$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5vi_7Sp3sNCpqqA-MkveFMoMosc.roa File: 5vi_7Sp3sNCpqqA-MkveFMoMosc.roa (raw, json) Hash identifier: WBFdPNJ02kC4W01E79mto9U0dUgCYAY3DS3DDTzlj78= Subject key identifier: E6:F8:BF:ED:2A:77:B0:D0:A9:AA:A0:3E:32:4B:DE:14:CA:0C:A2:C7 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 1513 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5vi_7Sp3sNCpqqA-MkveFMoMosc.roa Signing time: Fri 22 Aug 2025 08:55:06 +0000 ROA not before: Fri 22 Aug 2025 08:55:06 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 131634 IP address blocks: 124.108.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5395 (0x1513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:55:06 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E6F8BFED2A77B0D0A9AAA03E324BDE14CA0CA2C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3b:2b:d3:db:fd:2d:7f:20:17:07:0a:cc:cb: 7e:6b:de:2d:3f:44:4f:1f:b5:0d:ee:fb:93:93:bf: 31:e9:dc:8a:10:48:e8:5a:d7:86:c2:31:e7:2a:6e: 00:75:fa:81:92:cb:aa:e7:b5:28:53:d4:ef:25:5b: 4d:92:2a:bd:00:8d:49:72:72:03:81:9f:fe:47:4a: a7:11:0e:c2:95:bc:fa:ad:3c:5f:34:c7:cf:6d:dc: 9a:62:08:6f:96:44:b8:7b:79:96:e6:d7:87:67:e0: 9c:c0:57:18:a8:a3:3b:82:6a:94:3e:f0:51:93:17: 7f:ad:78:a8:32:7f:cc:e1:c8:c1:7b:45:45:b2:bf: 9e:f0:31:9c:fc:55:33:5b:77:d0:b3:9e:fc:e6:01: a0:d2:8e:03:a9:c6:fc:88:5a:36:3d:a3:b9:7f:08: 51:12:96:7f:05:7e:d9:fc:91:3e:b6:c1:6b:e8:7a: cf:10:9f:31:36:64:f2:b0:8c:9f:eb:10:f7:4d:52: 7a:ee:1c:2e:90:8e:be:9d:92:60:5a:54:79:a6:33: f1:93:4a:df:77:b9:92:9f:b3:1d:00:37:77:9b:4e: 3e:8f:56:a5:77:50:a7:dd:c3:e7:bb:d6:1b:8f:33: 20:60:f1:57:c3:05:d7:e7:aa:5f:b5:b9:5f:4b:65: ed:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F8:BF:ED:2A:77:B0:D0:A9:AA:A0:3E:32:4B:DE:14:CA:0C:A2:C7 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5vi_7Sp3sNCpqqA-MkveFMoMosc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.150.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:12:2f:7f:79:e0:2c:47:3c:8b:01:32:d6:dc:66:a2:90:6e: fe:53:c3:35:9b:c6:45:8b:86:99:13:00:58:98:6a:6d:39:ae: 84:07:60:a5:97:26:0e:13:fc:ae:44:b4:f2:a2:96:81:0f:8a: 10:5f:11:a6:1b:20:71:cb:23:36:86:1b:80:02:01:66:65:38: 41:e6:90:65:a7:ae:e6:e6:5c:e8:18:bb:fa:bd:fe:cd:0c:41: 2f:91:0f:21:50:50:9a:7a:88:3a:68:b7:06:49:6d:e3:41:e2: 08:ca:fa:2d:fb:16:2e:ec:ab:c7:d4:33:f0:6b:65:e1:5c:3a: 7b:54:b6:82:4a:3c:d1:d5:f4:ac:38:1d:92:a2:8d:ac:d7:64: 81:4f:a2:4d:43:49:29:41:0d:a0:e3:47:f8:93:ef:e9:de:70: a2:52:1c:37:77:3c:c3:d5:ab:29:2d:e1:e4:9b:fb:85:86:26: f1:32:43:03:22:bf:0c:7d:4b:78:cf:5c:ad:90:b5:1a:eb:b9: 8a:aa:7d:30:af:16:0e:11:54:98:dd:59:aa:07:b5:b5:cd:96: e1:5b:39:47:2b:d0:cb:81:8e:b4:7d:3a:98:86:21:cb:5f:27: 00:15:72:e1:40:13:d4:2d:c5:1b:d5:0d:76:59:d2:ac:9c:a6: 98:e6:24:a6 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFRMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU1MDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU2RjhCRkVEMkE3N0Iw RDBBOUFBQTAzRTMyNEJERTE0Q0EwQ0EyQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYOyvT2/0tfyAXBwrMy35r3i0/RE8ftQ3u+5OTvzHp3IoQSOha 14bCMecqbgB1+oGSy6rntShT1O8lW02SKr0AjUlycgOBn/5HSqcRDsKVvPqtPF80 x89t3JpiCG+WRLh7eZbm14dn4JzAVxioozuCapQ+8FGTF3+teKgyf8zhyMF7RUWy v57wMZz8VTNbd9CznvzmAaDSjgOpxvyIWjY9o7l/CFESln8Fftn8kT62wWvoes8Q nzE2ZPKwjJ/rEPdNUnruHC6Qjr6dkmBaVHmmM/GTSt93uZKfsx0AN3ebTj6PVqV3 UKfdw+e71huPMyBg8VfDBdfnql+1uV9LZe33AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU5vi/7Sp3sNCpqqA+MkveFMoMoscwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNXZpXzdTcDNzTkNwcXFB LU1rdmVGTW9Nb3NjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AXxsljANBgkqhkiG9w0BAQsFAAOCAQEAGhIvf3ngLEc8iwEy1txmopBu/lPDNZvG RYuGmRMAWJhqbTmuhAdgpZcmDhP8rkS08qKWgQ+KEF8RphsgccsjNoYbgAIBZmU4 QeaQZaeu5uZc6Bi7+r3+zQxBL5EPIVBQmnqIOmi3Bklt40HiCMr6LfsWLuyrx9Qz 8Gtl4Vw6e1S2gko80dX0rDgdkqKNrNdkgU+iTUNJKUENoONH+JPv6d5wolIcN3c8 w9WrKS3h5Jv7hYYm8TJDAyK/DH1LeM9crZC1Guu5iqp9MK8WDhFUmN1Zqge1tc2W 4Vs5RyvQy4GOtH06mIYhy18nABVy4UAT1C3FG9UNdlnSrJymmOYkpg== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:40 2025 by rpki-client