$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6kl8ENTh2kIJgJKJtPOZw8eMxbg.roa File: 6kl8ENTh2kIJgJKJtPOZw8eMxbg.roa (raw, json) Hash identifier: 2a4JTwGW/3tP1Z7V5xC2yiVRWos2oNLukfNyMmPOOUA= Subject key identifier: EA:49:7C:10:D4:E1:DA:42:09:80:92:89:B4:F3:99:C3:C7:8C:C5:B8 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14C8 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6kl8ENTh2kIJgJKJtPOZw8eMxbg.roa Signing time: Fri 22 Aug 2025 08:54:46 +0000 ROA not before: Fri 22 Aug 2025 08:54:46 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 124.108.128.0/18 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5320 (0x14c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:46 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EA497C10D4E1DA4209809289B4F399C3C78CC5B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:63:75:05:e7:28:69:1d:7a:06:7b:bd:9a:7a: 95:08:f3:5d:77:77:54:f1:9d:25:11:da:b8:b0:32: 22:d3:a5:89:22:6f:fa:a1:e6:24:bb:64:64:fa:19: 37:60:b1:b5:7b:90:e7:18:f7:eb:75:c6:46:6b:50: 9e:b2:81:85:44:6e:fa:47:15:10:99:30:14:ba:7c: 0c:01:45:9a:ad:49:5c:61:28:51:52:d8:9e:48:98: ce:c6:a5:85:56:11:4e:9e:5f:fd:1a:98:cd:5b:66: d3:38:cc:44:09:df:0c:fd:1d:58:14:16:5d:8f:d2: 57:72:05:97:f1:f2:b7:2c:30:da:87:73:bb:f4:ec: 85:dc:a8:c7:65:78:16:16:74:d4:9c:ca:3f:dc:a5: 98:4b:24:01:3e:fd:08:6c:3f:a6:af:5a:76:da:45: d3:26:66:b4:5d:34:a7:05:14:3d:da:5a:34:b4:8d: bc:36:ec:33:f5:1c:f6:e4:81:51:da:9a:17:6e:ce: ac:fa:e7:26:68:71:38:93:a8:e8:f0:ed:92:57:2f: f9:7a:8a:9b:44:90:7a:c0:f4:31:73:b1:4f:b3:a6: 11:be:08:32:53:b9:39:98:89:98:57:03:5d:1f:d0: 8b:de:43:73:2d:ee:5b:bb:e3:0d:0e:b7:80:93:ed: 59:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:49:7C:10:D4:E1:DA:42:09:80:92:89:B4:F3:99:C3:C7:8C:C5:B8 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6kl8ENTh2kIJgJKJtPOZw8eMxbg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.108.128.0/18 Signature Algorithm: sha256WithRSAEncryption 7d:54:89:ce:0e:ce:6a:c0:d6:a3:f2:30:b6:16:50:32:cf:0e: 9a:77:8b:1f:ae:48:78:75:17:fe:29:6d:94:4e:10:62:68:07: 8e:b1:1f:54:79:04:ee:1f:ae:d8:1a:77:f7:24:cf:e6:9d:9d: 15:59:31:4a:c8:8f:19:ab:36:df:7f:5e:4b:e1:12:7e:25:af: e3:95:2d:a4:a5:e2:c1:8a:69:4f:b1:35:39:63:6f:11:3b:67: e3:23:96:62:3b:61:9f:62:d9:b3:f0:b9:d1:ee:30:36:53:12: 36:5f:04:93:cc:0a:ca:08:7f:c4:79:b5:cb:10:6d:e5:02:1d: 70:39:63:f6:a8:fc:f2:ae:8b:56:ad:67:cd:eb:dc:2d:c9:49: da:26:23:c4:92:cc:9c:e6:2c:ed:d3:3e:2f:82:5b:91:18:3a: 82:6d:e3:be:6a:10:01:42:eb:89:d0:e3:c9:9a:e9:28:fc:c9: 4e:ef:44:67:95:d6:97:5e:32:51:6b:de:5a:ae:4b:24:13:9e: 33:5d:d6:b3:37:8d:54:fd:60:2d:68:80:2b:9f:f8:6a:44:31: f4:e2:12:e8:33:81:69:8c:69:e7:b1:2f:bb:92:d1:f6:d4:2d: a8:30:3f:e5:58:83:cb:d4:31:58:55:66:f0:fb:a5:3f:4a:b7: be:35:96:cf -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFMgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVBNDk3QzEwRDRFMURB NDIwOTgwOTI4OUI0RjM5OUMzQzc4Q0M1QjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRY3UF5yhpHXoGe72aepUI8113d1TxnSUR2riwMiLTpYkib/qh 5iS7ZGT6GTdgsbV7kOcY9+t1xkZrUJ6ygYVEbvpHFRCZMBS6fAwBRZqtSVxhKFFS 2J5ImM7GpYVWEU6eX/0amM1bZtM4zEQJ3wz9HVgUFl2P0ldyBZfx8rcsMNqHc7v0 7IXcqMdleBYWdNScyj/cpZhLJAE+/QhsP6avWnbaRdMmZrRdNKcFFD3aWjS0jbw2 7DP1HPbkgVHamhduzqz65yZocTiTqOjw7ZJXL/l6iptEkHrA9DFzsU+zphG+CDJT uTmYiZhXA10f0IveQ3Mt7lu74w0Ot4CT7VntAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU6kl8ENTh2kIJgJKJtPOZw8eMxbgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNmtsOEVOVGgya0lKZ0pL SnRQT1p3OGVNeGJnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BnxsgDANBgkqhkiG9w0BAQsFAAOCAQEAfVSJzg7OasDWo/IwthZQMs8OmneLH65I eHUX/iltlE4QYmgHjrEfVHkE7h+u2Bp39yTP5p2dFVkxSsiPGas2339eS+ESfiWv 45UtpKXiwYppT7E1OWNvETtn4yOWYjthn2LZs/C50e4wNlMSNl8Ek8wKygh/xHm1 yxBt5QIdcDlj9qj88q6LVq1nzevcLclJ2iYjxJLMnOYs7dM+L4JbkRg6gm3jvmoQ AULridDjyZrpKPzJTu9EZ5XWl14yUWveWq5LJBOeM13WszeNVP1gLWiAK5/4akQx 9OIS6DOBaYxp57Evu5LR9tQtqDA/5ViDy9QxWFVm8PulP0q3vjWWzw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:52:20 2025 by rpki-client