$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6Ks70T8qOGZwf_TxB260LE7zq1s.roa File: 6Ks70T8qOGZwf_TxB260LE7zq1s.roa (raw, json) Hash identifier: vloNMnIWWn5w2i2rYMAA/nHCaVgX5+4g9xKJpsyM+3g= Subject key identifier: E8:AB:3B:D1:3F:2A:38:66:70:7F:F4:F1:07:6E:B4:2C:4E:F3:AB:5B Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14FD Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6Ks70T8qOGZwf_TxB260LE7zq1s.roa Signing time: Fri 22 Aug 2025 08:55:00 +0000 ROA not before: Fri 22 Aug 2025 08:55:00 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 211.78.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5373 (0x14fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:55:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E8AB3BD13F2A3866707FF4F1076EB42C4EF3AB5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8e:92:f5:ea:8e:58:b6:64:24:e8:b3:a1:d8: 51:df:52:86:c2:9b:17:c7:11:38:e6:54:e9:46:d3: 08:1a:ff:90:7c:06:d9:f6:54:d2:f7:d4:49:71:7d: cc:d4:29:93:5e:49:28:7d:92:8d:76:e5:5a:0c:55: 03:f7:47:d8:16:88:ae:15:7f:8d:3f:b2:fd:eb:86: cf:2c:be:0e:16:b0:4e:58:23:e7:7d:0e:43:5e:d7: 4f:00:96:ac:87:e4:61:7a:2d:99:97:24:b2:ab:99: 97:10:42:ab:f0:73:94:c7:a5:e9:5a:91:d6:b0:7a: bd:3f:73:75:c9:b8:ce:9a:44:ce:44:54:b7:ee:ff: 46:96:36:16:85:2e:72:ec:9a:4d:d2:f3:4e:4f:f4: 10:ad:43:8b:a7:e2:f9:80:18:16:75:60:44:5e:50: a3:cf:eb:05:cd:b5:76:33:8b:0c:34:95:ec:ff:a1: 41:64:b9:0d:f7:39:ab:0c:20:fe:7e:33:bf:c6:10: b4:3a:e5:b5:b2:ab:aa:5b:67:ea:78:56:6e:2c:bc: 10:83:72:e9:e9:e2:16:25:d2:1d:ea:79:b4:06:10: 33:fc:48:cc:c1:f6:14:2f:6d:36:5f:74:94:2e:20: b5:11:3c:45:a2:6e:f6:a6:ce:d6:6f:e0:6d:73:73: 0b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AB:3B:D1:3F:2A:38:66:70:7F:F4:F1:07:6E:B4:2C:4E:F3:AB:5B X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6Ks70T8qOGZwf_TxB260LE7zq1s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.208.0/20 Signature Algorithm: sha256WithRSAEncryption 4e:35:18:14:c6:94:5b:f1:fe:74:9a:ec:b0:b1:85:48:c7:d3: 02:df:c6:11:ef:7e:7a:e2:16:50:66:29:14:cd:79:44:76:95: e3:03:71:64:55:ec:27:26:96:1f:39:cb:90:50:08:0b:01:34: 09:0b:62:ab:3a:66:04:14:f4:a6:7b:b5:e2:05:f1:81:45:81: 52:26:14:35:99:99:b5:37:29:d8:71:cf:11:b2:20:54:67:3f: 17:0f:59:d7:47:71:05:cf:44:be:11:0d:c0:27:93:0e:61:a9: fa:0d:dd:78:81:59:e8:7a:c7:f5:c7:dd:1c:9b:b0:4b:a7:3f: ee:a6:8c:b5:95:f0:ac:19:9a:4f:f4:08:37:e9:c6:cf:71:28: 9b:df:78:2d:6f:c0:7a:05:4f:b4:75:f1:f5:e9:c2:c3:79:0a: 70:80:31:4e:8a:fd:b6:8f:77:c0:19:41:ae:49:83:0c:36:93: b7:47:ad:b4:bc:0e:d7:ea:f7:36:ed:ac:6b:ed:df:d5:1c:c5: 26:82:05:97:99:02:93:e7:86:92:74:6d:ad:70:fd:17:a9:07: 8e:3a:2b:00:fa:80:64:fe:9e:08:bc:0d:66:b3:c6:b9:86:68: 5f:0b:21:f9:c6:79:a1:1e:67:07:1f:c7:bd:92:96:2c:95:8e: 96:0b:4e:a1 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFP0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU1MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEU4QUIzQkQxM0YyQTM4 NjY3MDdGRjRGMTA3NkVCNDJDNEVGM0FCNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdjpL16o5YtmQk6LOh2FHfUobCmxfHETjmVOlG0wga/5B8Btn2 VNL31ElxfczUKZNeSSh9ko125VoMVQP3R9gWiK4Vf40/sv3rhs8svg4WsE5YI+d9 DkNe108AlqyH5GF6LZmXJLKrmZcQQqvwc5THpelakdawer0/c3XJuM6aRM5EVLfu /0aWNhaFLnLsmk3S805P9BCtQ4un4vmAGBZ1YEReUKPP6wXNtXYziww0lez/oUFk uQ33OasMIP5+M7/GELQ65bWyq6pbZ+p4Vm4svBCDcunp4hYl0h3qebQGEDP8SMzB 9hQvbTZfdJQuILURPEWibvamztZv4G1zcwt/AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU6Ks70T8qOGZwf/TxB260LE7zq1swHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNktzNzBUOHFPR1p3Zl9U eEIyNjBMRTd6cTFzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNNO0DANBgkqhkiG9w0BAQsFAAOCAQEATjUYFMaUW/H+dJrssLGFSMfTAt/GEe9+ euIWUGYpFM15RHaV4wNxZFXsJyaWHznLkFAICwE0CQtiqzpmBBT0pnu14gXxgUWB UiYUNZmZtTcp2HHPEbIgVGc/Fw9Z10dxBc9EvhENwCeTDmGp+g3deIFZ6HrH9cfd HJuwS6c/7qaMtZXwrBmaT/QIN+nGz3Eom994LW/AegVPtHXx9enCw3kKcIAxTor9 to93wBlBrkmDDDaTt0ettLwO1+r3Nu2sa+3f1RzFJoIFl5kCk+eGknRtrXD9F6kH jjorAPqAZP6eCLwNZrPGuYZoXwsh+cZ5oR5nBx/HvZKWLJWOlgtOoQ== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:51 2025 by rpki-client