$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5iJ5buE1m5AgU3SgCgWaudd8RJI.roa File: 5iJ5buE1m5AgU3SgCgWaudd8RJI.roa (raw, json) Hash identifier: qrUr7gLug/AuIyL0XW9wUHwp1JYtWusrdF/on7x6qIA= Subject key identifier: E6:22:79:6E:E1:35:9B:90:20:53:74:A0:0A:05:9A:B9:D7:7C:44:92 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14D0 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5iJ5buE1m5AgU3SgCgWaudd8RJI.roa Signing time: Fri 22 Aug 2025 08:54:48 +0000 ROA not before: Fri 22 Aug 2025 08:54:48 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 135596 IP address blocks: 60.198.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5328 (0x14d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E622796EE1359B90205374A00A059AB9D77C4492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d3:19:65:91:17:bf:a6:3c:bf:0f:62:71:38: 31:46:a0:85:ff:7f:d6:fa:38:be:fa:c2:2e:5b:77: 0d:78:87:e0:ae:2e:5a:8a:1c:c7:db:9a:bc:29:85: d5:b3:24:fc:10:a6:04:07:ae:ef:84:a2:30:3e:1f: ad:bf:6c:9c:e9:32:e2:83:3c:77:a2:80:cf:94:cf: ff:77:2d:1f:a3:c5:7f:b1:cf:26:3c:63:07:ec:7c: a6:51:83:ce:5d:30:1a:db:91:e7:86:2f:88:44:96: bc:f8:16:32:a8:1e:1c:1b:62:0f:29:81:b7:18:9f: 80:c3:d8:f9:85:70:c4:a2:ea:86:13:61:b7:04:ad: f3:aa:b9:dc:31:f5:38:59:aa:f6:01:87:f1:ae:a0: 9c:96:95:3c:7f:4a:dd:cd:e7:4e:3e:fa:00:cb:8a: cc:51:9b:74:37:66:cc:1f:dd:9b:27:17:3e:9c:a4: c2:c9:63:7f:49:ec:43:8c:aa:9e:59:08:fb:b5:68: 91:97:57:41:bf:b2:f7:93:e6:c7:71:5c:15:c2:96: 0e:c5:14:d0:37:af:db:4c:15:aa:cb:c0:62:0e:f4: bd:77:3c:0e:5a:60:8e:03:8f:4a:de:e1:58:64:4e: 9e:eb:3f:0a:ff:7a:ae:7d:25:c9:2d:24:b8:8f:d7: 07:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:22:79:6E:E1:35:9B:90:20:53:74:A0:0A:05:9A:B9:D7:7C:44:92 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5iJ5buE1m5AgU3SgCgWaudd8RJI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.198.155.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:ff:37:6f:c4:0b:93:ca:6e:b6:32:80:7c:68:e6:fb:dc:2d: 2b:94:c7:15:c4:0e:91:b9:3e:75:48:97:23:cc:80:92:a1:ba: 29:54:40:8e:e9:e8:90:17:51:61:f4:c2:41:6d:26:09:af:17: 1f:8a:9a:56:04:15:7d:fd:43:7b:ee:e3:72:92:c1:7e:f7:a7: e5:7c:aa:5f:3f:04:c2:69:50:b3:7d:27:d5:1b:fa:d9:da:d5: 43:4d:6c:64:83:f0:bf:6b:b1:39:4a:c8:8a:9f:c6:1a:3a:41: 98:c6:cf:a2:31:12:11:23:53:63:19:45:8a:f0:5a:e3:e1:fb: 1a:46:03:78:2e:f4:7d:14:56:2f:dd:4d:bf:50:2d:a1:6b:55: c9:20:0c:92:60:48:82:f4:d1:d1:ee:41:07:ee:89:c1:b0:7b: d3:e6:5e:79:e8:29:99:33:26:3c:1b:3f:93:4d:52:9d:6a:a8: ad:3f:cb:bb:b7:a7:07:a5:74:2d:59:db:ba:bb:79:eb:49:53: 9b:fa:69:1f:7a:d0:96:de:20:0e:d4:0e:7a:a9:3c:e4:f0:8e: 42:b8:23:61:d8:c6:65:be:14:ce:50:ab:7f:14:11:ea:de:03: 0c:3c:d0:12:14:45:eb:7a:f1:84:e6:29:07:52:c5:50:f8:1b: 96:19:91:67 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFNAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU2MjI3OTZFRTEzNTlC OTAyMDUzNzRBMDBBMDU5QUI5RDc3QzQ0OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC70xllkRe/pjy/D2JxODFGoIX/f9b6OL76wi5bdw14h+CuLlqK HMfbmrwphdWzJPwQpgQHru+EojA+H62/bJzpMuKDPHeigM+Uz/93LR+jxX+xzyY8 YwfsfKZRg85dMBrbkeeGL4hElrz4FjKoHhwbYg8pgbcYn4DD2PmFcMSi6oYTYbcE rfOqudwx9ThZqvYBh/GuoJyWlTx/St3N504++gDLisxRm3Q3Zswf3ZsnFz6cpMLJ Y39J7EOMqp5ZCPu1aJGXV0G/sveT5sdxXBXClg7FFNA3r9tMFarLwGIO9L13PA5a YI4Dj0re4VhkTp7rPwr/eq59JcktJLiP1wdHAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU5iJ5buE1m5AgU3SgCgWaudd8RJIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNWlKNWJ1RTFtNUFnVTNT Z0NnV2F1ZGQ4UkpJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzGmzANBgkqhkiG9w0BAQsFAAOCAQEALv83b8QLk8putjKAfGjm+9wtK5THFcQO kbk+dUiXI8yAkqG6KVRAjunokBdRYfTCQW0mCa8XH4qaVgQVff1De+7jcpLBfven 5XyqXz8EwmlQs30n1Rv62drVQ01sZIPwv2uxOUrIip/GGjpBmMbPojESESNTYxlF ivBa4+H7GkYDeC70fRRWL91Nv1AtoWtVySAMkmBIgvTR0e5BB+6JwbB70+Zeeegp mTMmPBs/k01SnWqorT/Lu7enB6V0LVnburt560lTm/ppH3rQlt4gDtQOeqk85PCO QrgjYdjGZb4UzlCrfxQR6t4DDDzQEhRF63rxhOYpB1LFUPgblhmRZw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:50:33 2025 by rpki-client