$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/4ylLVLXg2avyX6bkyXRQMtPyBWk.roa File: 4ylLVLXg2avyX6bkyXRQMtPyBWk.roa (raw, json) Hash identifier: 3xPL+JSosIXSQJqWPqvsr3tx8GPj/KwYe7c2ZJoAniM= Subject key identifier: E3:29:4B:54:B5:E0:D9:AB:F2:5F:A6:E4:C9:74:50:32:D3:F2:05:69 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14E5 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/4ylLVLXg2avyX6bkyXRQMtPyBWk.roa Signing time: Fri 22 Aug 2025 08:54:54 +0000 ROA not before: Fri 22 Aug 2025 08:54:54 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.192.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5349 (0x14e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:54 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E3294B54B5E0D9ABF25FA6E4C9745032D3F20569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:de:d4:fb:09:7d:44:3d:88:58:99:5e:6d:f9: 5b:a1:3f:08:ba:d5:12:bc:5c:0d:08:88:fc:ae:88: c4:44:b2:ce:79:25:67:a7:f1:6f:10:f0:a9:73:58: d3:7d:2d:8f:67:72:3a:d7:0a:6f:e2:52:14:e1:43: 43:d9:80:3c:9f:b8:4a:10:a6:b1:21:5d:f0:2a:41: c4:fa:d6:e1:65:a0:2c:ac:48:36:2a:df:16:54:47: 9b:9c:0c:37:2d:f3:0e:7c:37:f3:92:6f:92:90:02: 53:71:09:39:55:8c:b7:ae:90:31:98:c4:52:ab:7a: bc:d4:61:9e:8e:e3:9c:75:ff:85:3b:d9:7b:6e:50: 59:11:62:ba:f5:69:cf:13:3a:fb:1a:98:30:d3:63: 92:69:5b:6b:03:30:ed:a1:be:5e:4a:12:f0:a5:4b: 93:8d:7e:c1:cf:b0:74:c9:70:41:47:ad:1f:c1:50: 27:1a:e5:4a:bb:d9:d5:c3:92:ee:10:69:8a:05:8b: 8c:a2:9b:b8:ed:e7:d0:af:70:d5:d0:38:71:c2:7f: b8:a3:1f:4d:a5:bd:ec:91:e7:db:1c:75:ce:b0:e8: 6e:1b:d5:e2:ce:43:dc:6a:e4:58:24:74:ec:be:56: f4:2e:18:89:79:9b:0f:ad:8f:37:a7:d0:a0:a9:bc: 6d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:29:4B:54:B5:E0:D9:AB:F2:5F:A6:E4:C9:74:50:32:D3:F2:05:69 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/4ylLVLXg2avyX6bkyXRQMtPyBWk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.192.128.0/17 Signature Algorithm: sha256WithRSAEncryption 1e:85:4f:c8:69:da:ac:5c:63:0d:21:70:78:f4:77:6a:50:ec: f3:e7:d7:f6:30:6e:91:ae:4a:73:75:eb:3b:0c:fa:fb:7a:7e: 0b:99:c8:dc:0a:0e:ff:c5:79:20:2f:2a:0f:36:99:79:29:f6: 66:6e:61:6c:66:cb:87:ff:91:01:d0:4f:90:a4:50:0e:b4:00: f7:a0:10:22:55:8c:54:3a:f0:71:f2:d2:c6:63:14:33:9a:58: 8c:a0:01:64:13:d8:ad:89:8c:fa:2f:45:ea:2b:c5:b6:08:f1: 0f:54:f0:4a:ff:3d:a8:75:39:f4:ad:77:75:32:e3:0e:fe:3f: a5:e6:e4:0b:1f:7e:66:5f:e2:03:59:1b:51:0c:a0:88:17:a3: f3:b7:6c:aa:20:70:d4:69:c8:42:16:39:84:fa:61:6a:bc:83: b6:28:9f:7b:a8:46:c4:0b:ff:de:03:5f:db:21:ba:51:c5:a1: af:55:84:2f:f0:a9:ee:6a:7d:a2:d6:29:3e:d6:51:84:c9:6c: cd:d7:24:d1:79:5d:13:fc:a3:79:62:cf:40:fd:77:be:52:82: 3c:56:cc:56:9a:32:64:2e:b1:2c:a6:3c:fe:5f:03:23:03:47: bb:15:7b:8a:fe:72:6e:90:c6:b5:60:ba:e8:09:2f:8b:be:81: e8:55:50:94 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFOUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUzMjk0QjU0QjVFMEQ5 QUJGMjVGQTZFNEM5NzQ1MDMyRDNGMjA1NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx3tT7CX1EPYhYmV5t+VuhPwi61RK8XA0IiPyuiMREss55JWen 8W8Q8KlzWNN9LY9ncjrXCm/iUhThQ0PZgDyfuEoQprEhXfAqQcT61uFloCysSDYq 3xZUR5ucDDct8w58N/OSb5KQAlNxCTlVjLeukDGYxFKrerzUYZ6O45x1/4U72Xtu UFkRYrr1ac8TOvsamDDTY5JpW2sDMO2hvl5KEvClS5ONfsHPsHTJcEFHrR/BUCca 5Uq72dXDku4QaYoFi4yim7jt59CvcNXQOHHCf7ijH02lveyR59scdc6w6G4b1eLO Q9xq5FgkdOy+VvQuGIl5mw+tjzen0KCpvG1ZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU4ylLVLXg2avyX6bkyXRQMtPyBWkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNHlsTFZMWGcyYXZ5WDZi a3lYUlFNdFB5QldrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B9LAgDANBgkqhkiG9w0BAQsFAAOCAQEAHoVPyGnarFxjDSFwePR3alDs8+fX9jBu ka5Kc3XrOwz6+3p+C5nI3AoO/8V5IC8qDzaZeSn2Zm5hbGbLh/+RAdBPkKRQDrQA 96AQIlWMVDrwcfLSxmMUM5pYjKABZBPYrYmM+i9F6ivFtgjxD1TwSv89qHU59K13 dTLjDv4/pebkCx9+Zl/iA1kbUQygiBej87dsqiBw1GnIQhY5hPpharyDtiife6hG xAv/3gNf2yG6UcWhr1WEL/Cp7mp9otYpPtZRhMlszdck0XldE/yjeWLPQP13vlKC PFbMVpoyZC6xLKY8/l8DIwNHuxV7iv5ybpDGtWC66Akvi76B6FVQlA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:48:56 2025 by rpki-client