$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8QfMx2M-8c_rzuOhxyqFtc0YL8w.roa File: 8QfMx2M-8c_rzuOhxyqFtc0YL8w.roa (raw, json) Hash identifier: GkEDe6zSE0LKvCV+Ti1gS9+atrfmhAlVpAIFwoi1hCE= Subject key identifier: F1:07:CC:C7:63:3E:F1:CF:EB:CE:E3:A1:C7:2A:85:B5:CD:18:2F:CC Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14C1 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8QfMx2M-8c_rzuOhxyqFtc0YL8w.roa Signing time: Fri 22 Aug 2025 08:54:45 +0000 ROA not before: Fri 22 Aug 2025 08:54:45 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.243.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5313 (0x14c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F107CCC7633EF1CFEBCEE3A1C72A85B5CD182FCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f8:44:56:3d:06:38:fa:1e:a4:99:4b:f6:22: 8f:f5:2d:38:4d:3a:23:cf:e9:13:e5:a3:f4:ef:72: f9:0c:c1:f3:2b:c0:22:0a:b4:15:ea:ad:db:b4:30: e4:e1:57:73:a5:31:36:81:05:90:03:c6:24:5f:2a: c8:65:76:d6:0e:0c:d5:5f:31:5e:6f:55:5c:ad:41: 0c:33:3b:71:63:38:c5:2d:81:38:53:d8:34:a9:65: 41:3b:7c:ca:c1:53:57:a9:98:3f:28:15:4c:8b:94: 77:29:1b:99:10:d1:5f:23:dd:35:da:a1:cb:54:45: b9:28:74:dd:67:c6:7b:7e:cb:0b:3d:74:63:65:9f: 02:a0:f9:6d:16:16:06:69:7f:18:74:38:4f:83:3b: 41:cc:19:d3:c9:95:a7:ad:b0:22:74:e4:4d:e6:31: 0e:00:b8:3b:e0:c7:f0:40:46:3d:8f:f4:64:cf:9e: 16:e0:ba:91:79:70:93:f1:4a:73:07:da:95:c5:7c: 32:fc:8d:a6:c7:3b:25:b9:78:a5:9c:20:2a:4c:60: d5:8d:1b:d6:86:b1:57:cc:6d:b7:c6:b8:d2:37:00: ee:f4:c6:97:71:4f:38:28:b6:8e:e3:99:b1:90:fb: e3:c1:5b:53:2f:22:8c:61:63:dc:57:a7:40:d0:3c: 0b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:07:CC:C7:63:3E:F1:CF:EB:CE:E3:A1:C7:2A:85:B5:CD:18:2F:CC X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8QfMx2M-8c_rzuOhxyqFtc0YL8w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.243.96.0/19 Signature Algorithm: sha256WithRSAEncryption 4f:f0:fa:45:33:7e:7c:41:28:ea:a4:4c:06:17:1f:21:90:15: bc:01:4e:1e:35:d9:2c:9f:c5:f7:8b:2b:34:08:e7:cf:cb:5f: 9d:de:41:a7:e2:6d:b4:d5:a8:33:69:19:3a:a2:48:c4:79:05: fd:c7:26:98:24:bb:81:02:ba:94:f3:71:44:9a:81:e1:4e:e2: 20:21:12:66:db:8b:9c:68:96:ce:9d:38:cf:fc:82:3d:7e:14: 35:5e:e0:f9:26:3d:f4:61:84:a8:8f:44:46:82:2b:6c:3b:e0: bd:df:b1:1f:c3:2b:ed:4c:1b:c9:52:65:d1:21:3f:4b:91:bd: 46:40:9a:9d:fa:9d:22:40:d3:89:0f:93:75:64:a8:81:cd:02: b6:3d:55:6a:f9:91:e2:7d:72:22:aa:b9:87:13:3d:d9:aa:3d: 63:6c:19:14:40:41:05:ed:8d:0f:28:34:34:0b:ee:e7:1d:45: cf:87:10:93:22:84:16:92:43:5d:cb:5e:3a:56:ab:44:91:ad: 4c:e6:44:03:75:c1:b1:6d:a1:80:d4:79:31:e8:bc:bd:b8:9d: 97:09:8b:b6:e6:5e:dc:a1:8d:8c:13:9a:f3:fd:9d:74:d1:e2: ee:93:48:13:99:97:4c:dd:c3:25:1f:63:25:12:b1:24:02:46: 07:51:58:2d -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFMEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYxMDdDQ0M3NjMzRUYx Q0ZFQkNFRTNBMUM3MkE4NUI1Q0QxODJGQ0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCi+ERWPQY4+h6kmUv2Io/1LThNOiPP6RPlo/TvcvkMwfMrwCIK tBXqrdu0MOThV3OlMTaBBZADxiRfKshldtYODNVfMV5vVVytQQwzO3FjOMUtgThT 2DSpZUE7fMrBU1epmD8oFUyLlHcpG5kQ0V8j3TXaoctURbkodN1nxnt+yws9dGNl nwKg+W0WFgZpfxh0OE+DO0HMGdPJlaetsCJ05E3mMQ4AuDvgx/BARj2P9GTPnhbg upF5cJPxSnMH2pXFfDL8jabHOyW5eKWcICpMYNWNG9aGsVfMbbfGuNI3AO70xpdx Tzgoto7jmbGQ++PBW1MvIoxhY9xXp0DQPAsvAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU8QfMx2M+8c/rzuOhxyqFtc0YL8wwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvOFFmTXgyTS04Y19yenVP aHh5cUZ0YzBZTDh3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdLzYDANBgkqhkiG9w0BAQsFAAOCAQEAT/D6RTN+fEEo6qRMBhcfIZAVvAFOHjXZ LJ/F94srNAjnz8tfnd5Bp+JttNWoM2kZOqJIxHkF/ccmmCS7gQK6lPNxRJqB4U7i ICESZtuLnGiWzp04z/yCPX4UNV7g+SY99GGEqI9ERoIrbDvgvd+xH8Mr7UwbyVJl 0SE/S5G9RkCanfqdIkDTiQ+TdWSogc0Ctj1VavmR4n1yIqq5hxM92ao9Y2wZFEBB Be2NDyg0NAvu5x1Fz4cQkyKEFpJDXcteOlarRJGtTOZEA3XBsW2hgNR5Mei8vbid lwmLtuZe3KGNjBOa8/2ddNHi7pNIE5mXTN3DJR9jJRKxJAJGB1FYLQ== -----END CERTIFICATE-----Generated at Sun Aug 24 06:52:16 2025 by rpki-client