$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9YAf23eh69I_u7JbUgMLFEmhH6c.roa File: 9YAf23eh69I_u7JbUgMLFEmhH6c.roa (raw, json) Hash identifier: zPOlS6P1VxeRn9Q9cMqcE2EXG9jMzkj0B1PRBSaCTy0= Subject key identifier: F5:80:1F:DB:77:A1:EB:D2:3F:BB:B2:5B:52:03:0B:14:49:A1:1F:A7 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14B9 Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9YAf23eh69I_u7JbUgMLFEmhH6c.roa Signing time: Fri 22 Aug 2025 08:54:43 +0000 ROA not before: Fri 22 Aug 2025 08:54:43 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 203.65.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5305 (0x14b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:54:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F5801FDB77A1EBD23FBBB25B52030B1449A11FA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c5:31:ec:3c:22:2f:da:73:b2:09:8e:79:66: 82:fb:7a:93:e6:b7:a0:46:fb:24:64:b0:72:ec:d7: 76:86:d4:b7:53:73:95:8c:3e:8f:67:c3:05:24:fe: f0:70:e8:f7:7f:7d:94:48:89:69:ce:fc:f1:c5:ae: 29:8a:f9:22:4e:76:68:c6:6a:33:49:2c:81:2d:a1: 04:2f:e4:ce:fd:04:39:62:3b:c8:c3:38:b7:d5:1c: fa:26:0c:63:db:58:05:2c:f1:fa:e4:8a:39:1f:11: 15:90:ee:f5:9a:f2:0a:72:3e:23:da:90:f3:e3:fe: b5:97:08:2a:9f:80:b7:fa:1d:1d:85:d6:9e:4a:b0: 0a:a0:ac:a6:43:32:85:e4:9c:8e:a9:48:45:09:18: 21:0d:5e:da:5a:76:20:0c:b5:c3:55:80:56:9a:4e: a6:e8:9b:b2:c4:82:eb:94:5a:85:73:69:da:3b:70: c3:67:ec:f1:c8:17:06:6d:f9:3d:02:80:11:a8:24: 57:ed:38:22:4d:44:33:75:b5:f9:41:9a:61:4e:0a: 13:a5:aa:e7:12:52:45:52:39:20:50:0e:dc:bb:87: 14:0a:e1:09:8a:96:22:36:d0:ea:9d:0e:41:d0:15: 15:ef:a3:c8:b6:be:e4:c1:04:7f:48:f8:98:65:4d: b6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:80:1F:DB:77:A1:EB:D2:3F:BB:B2:5B:52:03:0B:14:49:A1:1F:A7 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9YAf23eh69I_u7JbUgMLFEmhH6c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.65.160.0/19 Signature Algorithm: sha256WithRSAEncryption 4e:d5:38:ed:35:db:11:3f:0d:d0:e5:d4:ea:03:33:f2:a2:6d: 67:b9:25:34:16:08:8f:81:77:4f:49:52:9e:ff:57:ca:af:36: 65:c3:73:f4:df:ca:b8:0c:f7:45:93:03:8e:62:46:b6:2d:5a: 11:4b:fe:38:cc:81:f3:b6:ca:e2:c8:33:8f:27:ca:4c:bb:4a: c3:8c:0d:17:09:5a:e8:b5:3f:64:77:be:e6:53:a4:ca:69:b1: d7:d4:15:91:c4:0b:f4:79:ce:af:c8:e9:98:5e:3e:65:58:68: 4d:68:35:bb:89:8f:61:05:0b:c5:b4:18:1e:d5:6b:82:70:1d: 1c:f1:5f:46:f3:d5:c8:d6:81:55:9c:bf:a9:71:3f:8f:06:a6: 83:ed:24:1a:8c:83:34:dd:e1:fa:e3:c0:2f:b3:42:e0:34:3b: c0:43:90:90:ba:e2:ec:42:70:7f:92:0d:cb:35:13:d9:35:a8: 99:d9:75:8c:0d:b5:3a:de:cd:94:a3:6c:08:ca:ea:c5:bf:f2: b5:ba:21:6b:59:7d:7a:39:1f:c8:11:8f:38:f0:49:60:b1:4e: 0b:11:bf:4b:bf:80:b6:f1:17:59:7b:e7:71:7b:3e:b9:0e:9c: 39:0f:68:21:ec:04:64:88:9a:98:9a:e4:f4:c4:9c:be:b3:cd: 64:9f:b9:9f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFLkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU0NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY1ODAxRkRCNzdBMUVC RDIzRkJCQjI1QjUyMDMwQjE0NDlBMTFGQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfxTHsPCIv2nOyCY55ZoL7epPmt6BG+yRksHLs13aG1LdTc5WM Po9nwwUk/vBw6Pd/fZRIiWnO/PHFrimK+SJOdmjGajNJLIEtoQQv5M79BDliO8jD OLfVHPomDGPbWAUs8frkijkfERWQ7vWa8gpyPiPakPPj/rWXCCqfgLf6HR2F1p5K sAqgrKZDMoXknI6pSEUJGCENXtpadiAMtcNVgFaaTqbom7LEguuUWoVzado7cMNn 7PHIFwZt+T0CgBGoJFftOCJNRDN1tflBmmFOChOlqucSUkVSOSBQDty7hxQK4QmK liI20OqdDkHQFRXvo8i2vuTBBH9I+JhlTbYVAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU9YAf23eh69I/u7JbUgMLFEmhH6cwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvOVlBZjIzZWg2OUlfdTdK YlVnTUxGRW1oSDZjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BctBoDANBgkqhkiG9w0BAQsFAAOCAQEATtU47TXbET8N0OXU6gMz8qJtZ7klNBYI j4F3T0lSnv9Xyq82ZcNz9N/KuAz3RZMDjmJGti1aEUv+OMyB87bK4sgzjyfKTLtK w4wNFwla6LU/ZHe+5lOkymmx19QVkcQL9HnOr8jpmF4+ZVhoTWg1u4mPYQULxbQY HtVrgnAdHPFfRvPVyNaBVZy/qXE/jwamg+0kGoyDNN3h+uPAL7NC4DQ7wEOQkLri 7EJwf5INyzUT2TWomdl1jA21Ot7NlKNsCMrqxb/ytboha1l9ejkfyBGPOPBJYLFO CxG/S7+AtvEXWXvncXs+uQ6cOQ9oIewEZIiamJrk9MScvrPNZJ+5nw== -----END CERTIFICATE-----Generated at Sun Aug 24 06:48:37 2025 by rpki-client