:14:6f:b6:bb:f6:e4:92:c0:cd:b9:02: ba:3e:52:6a:b8:0a:a3:bd:cb:9e:76:b0:46:4c:84:3a:d3:f0: 3b:0e:54:eb:86:c1:36:12:e2:a1:f7:1a:b5:3c:e2:03:8f:47: 69:d1:8a:52:5c:79:9d:26:8d:06:22:83:a1:4a:18:26:3c:46: 5d:ae:58:2e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzRDU4MkREMTFDNzZG NEI2MTMzNUVDQTE3RUJGQjJBMEQ0RTU1N0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9bt/YpgDdAgpAyFQ1EdDw54PCEj5TyHM6zQJzbkDfdRhETzeO oB/Y64Vh/eTjsGDe/7NHkHC0DFre4R1H7bCJjDQ1WEyHlgyXMtYnBMYPB/iRCvPq FLsv9y7wIRM4UThX0xgCcnsLZ1J9uS1OwhmUwWPA2EQDJhIiuHASUG4pbunYo4a3 jHxjYanrPpZwZmiAOFO3qZtIKqm7xRt384RoYyOP8Lmv8Q/Yz+6xj3XNgsraQShk DZMRGAduCUT/SSfQD90KEcZjNnnf1PKtxFcX/3/iYyoOfHj3XCWGunUWG3FVU+K9 DG1cxcVuKCq6QRIVVMpLXKLAXZ0t52TIdSW5AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU49WC3RHHb0thM17KF+v7Kg1OVX8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNDlXQzNSSEhiMHRoTTE3 S0YtdjdLZzFPVlg4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzGmjANBgkqhkiG9w0BAQsFAAOCAQEAh55rZc6kpW309l0A/YtBXTcfVgrjB2F3 y5PndSuGEZ1HWmKTUD8yLsiBNPsiNg1bHKSO4LSVN4m4qFuimiFd0j94UwzQCzAI IFBfP9l/+78cHdjg4UO4+2t2zQDl3BgVyjIl/4HR10mSjg0YoHudhf1qXt/EBvki OWpyE2gIgMcxBF0nPBZnI3LSlR8FAH/Q7VV2EocCyK9XPzawCqOsaiwjq8p1TBWz EJUelQzZkZo0bkzN1jbkv1SRIBRvtrv25JLAzbkCuj5SargKo73LnnawRkyEOtPw Ow5U64bBNhLiofcatTziA49HadGKUlx5nSaNBiKDoUoYJjxGXa5YLg== -----END CERTIFICATE-----Generated at Sun Aug 24 06:47:57 2025 by rpki-client