$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6CFIfDmYvOXz0noWo4WKAyIm8-o.roa File: 6CFIfDmYvOXz0noWo4WKAyIm8-o.roa (raw, json) Hash identifier: ydYy96zxmjh+0BJJrPnyGIDJFyBsJ0hgkdoh29m1e7k= Subject key identifier: E8:21:48:7C:39:98:BC:E5:F3:D2:7A:16:A3:85:8A:03:22:26:F3:EA Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14F5 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6CFIfDmYvOXz0noWo4WKAyIm8-o.roa Signing time: Fri 22 Aug 2025 08:54:58 +0000 ROA not before: Fri 22 Aug 2025 08:54:58 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18049 IP address blocks: 210.62.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5365 (0x14f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:58 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E821487C3998BCE5F3D27A16A3858A032226F3EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:29:27:90:df:89:c0:fb:9b:14:72:cd:c9:69: 2c:3e:44:f6:bc:09:d0:3a:67:36:ad:93:10:c4:de: 8c:34:4e:ba:a4:d7:5a:45:6a:96:75:2a:10:7a:84: 20:55:07:48:32:d4:13:66:34:74:c0:e5:a5:38:67: 77:15:4d:a1:ef:cd:9f:70:a6:ab:ff:61:47:74:95: 3c:c0:47:6b:24:4b:25:39:a5:90:d2:57:90:41:00: 2b:89:d8:d3:25:77:bf:5a:e8:da:0a:36:a6:a1:d4: e2:cf:dc:63:c9:fe:91:31:fc:8c:cf:74:eb:2f:29: cc:a2:90:48:57:77:13:b0:69:aa:db:a3:f2:e1:bd: 78:d3:9f:d5:48:4b:7a:0a:a9:bb:d3:d6:80:c7:f5: af:a7:8e:bf:98:14:2a:28:b0:06:92:55:f2:b7:b6: 12:2a:f1:81:fa:a5:84:af:5c:fe:04:34:ac:d9:70: b8:9b:bc:e8:87:53:c7:72:b6:22:93:c1:51:17:13: b1:5a:27:a7:96:8f:cb:f3:18:fc:0e:75:b6:8c:4a: af:c8:af:0e:6f:50:99:47:21:62:21:fa:8f:95:a5: 77:cf:ce:ee:be:32:ec:1c:65:77:6d:00:28:14:57: 2b:bd:d8:ec:d2:9c:a6:e3:07:d7:0f:b6:a5:59:7c: 73:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:21:48:7C:39:98:BC:E5:F3:D2:7A:16:A3:85:8A:03:22:26:F3:EA X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6CFIfDmYvOXz0noWo4WKAyIm8-o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.192.0/20 Signature Algorithm: sha256WithRSAEncryption 1f:bb:36:f9:3d:7e:29:9f:4e:a3:bb:a3:ec:d8:5a:ba:76:1d: 7e:e0:26:10:00:7e:f4:f5:e5:ea:46:ef:e1:14:20:85:da:c6: de:75:4c:7b:77:a6:98:a0:c8:77:cd:61:49:b9:e0:de:55:11: 97:80:ab:a9:c3:89:6f:3a:dd:22:bd:72:35:61:6b:cb:c9:c0: dd:63:c4:a3:30:8a:0c:18:77:6f:3f:2c:ce:89:73:6d:f0:eb: c6:8f:ab:35:f9:e9:b4:81:fd:45:d9:93:51:b7:60:56:5f:0e: d6:dc:12:43:cb:58:8a:0f:7a:0e:aa:ec:75:72:bd:d2:d6:93: 36:70:9d:b1:3d:2f:10:20:54:ed:89:6e:92:c2:29:3d:c8:eb: 24:5a:c4:5a:52:c1:2a:a9:70:22:0f:2b:6d:43:de:a2:89:a5: ad:f8:d5:94:b5:c3:f6:39:04:0e:3d:f9:16:02:a7:79:73:a6: ef:7c:e7:e3:b2:18:2b:9d:b5:d0:19:81:dc:6d:6c:cb:df:46: 4e:ea:11:8b:7a:da:a5:50:6a:68:71:7f:f1:8d:0c:01:e4:8c: db:32:9c:b4:de:d8:2c:04:62:88:2a:10:e4:69:c8:c4:6f:52: 70:40:02:d8:55:be:5d:c3:8f:e4:4d:5c:60:5c:00:86:d0:75: 2c:1a:93:68 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU4MjE0ODdDMzk5OEJD RTVGM0QyN0ExNkEzODU4QTAzMjIyNkYzRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiKSeQ34nA+5sUcs3JaSw+RPa8CdA6ZzatkxDE3ow0Trqk11pF apZ1KhB6hCBVB0gy1BNmNHTA5aU4Z3cVTaHvzZ9wpqv/YUd0lTzAR2skSyU5pZDS V5BBACuJ2NMld79a6NoKNqah1OLP3GPJ/pEx/IzPdOsvKcyikEhXdxOwaarbo/Lh vXjTn9VIS3oKqbvT1oDH9a+njr+YFCoosAaSVfK3thIq8YH6pYSvXP4ENKzZcLib vOiHU8dytiKTwVEXE7FaJ6eWj8vzGPwOdbaMSq/Irw5vUJlHIWIh+o+VpXfPzu6+ MuwcZXdtACgUVyu92OzSnKbjB9cPtqVZfHPxAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU6CFIfDmYvOXz0noWo4WKAyIm8+owHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNkNGSWZEbVl2T1h6MG5v V280V0tBeUltOC1vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNI+wDANBgkqhkiG9w0BAQsFAAOCAQEAH7s2+T1+KZ9Oo7uj7NhaunYdfuAmEAB+ 9PXl6kbv4RQghdrG3nVMe3emmKDId81hSbng3lURl4CrqcOJbzrdIr1yNWFry8nA 3WPEozCKDBh3bz8szolzbfDrxo+rNfnptIH9RdmTUbdgVl8O1twSQ8tYig96Dqrs dXK90taTNnCdsT0vECBU7YluksIpPcjrJFrEWlLBKqlwIg8rbUPeoomlrfjVlLXD 9jkEDj35FgKneXOm73zn47IYK5210BmB3G1sy99GTuoRi3rapVBqaHF/8Y0MAeSM 2zKctN7YLARiiCoQ5GnIxG9ScEAC2FW+XcOP5E1cYFwAhtB1LBqTaA== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:53 2025 by rpki-client