$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6zFESkhpuvYAeN-kPaXe3eMNu2o.roa File: 6zFESkhpuvYAeN-kPaXe3eMNu2o.roa (raw, json) Hash identifier: Hodiv8JTWOfv2cknQjbSaOV01dtNizgF5res3pO2h7I= Subject key identifier: EB:31:44:4A:48:69:BA:F6:00:78:DF:A4:3D:A5:DE:DD:E3:0D:BB:6A Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14CA Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6zFESkhpuvYAeN-kPaXe3eMNu2o.roa Signing time: Fri 22 Aug 2025 08:54:47 +0000 ROA not before: Fri 22 Aug 2025 08:54:47 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.63.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5322 (0x14ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EB31444A4869BAF60078DFA43DA5DEDDE30DBB6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:79:53:4d:8e:72:fc:86:f6:5b:e9:a0:70:c3: 7b:89:bc:a0:4a:04:52:25:92:bc:dd:58:a6:c9:ce: 18:ac:17:59:de:1c:9b:6a:d3:dc:16:21:ae:c1:02: e2:ab:17:27:c0:94:8b:4d:05:be:04:c7:3f:5d:7a: 19:11:db:c1:f1:94:f0:ab:0b:0c:ab:71:2a:06:cd: f5:49:ee:12:53:ff:9c:1c:7e:2a:dc:6e:72:26:29: f8:d4:9a:a8:a9:3f:c5:d2:b5:36:49:77:8c:ec:7c: 59:fc:13:1e:24:97:a6:35:84:5b:61:aa:29:35:68: 36:d9:b5:11:3a:59:66:c9:84:23:08:4b:c8:18:84: fb:41:ed:28:97:4a:b9:e6:5c:66:1c:c2:2d:eb:cf: 7c:b7:e6:5f:4d:b9:56:c7:f5:3c:d5:f8:92:42:50: e3:95:b3:97:91:de:0e:24:27:2e:e1:61:22:03:d6: af:f8:a2:9b:bc:b1:34:fc:08:eb:a0:f1:17:ba:84: de:ab:52:24:e9:55:f1:60:d9:67:95:8b:ad:ec:85: 58:7d:bc:06:2c:2a:e1:ef:2f:f1:8a:31:08:b6:13: d0:b3:ba:c1:d8:0b:8e:f0:8f:5d:0d:b8:7c:48:44: 21:64:00:4e:22:31:b7:f2:ef:e3:8f:a9:3a:31:3c: 5e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:31:44:4A:48:69:BA:F6:00:78:DF:A4:3D:A5:DE:DD:E3:0D:BB:6A X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6zFESkhpuvYAeN-kPaXe3eMNu2o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.128.0/19 Signature Algorithm: sha256WithRSAEncryption 66:f4:d9:08:fe:bd:61:f6:63:6b:ae:38:50:06:fc:93:0b:c5: 2b:8b:0b:d1:6b:18:ba:9c:f3:a0:03:6a:9b:16:57:ae:91:4a: 69:15:9d:1a:50:53:ce:3c:ac:d6:0d:49:6b:ee:9c:e2:69:39: 48:68:08:12:5d:c5:3e:8b:d7:b2:55:6e:9f:0b:00:bd:0e:b4: c1:0e:1a:f2:bf:ef:53:1d:57:b6:fa:1f:48:36:78:b8:34:e0: 8a:79:7f:56:ef:d8:74:b6:80:f8:25:f1:8c:07:81:ae:50:60: 63:6f:e6:37:47:12:0a:b5:a8:80:c4:eb:23:3c:45:01:75:20: aa:78:2f:d9:bc:84:5d:58:d3:8b:2e:71:a2:92:3f:8d:23:c7: 58:9b:8f:0d:2f:51:9a:27:63:79:71:a7:8f:23:5f:61:00:b7: 04:c4:09:2c:3f:d6:86:c0:79:d3:1c:c3:a9:89:e0:bf:8d:9c: ab:3c:37:9b:45:73:e1:8c:12:a9:10:9d:18:16:e6:8e:5b:3c: 67:d7:d0:7b:c5:f1:a2:3d:54:12:72:0e:a7:93:dc:41:2b:ab: 99:76:50:af:76:4f:23:e1:1d:13:96:13:43:03:f6:18:cd:94: eb:fe:ea:49:94:4d:5d:45:47:a1:b9:79:a6:b9:87:56:c2:02: ef:5d:5a:5b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFMowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVCMzE0NDRBNDg2OUJB RjYwMDc4REZBNDNEQTVERURERTMwREJCNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQeVNNjnL8hvZb6aBww3uJvKBKBFIlkrzdWKbJzhisF1neHJtq 09wWIa7BAuKrFyfAlItNBb4Exz9dehkR28HxlPCrCwyrcSoGzfVJ7hJT/5wcfirc bnImKfjUmqipP8XStTZJd4zsfFn8Ex4kl6Y1hFthqik1aDbZtRE6WWbJhCMIS8gY hPtB7SiXSrnmXGYcwi3rz3y35l9NuVbH9TzV+JJCUOOVs5eR3g4kJy7hYSID1q/4 opu8sTT8COug8Re6hN6rUiTpVfFg2WeVi63shVh9vAYsKuHvL/GKMQi2E9CzusHY C47wj10NuHxIRCFkAE4iMbfy7+OPqToxPF4xAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU6zFESkhpuvYAeN+kPaXe3eMNu2owHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNnpGRVNraHB1dllBZU4t a1BhWGUzZU1OdTJvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdI/gDANBgkqhkiG9w0BAQsFAAOCAQEAZvTZCP69YfZja644UAb8kwvFK4sL0WsY upzzoANqmxZXrpFKaRWdGlBTzjys1g1Ja+6c4mk5SGgIEl3FPovXslVunwsAvQ60 wQ4a8r/vUx1XtvofSDZ4uDTginl/Vu/YdLaA+CXxjAeBrlBgY2/mN0cSCrWogMTr IzxFAXUgqngv2byEXVjTiy5xopI/jSPHWJuPDS9RmidjeXGnjyNfYQC3BMQJLD/W hsB50xzDqYngv42cqzw3m0Vz4YwSqRCdGBbmjls8Z9fQe8Xxoj1UEnIOp5PcQSur mXZQr3ZPI+EdE5YTQwP2GM2U6/7qSZRNXUVHobl5prmHVsIC711aWw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:50:25 2025 by rpki-client