$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9Ox1lEfh6MW6aNVU8uoJcrRqsWw.roa File: 9Ox1lEfh6MW6aNVU8uoJcrRqsWw.roa (raw, json) Hash identifier: ph0VRimwTuqsraSGIobNpyjtnmOG8q+n08dlC2mwG0g= Subject key identifier: F4:EC:75:94:47:E1:E8:C5:BA:68:D5:54:F2:EA:09:72:B4:6A:B1:6C Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14A2 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9Ox1lEfh6MW6aNVU8uoJcrRqsWw.roa Signing time: Fri 22 Aug 2025 08:54:38 +0000 ROA not before: Fri 22 Aug 2025 08:54:38 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.62.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5282 (0x14a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F4EC759447E1E8C5BA68D554F2EA0972B46AB16C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b5:64:5b:cc:af:05:09:24:5a:a8:00:64:49: 2f:ff:fd:22:15:f2:e6:5c:2b:93:6e:99:ec:5d:82: dc:62:52:ff:58:8d:04:cc:2f:aa:39:73:a9:a9:fe: dd:7b:5d:86:88:df:d8:ae:3a:9a:6c:27:38:4e:88: fe:45:ff:76:c0:37:8f:cd:67:21:2f:51:66:e0:37: a7:99:ce:08:f0:2d:54:99:15:8b:c9:bb:ea:14:1a: 7e:46:7f:ec:3e:d2:41:04:8d:04:60:0a:e4:5f:7b: 7a:d1:93:f0:bb:28:cb:ba:1c:ff:7b:69:2a:a1:44: ac:7d:31:24:4e:4c:4f:be:39:f5:aa:7f:f4:bb:67: 44:9d:57:82:d9:0d:6b:ef:ae:7d:9a:f1:b6:ec:ef: 27:85:4c:31:1b:bf:26:81:ad:a2:1c:e8:b9:bc:06: f9:92:4b:97:ca:c7:ee:e2:f9:f2:bf:33:5b:15:84: 23:fa:63:28:6e:65:a0:41:a2:7d:79:ba:ce:55:b9: 72:a8:ed:b9:ef:5d:44:50:aa:6e:c4:8c:04:81:60: 6f:ba:22:c1:47:86:81:a4:e1:b1:58:f9:45:3b:a7: 15:57:c8:20:92:ba:24:a5:34:18:b3:c3:5e:88:c5: 0e:26:57:de:a1:95:9c:33:66:a0:b4:3f:06:19:53: 5c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:EC:75:94:47:E1:E8:C5:BA:68:D5:54:F2:EA:09:72:B4:6A:B1:6C X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9Ox1lEfh6MW6aNVU8uoJcrRqsWw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.192.0/19 Signature Algorithm: sha256WithRSAEncryption 28:69:f1:29:a5:05:cc:58:ad:b0:32:cb:22:8b:b8:1f:a5:ae: 17:4a:90:26:3b:45:37:99:5c:e7:40:4d:af:d5:68:4f:6d:48: 41:e5:b1:af:d7:78:ed:df:6c:d2:9d:64:9f:9d:88:54:b4:60: 86:67:50:65:c5:f2:b0:00:94:6a:f4:49:a8:66:8e:28:dc:fa: 4b:fd:cd:3a:ab:75:43:c1:ff:f8:33:91:05:9e:5a:7e:36:27: b7:c9:bf:ad:d4:84:65:b0:53:ed:fa:f8:fa:41:70:0f:bc:60: 2d:dd:c5:2e:4a:cd:39:aa:c9:ad:28:13:d6:0d:8a:25:60:e5: ef:cc:c2:40:be:56:23:9d:b5:1b:8d:6d:a3:2d:11:6c:e9:e3: 36:48:e8:5d:4a:ce:7f:e4:e7:e3:13:e6:05:c3:67:42:8c:db: c3:37:04:83:45:ef:8b:1c:3f:e9:65:41:bc:49:40:9c:85:78: 2c:76:e9:df:a5:a9:11:41:37:1c:38:58:4e:1e:31:58:d0:ad: 32:a1:c4:ce:f3:31:1a:31:ea:77:a9:cd:dc:27:7d:6a:2d:32: f8:9f:dd:d8:51:5d:08:41:97:b9:96:c1:a7:22:d7:92:ac:9c: 85:33:0a:3d:cb:a8:74:41:d5:ee:79:72:2d:6a:3d:ed:9e:7e: 6d:57:17:ad -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFKIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0MzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY0RUM3NTk0NDdFMUU4 QzVCQTY4RDU1NEYyRUEwOTcyQjQ2QUIxNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrtWRbzK8FCSRaqABkSS///SIV8uZcK5NumexdgtxiUv9YjQTM L6o5c6mp/t17XYaI39iuOppsJzhOiP5F/3bAN4/NZyEvUWbgN6eZzgjwLVSZFYvJ u+oUGn5Gf+w+0kEEjQRgCuRfe3rRk/C7KMu6HP97aSqhRKx9MSROTE++OfWqf/S7 Z0SdV4LZDWvvrn2a8bbs7yeFTDEbvyaBraIc6Lm8BvmSS5fKx+7i+fK/M1sVhCP6 YyhuZaBBon15us5VuXKo7bnvXURQqm7EjASBYG+6IsFHhoGk4bFY+UU7pxVXyCCS uiSlNBizw16IxQ4mV96hlZwzZqC0PwYZU1wjAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU9Ox1lEfh6MW6aNVU8uoJcrRqsWwwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvOU94MWxFZmg2TVc2YU5W VTh1b0pjclJxc1d3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdI+wDANBgkqhkiG9w0BAQsFAAOCAQEAKGnxKaUFzFitsDLLIou4H6WuF0qQJjtF N5lc50BNr9VoT21IQeWxr9d47d9s0p1kn52IVLRghmdQZcXysACUavRJqGaOKNz6 S/3NOqt1Q8H/+DORBZ5afjYnt8m/rdSEZbBT7fr4+kFwD7xgLd3FLkrNOarJrSgT 1g2KJWDl78zCQL5WI521G41toy0RbOnjNkjoXUrOf+Tn4xPmBcNnQozbwzcEg0Xv ixw/6WVBvElAnIV4LHbp36WpEUE3HDhYTh4xWNCtMqHEzvMxGjHqd6nN3Cd9ai0y +J/d2FFdCEGXuZbBpyLXkqychTMKPcuodEHV7nlyLWo97Z5+bVcXrQ== -----END CERTIFICATE-----Generated at Sun Aug 24 06:52:30 2025 by rpki-client